orlandoofficiant.wedding

Issued by R3

About this certificate

This digital certificate with serial number 03:69:74:5e:74:e1:a8:e4:89:b7:c7:b1:19:19:75:ca:d7:83 was issued on by Let's Encrypt.

With 16 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=orlandoofficiant.wedding

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:69:74:5e:74:e1:a8:e4:89:b7:c7:b1:19:19:75:ca:d7:83
Serial Number (int): 297221187216033151474974410645519058261891
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 7c:48:a2:3c:b1:a9:24:31:e9:ec:f6:1d:f2:1c:e8:30:71:dc:ed:0e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 54:c3:b4:00:f5:f8:4c:ed:72:65:ec:c1:d8:24:e2:b4:89:8e:e6:20
Fingerprint (sha256): 8a:31:20:f1:8d:8e:b6:4d:4d:da:0c:bf:1f:4b:d8:8a:71:6e:f7:27:35:fe:59:39:4c:0c:83:d6:f1:19:4c:de

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate orlandoofficiant.wedding

16

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for orlandoofficiant.wedding

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

barnwellcounty.com
bibletheologyministries.org
houstonvape.com
kleppo.com
lynnlawns.com
orlandoofficiant.wedding
polkville.com
ponderosanv.net
portaltoworld.com
republiccounty.com
rogermillscounty.com
saintlouisnetworking.com
stampblog.com
wearetheprey.org
windorbrands.com
woodwardcounty.com

Other certificates including the domain name orlandoofficiant.wedding

(limited to 100 certificates)
footballtrainers.in.marschnachzion.de
arbitrageur.me
v-b.co.za
orlandoofficiant.wedding
orlandoofficiant.wedding
authentickobe.com.internet.yoga
apotheke-guenstig.info.orlandoofficiant.wedding
boothlaw.llc
orlandoofficiant.wedding
orlandoofficiant.wedding
shadi.one

Certificate

The complete raw certificate details for orlandoofficiant.wedding in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqrC+wsSxUoAYkVeUocYC
frxjPncebwgI/YL4ng5lqMjEq1Qy24aUPZr3pqhmpZDNxb3Ow+btXCEN7fUvaM0t
YemuvQDTFWyMwar9PiEdFuFiZyXj7N0m8pIZjIoZjcRvaVyRmorlocYgAw7GBM5n
jibdvex+BY5VuFC3RXFoov9c9IPi3CIRswvD9+UbCqFeQfBmIEdwu1rpAcROqLxc
DVM78VTcvHeYil9UBv0J/KTRc7jpmE1Xb5hUfjANfKSgrVAsXp+cwXL8KTcsvWLB
mOdwt81h8rY8zwMKG1/SpBiPEKQqZtEtE2Kwvydukjy6Mz6MkH+yj4J9tzuRMD7X
0QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 297221187216033151474974410645519058261891
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-26 10:32:55 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-25 10:32:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'orlandoofficiant.wedding'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21547668130703625622003911652812915147570814476246514932743572703493817367936576406446750916172881239382591640165106820241108146640465416787026030669925704878594510570460595735956622732589923788496287281850198146092991901008555706097919945924142717600564483966251110798522526926537147905142145279107877381738496400923145699064713785445186196346629701163990513737943368963341858987304430466779359837906629080241126845986515985004856681934166411706293967995607465500502812619496269868668505653117749308931667471804598511258129617381175600042698610953173170790638781542750687914832896487312899052848239618029692261423057
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7c48a23cb1a92431e9ecf61df21ce83071dced0e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (313 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'barnwellcounty.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bibletheologyministries.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'houstonvape.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kleppo.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lynnlawns.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orlandoofficiant.wedding'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'polkville.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ponderosanv.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portaltoworld.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'republiccounty.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rogermillscounty.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'saintlouisnetworking.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stampblog.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wearetheprey.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'windorbrands.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'woodwardcounty.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d458b54f500000403004730450220659bb24840c30c1b459d6d4f52e845feda975392c0f4e0e087368271240fa978022100f2b81b68b597d8e577b6de545c12096584b4ad77d7591a9a7500d0624b3c37870076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d458b54fd0000040300473045022058930c6e0bf533eb35b7fec1c53123ad242adf017067d4a583ec08e39de9af88022100af5d83fce51b4ed12719158842251f4a1a60704b311888cb8e87f722c7486c9b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		007eb06a11f8ade71e16c611c0e78aa463f0c661fa0f69d0c05720c207c2ea6ed638e44d5926f9246315330117fa02aed484eb2de30bad5cbe962ef432f15d7e2ac9dd6b9d8819d1e4f7476f3173f403313608df523b23d6def8acd8fc90a2417440854558b2efbbf77e39be6d5ff83a1a35b99b70be88131b4f9ecfd505216411c5a36d57813ce3725b2dc39e9f47b73094ab9a929bb3e776ca04979222e2f8b8b22c989b8bf53eea65a9379a374a2ceaf7e83164233a5b17ff0eb9446935f70c35eecf83a17d74177087d9aaa4a1aac413753a1fd1a34228d22a6c1eb9bd5fae8512dd6b463a6ff7c2c8385c98871f65d5d1b245e44d7d21089fe00a2ed34bdc