betterodisha.org
Issued by R3
About this certificate
This digital certificate with serial number 04:e9:01:3b:77:69:64:69:01:31:cb:4e:18:fb:42:81:ed:15 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=betterodisha.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:e9:01:3b:77:69:64:69:01:31:cb:4e:18:fb:42:81:ed:15Serial Number (int): 427736573215086862386545505204643913919765
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 51:d9:0d:2c:9f:70:a1:c5:f0:9c:ce:38:ae:c6:ef:7e:30:31:0d:8b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ba:8b:5b:c5:c8:18:62:9f:84:9b:6a:33:18:8b:ea:f6:ff:01:16:3a
Fingerprint (sha256): 84:e8:20:55:b3:8d:ae:67:55:59:f1:e8:f2:62:62:1d:00:ea:7d:36:4e:55:e8:ab:18:0a:e5:19:6d:ae:2b:3a
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate betterodisha.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for betterodisha.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
betterodisha.org
Other certificates including the domain name betterodisha.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for betterodisha.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE7jCCA9agAwIBAgISBOkBO3dpZGkBMctOGPtCge0VMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTkwOTA4MTZaFw0yNDA4MTcwOTA4MTVaMBsxGTAXBgNVBAMT EGJldHRlcm9kaXNoYS5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5bn2Cp8icMiukj/ixH3laLQCL8vaScNWs+oQha+eigh03IXiJR6NFLEUxLpvC RtWNTvuZLcDsieajXGY05gUqDn07KmM0Qb/eAZ0lDqVRSQ5k5cq5Lo43/fUvUMSB MKb9kr9ti93Ne4PqeCpNmB1yxuNUdpcsh3bwBYei/WmuHwdXOu5cJhkIamokpPyj pPnot0PhM3uMjDPJsa+bRT5OiKcm+hGGcVzLGi7nC0NM4/GgMKDb/nxP+OLNrp7E 2ZMsnAjsNvTaozceO+7FVsTz0ScGQ0JEJV6uFcJY2xBb5Hz5j/dPQ70oT0Kfv04n rBJEPJmdrAO+UsonvwYj40LbAgMBAAGjggITMIICDzAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFFHZDSyfcKHF8JzOOK7G734wMQ2LMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMBsGA1UdEQQUMBKCEGJldHRlcm9kaXNoYS5vcmcwEwYDVR0gBAwwCjAIBgZn gQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwDuzdBk1dsazsVct520zROi ModGfLzs3sNRSFlGcR+1mwAAAY+QUs5YAAAEAwBIMEYCIQCTJnwu5X+7RGEU3SCh KxZstT8W9B5L7S7V2V9LCH5JwgIhAMqe2E+qjesWwiWN7jKtzvJ9Kbvvi7mStGg7 xox8JE2qAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGPkFLV XQAABAMARzBFAiEArGutDOb8TaywiMMV6LEsFUIir2ODz4Hldi8Yo37JQ5ECIAr3 y+FyztkBGhhjhBJ3NqxIo8Ns2s6ZjHFNjmQ/8TyLMA0GCSqGSIb3DQEBCwUAA4IB AQBfeiNePtv9uagbG7xVy6D0ddnhjV0DNoHldCmoEh22oRvjV9K6Afp+Ms5xFW82 WtfpiVTAidZ856zCwOXZsCyk80AOoyOTqcB61yZtpZDEU2WezjBgZQT8GRaoIACA NQzbaGs7HEsVl42bKSzjdFamXeSTcCqHLWmheYm2GI0VX3SOHEORbmOWwbCDjiz9 p1+H1a39ghueM49lzDRsHQ3GnqgJsVQZ04lrWYfJmwOl7dFJpyF95WNPcZItTkux r+aFhZnYUkmBrCduL33PLdUNcJs46F9YP1AtGQFJ6N1dzQ4Zmbs3+bbduE/uxKa/ zxR+xwizsUUFJrqe4VZq0VvA -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuW59gqfInDIrpI/4sR95 Wi0Ai/L2knDVrPqEIWvnooIdNyF4iUejRSxFMS6bwkbVjU77mS3A7Inmo1xmNOYF Kg59OypjNEG/3gGdJQ6lUUkOZOXKuS6ON/31L1DEgTCm/ZK/bYvdzXuD6ngqTZgd csbjVHaXLId28AWHov1prh8HVzruXCYZCGpqJKT8o6T56LdD4TN7jIwzybGvm0U+ ToinJvoRhnFcyxou5wtDTOPxoDCg2/58T/jiza6exNmTLJwI7Db02qM3HjvuxVbE 89EnBkNCRCVerhXCWNsQW+R8+Y/3T0O9KE9Cn79OJ6wSRDyZnawDvlLKJ78GI+NC 2wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 427736573215086862386545505204643913919765 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-19 09:08:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-17 09:08:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'betterodisha.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23408571203946467219121981372884190859533916544934265992726096870552804281267436659168922407389125906905421982664028715364564782104142267534281416635040054157853882878784750705205739057366606354699171930978626654356426889783555260827255078366138824032933098863753974813912305616295271072896950927331364829159292122450467891545363436728258818618806560707607748181426559177642666447918743052184218032812722506684354403115473083532071323189397239076806190009683680796320111345823725998584389415018716855984963967986890488198599723095760650807057072832331618891098271690681319666987698808068806631563179800432216715248347 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 51d90d2c9f70a1c5f09cce38aec6ef7e30310d8b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'betterodisha.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018f9052ce58000004030048304602210093267c2ee57fbb446114dd20a12b166cb53f16f41e4bed2ed5d95f4b087e49c2022100ca9ed84faa8deb16c2258dee32adcef27d29bbef8bb992b4683bc68c7c244daa00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f9052d55d0000040300473045022100ac6bad0ce6fc4dacb088c315e8b12c154222af6383cf81e5762f18a37ec9439102200af7cbe172ced9011a186384127736ac48a3c36cdace998c714d8e643ff13c8b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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