bastioncraft.com

Issued by R3

About this certificate

This digital certificate with serial number 03:be:00:76:c6:75:ff:19:26:ff:cf:94:1a:c4:ef:a5:b4:a4 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=bastioncraft.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:be:00:76:c6:75:ff:19:26:ff:cf:94:1a:c4:ef:a5:b4:a4
Serial Number (int): 325991124226554100729591449013993372759204
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 05:65:95:18:bf:e0:3a:06:9d:96:8a:89:54:d9:4f:1e:f2:ef:86:b8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): f8:c5:c6:91:81:64:30:c1:0f:59:ea:88:82:4b:f5:fe:f4:a5:68:5a
Fingerprint (sha256): 88:69:b4:56:db:16:bc:a5:f7:7b:9b:66:15:7b:c0:21:80:f7:fa:14:fc:60:20:60:d2:55:3e:82:d8:fb:2b:75

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate bastioncraft.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for bastioncraft.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

bastioncraft.com
www.bastioncraft.com

Other certificates including the domain name bastioncraft.com

(limited to 100 certificates)
bastioncraft.com
bastioncraft.com
meet.bastioncraft.com
bastioncraft.com
books.tto-ltd.co.uk
clients.fervenza.fr

Certificate

The complete raw certificate details for bastioncraft.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 325991124226554100729591449013993372759204
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-23 07:18:49 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-21 07:18:48 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bastioncraft.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 792690314504406252947183629528997182668939364972621881638533920604165004909632051892042017023778188856074205016058689811109914218736191778038867198745059503232258824200233891440883511732630870457214871342601647079483995289972660548990319312373566743884714588657087664840299494366384276188814082777441386931266608966526357087529308831759773077774681146691037626814237805638401031214746507435686018049763522874896896776144627645200153256385045223416249966938054765463305242814546790212096242946605111514996391569080846843754621149107595509977777532817338614379681574839884818139582932635326849628330963888782445532122834409537324419837793095737221908183969549653185773070285370995112843550304213478865147160418681305164761281369249573107252085873585546040294384536883249320235438723454984333176930609727298091173418800347164476931513840405517433194548265845800865961486104790165690718194108177938372786304589351894848541275293338044299704031652249922211213655353973772165897226834857473516856545521523144640972853824804410340968961913526224517821322298732893865383481463481082135791689503803453631090572459230131598106652233573213474342801592266104595789422841694362968205741599658171324675832550778378903113383551237002039524201976047
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							05659518bfe03a069d968a8954d94f1ef2ef86b8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bastioncraft.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bastioncraft.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018981d46cd400000403004630440220732f3d372c71e5852b0ffa5c16c0b61f339f29084606908ba877d67b8e64dce302204a2aef45fd9d8ed1905db7cce237629eccd3b96f08f9f1323aa94685f8552225007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018981d46cd8000004030047304502210088a1d255acbaad29c306ab4c441be8ea59fc19d4e205be2e98b71931e49ee6550220180ff50703736f6d8307b75adcf32bf5cb29727eb375e088899cf4b26f32600b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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