shoredreams.org
Issued by R3
About this certificate
This digital certificate with serial number 03:c7:ea:de:17:b0:4a:42:d4:c7:e2:a2:0d:5b:98:cd:59:63 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=shoredreams.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c7:ea:de:17:b0:4a:42:d4:c7:e2:a2:0d:5b:98:cd:59:63Serial Number (int): 329365241333926319386235014345591068907875
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 0d:63:b1:37:93:19:8c:46:33:d3:b6:f7:4b:23:b1:2f:a3:58:9d:84
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 47:48:33:db:4c:a3:24:25:cf:8d:d6:8b:97:a0:74:70:c5:d8:60:3b
Fingerprint (sha256): 85:e8:b1:c8:be:53:2e:50:42:bf:a0:9e:9a:41:09:f8:cc:1c:b1:60:dd:47:ac:97:6c:cf:5f:f2:ef:72:07:52
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate shoredreams.org
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for shoredreams.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
funnyebooks.com
shipwrecks.xyz.jfkgold.com
shoredreams.org
valleyforgeproperties.com.patriotpresswire.com.www.nancywallacelaabs.com
shipwrecks.xyz.jfkgold.com
shoredreams.org
valleyforgeproperties.com.patriotpresswire.com.www.nancywallacelaabs.com
Other certificates including the domain name shoredreams.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for shoredreams.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZjCCBE6gAwIBAgISA8fq3hewSkLUx+KiDVuYzVljMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjYxNjA5NDRaFw0yNDAyMjQxNjA5NDNaMBoxGDAWBgNVBAMT D3Nob3JlZHJlYW1zLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMyylvo0WKR92vlKHN4LgKdJ/WtZhf8cyZO/nS7JwrNw48oZywFfUBU9Hvi7s8Z6 GTZQEXqPuLvASHJTP6oZRe4alwKNm4VymJHIC9D+SB60SA/9Wt8ax7E41a4ko3vY sg7fYQZQcEyPZ5b71AYwLEfxhuvpjfi10KFKJ2mJG4ocXXruJjM+NEliVZN+9jUY MhGEq6Y8F7YiqOaEAMLxVWNGN5sHie6Fy3c8jIuLCCbXFZI6U0zrvVp3eM3urmDF 8p6ohpoYAnOIAtpnE0noUAchnCE/9BCkBPKrs5B8UVf8YrfTuNgvxV6yKrQXH8W7 EdjnNbrRr406h7wv1l+NLBcCAwEAAaOCAowwggKIMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUDWOxN5MZjEYz07b3SyOxL6NYnYQwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wgZMGA1UdEQSBizCBiIIPZnVubnllYm9va3MuY29tghpzaGlwd3JlY2tzLnh5 ei5qZmtnb2xkLmNvbYIPc2hvcmVkcmVhbXMub3Jngkh2YWxsZXlmb3JnZXByb3Bl cnRpZXMuY29tLnBhdHJpb3RwcmVzc3dpcmUuY29tLnd3dy5uYW5jeXdhbGxhY2Vs YWFicy5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5AgQCBIH2 BIHzAPEAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYwMm8Vw AAAEAwBHMEUCIQCc4JCMrlB2EBWfarE+lI9pcglX+80xx5g9UbZxexD+pQIgQa9c AU1zLP3ANFVlyiNeT3wiMj9i1IKbuYdlip0lSOUAdwA7U3d1Pi25gE6LMFsG/kA7 Z9hPw/THvQANLXJv4frUFwAAAYwMm8V4AAAEAwBIMEYCIQDK7k5J/5cdoDKulZ6m vay2WWTn8w8vV6caQH+M07ECcQIhAIzMcjeDv+g4GTiDx3Jsf6PCaufpE9C2T5M8 66LUzwKqMA0GCSqGSIb3DQEBCwUAA4IBAQCO0z2ElB/o/1D4cVPWVLBjtpyg9W5c KDgWJAVim+FNAhs5mQsnDzCMFGc280fL1HQkQogXP4/02XKDFqgFNvwO77ZahHxs WQHigvILuiU9UoYGEBOOurfOj6Ymw58vEUkG6e0Mck7gdYCkqxCsbMXnRvWSlusx 725+I2jw4GifTVpfmBQ9IEeQK4e4ae1sdzikWsHXcIr/zg58b//OXf6cLVHxXg29 lXYsXe5LbuY0oV0kML8SnKjEFL4velIN928EqYaSaD7Yd3tORK1j3pbcmTNjMNBd rm1nJv9wtAjZ3qj0D2BTkwrhEFW0nUVL3I+u7eD1YlJ6MWfmL5///NhD -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzLKW+jRYpH3a+Uoc3guA p0n9a1mF/xzJk7+dLsnCs3DjyhnLAV9QFT0e+LuzxnoZNlAReo+4u8BIclM/qhlF 7hqXAo2bhXKYkcgL0P5IHrRID/1a3xrHsTjVriSje9iyDt9hBlBwTI9nlvvUBjAs R/GG6+mN+LXQoUonaYkbihxdeu4mMz40SWJVk372NRgyEYSrpjwXtiKo5oQAwvFV Y0Y3mweJ7oXLdzyMi4sIJtcVkjpTTOu9Wnd4ze6uYMXynqiGmhgCc4gC2mcTSehQ ByGcIT/0EKQE8quzkHxRV/xit9O42C/FXrIqtBcfxbsR2Oc1utGvjTqHvC/WX40s FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 329365241333926319386235014345591068907875 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-26 16:09:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-24 16:09:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shoredreams.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25840680103683634315379911144239282898841886242832800275924635995442851636101033435841326209324700806823457225957093034756956675107841272806737430305238466490464644953320520910123834170939706678690855786034161473350256724033758722743654365703253792879994816552772888972729241350541485793687250435575575683587249735385101963721196370803655819269654612321296788723350086534658705632747301960596880070619657606018388387138762594529713449276021392850091303010653565392018761132321431070080970471786569256129183397549316309717842404776079804066281321778464786101942045936630788926611475267491521686180197879949969113033751 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0d63b13793198c4633d3b6f74b23b12fa3589d84 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (139 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'funnyebooks.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shipwrecks.xyz.jfkgold.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shoredreams.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'valleyforgeproperties.com.patriotpresswire.com.www.nancywallacelaabs.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c0c9bc57000000403004730450221009ce0908cae507610159f6ab13e948f69720957fbcd31c7983d51b6717b10fea5022041af5c014d732cfdc0345565ca235e4f7c22323f62d4829bb987658a9d2548e50077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c0c9bc5780000040300483046022100caee4e49ff971da032ae959ea6bdacb65964e7f30f2f57a71a407f8cd3b102710221008ccc723783bfe838193883c7726c7fa3c26ae7e913d0b64f933ceba2d4cf02aa . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 008ed33d84941fe8ff50f87153d654b063b69ca0f56e5c2838162405629be14d021b39990b270f308c146736f347cbd474244288173f8ff4d9728316a80536fc0eefb65a847c6c5901e282f20bba253d52860610138ebab7ce8fa626c39f2f114906e9ed0c724ee07580a4ab10ac6cc5e746f59296eb31ef6e7e2368f0e0689f4d5a5f98143d2047902b87b869ed6c7738a45ac1d7708affce0e7c6fffce5dfe9c2d51f15e0dbd95762c5dee4b6ee634a15d2430bf129ca8c414be2f7a520df76f04a98692683ed8777b4e44ad63de96dc99336330d05dae6d6726ff70b408d9dea8f40f6053930ae11055b49d454bdc8faeede0f562527a3167e62f9ffffcd843