optifold.org
Issued by R3
About this certificate
This digital certificate with serial number 04:54:ef:87:3f:dc:8e:7c:0f:fb:2d:e5:d5:58:58:95:89:bf was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=optifold.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:54:ef:87:3f:dc:8e:7c:0f:fb:2d:e5:d5:58:58:95:89:bfSerial Number (int): 377351250294734412249631518021466277120447
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 4e:00:8d:61:fe:b6:be:75:d9:a1:c2:b3:e8:2e:12:f2:9f:4e:c0:90
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ea:6b:7d:00:db:1a:62:81:60:a9:a7:90:45:88:e3:01:9a:db:8a:e2
Fingerprint (sha256): 83:5d:91:5b:f8:d6:c5:65:93:a1:81:92:af:9f:f7:97:89:25:38:ae:7e:51:a3:34:ac:8c:33:02:d5:bd:e8:8b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate optifold.org
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for optifold.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
jjnprojects.info
optifold.org
spaced-out.com
optifold.org
spaced-out.com
Other certificates including the domain name optifold.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for optifold.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFBzCCA++gAwIBAgISBFTvhz/cjnwP+y3l1VhYlYm/MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDIxOTAyMTFaFw0yNDA3MDExOTAyMTBaMBcxFTATBgNVBAMT DG9wdGlmb2xkLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJ86 lSOx0V2lGywbYSgSEAfg08Y7iHmf8EZMSgTN2gLcr5E9c1q/9AUz5gIkEBGkytKw KIdLBM4o4v1NO2vAhfKqhq6HV1Fn7BpgtawmCAy6EUARsMakqCXvIGe3ArHiRSTg +euHVvvV1/e7v9jHBCcCVaouXxlqUTiGpEXCq7ohgBQvWGVZ8JzHm58fRLUmwVGD hBVcRUYLlTjYqZ4wUizUETXPExCi+Ued8NVdQtPEyBxi+/NvhN+DDnlV+Jl3Xe7M LQNBMNB7dTSMg+6NNvdo7GPLK/npsCFQc+E9hRru5lKNXm26368KgyQ4fJYAlvLf AxSziTobSi70/POTuP0CAwEAAaOCAjAwggIsMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUTgCNYf62vnXZocKz6C4S8p9OwJAwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w OQYDVR0RBDIwMIIQampucHJvamVjdHMuaW5mb4IMb3B0aWZvbGQub3Jngg5zcGFj ZWQtb3V0LmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIE gfUEgfIA8AB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjqBn qPEAAAQDAEcwRQIhAJg8FDtDnTmTY3uGCqGZUdHe7M+5iMctu9GuWUjOEfpmAiBe biHX5rMDSLeHvDjhGTeT5aVgvIOxftxuXDkboSGEGgB2AN/hVuuqBa+1nA+GcY2o wDJOrlbZbqf1pWoB0cE7vlJcAAABjqBnqbkAAAQDAEcwRQIhANubWdgjzu+B3YwB iqMXl21KbUCZ4CAB4i+5rfGa06ozAiAEg15IMO3UHQtHGZLH2vtPUBSwiwkRoCXC 564bVj9QgDANBgkqhkiG9w0BAQsFAAOCAQEAJFlGAtrtKoJJ2TzWsdeWL5dOidX6 cIO3nGZbvUyaIFMrkIE9u9SFbnnyTzn9Ge8UiUYEPFJIvfLLTOkdRnK4CvX8J9Hy CF1sj9yvQs8Z8p/mS7St9UKyV4MEE9k0US1wlmekqyWbYeLtr9Ib7bH3pZYonJUB PLMRXoIar0nBQzsKBOQmqrmYYgBTdwboI5YgOOvtBs17YfiXwyOM5/HZeIA3dmcl yhta64PFET5+5A5+aWT9tsDkr9yJBnlyarE7cat+ofBTKuoANb8BE6QDtPQOpCSU 0ZQq0d1/0adUaApWI3t7FrdyzHlb7X2VChIFsM2CR4sHEq9BCsORoXwuRw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnzqVI7HRXaUbLBthKBIQ B+DTxjuIeZ/wRkxKBM3aAtyvkT1zWr/0BTPmAiQQEaTK0rAoh0sEziji/U07a8CF 8qqGrodXUWfsGmC1rCYIDLoRQBGwxqSoJe8gZ7cCseJFJOD564dW+9XX97u/2McE JwJVqi5fGWpROIakRcKruiGAFC9YZVnwnMebnx9EtSbBUYOEFVxFRguVONipnjBS LNQRNc8TEKL5R53w1V1C08TIHGL782+E34MOeVX4mXdd7swtA0Ew0Ht1NIyD7o02 92jsY8sr+emwIVBz4T2FGu7mUo1ebbrfrwqDJDh8lgCW8t8DFLOJOhtKLvT885O4 /QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 377351250294734412249631518021466277120447 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 19:02:11 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-01 19:02:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'optifold.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20100778634458663303733802310245360286166481341512743462271494832041087841361185889751035321390198329540063855360012637159045657729213480031090830079024470405274989258722312227159629007570613861869871314302710191134028972006282958461171553504717601290278575553517666958099139842094105129592655773009646333158892048294649502317602643949178507067880211948900434867167626617921064721270830954400048496800999270056121740923068131440916117541967969418302196076489983109734180347426643810390250404999432406002954806902838388704253094560223770477349252241958369747154626619211547651621813572552179280192140129995354793031933 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4e008d61feb6be75d9a1c2b3e82e12f29f4ec090 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jjnprojects.info' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'optifold.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'spaced-out.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ea067a8f10000040300473045022100983c143b439d3993637b860aa19951d1deeccfb988c72dbbd1ae5948ce11fa6602205e6e21d7e6b30348b787bc38e1193793e5a560bc83b17edc6e5c391ba121841a007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ea067a9b90000040300473045022100db9b59d823ceef81dd8c018aa317976d4a6d4099e02001e22fb9adf19ad3aa33022004835e4830edd41d0b471992c7dafb4f5014b08b0911a025c2e7ae1b563f5080 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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