stated.org
Issued by R10
About this certificate
This digital certificate with serial number 04:96:5e:f4:c4:8e:05:25:be:3a:d9:48:a3:e8:ff:31:ca:49 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=stated.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:96:5e:f4:c4:8e:05:25:be:3a:d9:48:a3:e8:ff:31:ca:49Serial Number (int): 399617717103823295142388679774067550702153
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: fa:48:f5:88:84:e4:4d:6f:77:0d:e0:b1:d7:ba:d7:c8:f1:da:f9:35
AuthorityKeyId: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8
Fingerprint (sha1): ca:61:4b:77:4e:be:fb:25:1b:d3:72:31:4a:7a:ff:16:e0:0a:2f:6b
Fingerprint (sha256): 8a:66:26:23:b0:75:f4:e6:bf:86:e1:12:6f:84:d5:db:03:09:63:8c:85:05:e5:c9:32:a2:62:b2:1e:6d:4c:f1
Issuing Certificate URL: http://r10.i.lencr.org/
Revocation information
OCSP Server: http://r10.o.lencr.orgCheck the revocation status for certificate stated.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for stated.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stated.org
Other certificates including the domain name stated.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for stated.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5DCCBMygAwIBAgISBJZe9MSOBSW+OtlIo+j/McpJMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQwNjEwMTIyNjA4WhcNMjQwOTA4MTIyNjA3WjAVMRMwEQYDVQQD EwpzdGF0ZWQub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5b41 hD40+GHZUrtiFewja4fGidsj7zCQLof7AtWDqpmFloAi1oJn7jnbsZV4G28Kdvbv pXLtFKNSNevzdMRA8c/7gx9rIe4vopr2tr9PjdAkqapidhxTbYq7j6084wqwKvAX n4z17VRTyFMq+a9EzB/JdQFbYqZ7N+/egPu3o5uEKz9o/TrLtPBPlxBdk2R1NMER DB/xr1ahwDBwdwVcNae8ApkOCZVeZs/0b6gbn6QTxCcMxcydsev2Qgjkbw5I6BX7 p6kP1rfxJvC0MyBsFMH+ZNEI2Y6QbrBnWQ5WoDuqwpPr7z2dS6LX0C/hM89dvuip bfb721jyuUUWTIuOEd6DvHLt7rdkVyIVdFEHKUSPlGAXpZuwvXZCH5zSgKuGqlRo w8oKeUfXDqOb2o5mPRF98h3PZ0hqlJ0M8hRtqdlpZ+KH8xuHzw5gWg/6EdQlcRyQ MzFCAtLCpx+IyBAd7vlwp9TREIUW7eAvLFm77IHKuer80h1xhm6vqtfa29NrSh9X rr0yj8DASU2utzV623jOFDwP4B9v7UsAVi4lrPPVfSh+J8sIx8jDFo9iaA0huPp/ L1Gs4viglqzKXXnLSvQMTY2EmpIMIZUo40W1+T2/zQgVhvXADpafJDoWcNqeijuC 2DDa3F//8VJWEE/M1wi0H2HUYXI1lAtX37JgXCsCAwEAAaOCAg4wggIKMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQU+kj1iITkTW93DeCx17rXyPHa+TUwHwYDVR0jBBgw FoAUu7zDR6XkvKnGw6RyDBCNojXhyOgwVwYIKwYBBQUHAQEESzBJMCIGCCsGAQUF BzABhhZodHRwOi8vcjEwLm8ubGVuY3Iub3JnMCMGCCsGAQUFBzAChhdodHRwOi8v cjEwLmkubGVuY3Iub3JnLzAVBgNVHREEDjAMggpzdGF0ZWQub3JnMBMGA1UdIAQM MAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcAPxdLT9ciR1iU HWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGQAlPdBAAABAMASDBGAiEAn80slhP4 I0+Stwa/u7kB43N1s57JZWuEd2YpsOUi1fkCIQCRKq1FXXBdedDLr1n7b2/7KNJj pf/GlaLEM6gifI8VqQB1ABmYEHEJ8NZSLjCA0p4/ZLuDbijM+Q9Sju7fzko/FrTK AAABkAJT3mkAAAQDAEYwRAIgbrSDCdcfaVYiPikVGMUvdRx7B6dP52ZgCRKGbY+x T1cCIC1wiuGLNqJRE0xS2mrMjaMkyRnHRuKKa2S4xD0pZzqLMA0GCSqGSIb3DQEB CwUAA4IBAQA9jrUsPN5w7QKjzwwqPimRJRFQ0VK6HlUNo1xfz3E0BRWCB87UdMLt NZjVahy5YYZtJgIR8HQbt4C2YWyPgLMt4kiLp89Cn7DFrd33l5VPfhyEyfVgQO3x D89jxxI5Ji46Aq5Agr8jw/LtNDrnAWy806xe+9WzGjkS/2atPz3/IEtA5xwVrVmW euRkb1eE9B1Wesv5GleygMYT7zb0I8j480Pfl5Mgll7s54hpplM3Rmhef8QntS/s kATG00GEVdUKkwaN98TZ2oNtbSxpiEDMDfmOtxIKCJqdZUcoE+FMBU2SllHEYDJB maBk0q/Uvmg/6H1OLeRJUAwySk54Btq8 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA5b41hD40+GHZUrtiFewj a4fGidsj7zCQLof7AtWDqpmFloAi1oJn7jnbsZV4G28KdvbvpXLtFKNSNevzdMRA 8c/7gx9rIe4vopr2tr9PjdAkqapidhxTbYq7j6084wqwKvAXn4z17VRTyFMq+a9E zB/JdQFbYqZ7N+/egPu3o5uEKz9o/TrLtPBPlxBdk2R1NMERDB/xr1ahwDBwdwVc Nae8ApkOCZVeZs/0b6gbn6QTxCcMxcydsev2Qgjkbw5I6BX7p6kP1rfxJvC0MyBs FMH+ZNEI2Y6QbrBnWQ5WoDuqwpPr7z2dS6LX0C/hM89dvuipbfb721jyuUUWTIuO Ed6DvHLt7rdkVyIVdFEHKUSPlGAXpZuwvXZCH5zSgKuGqlRow8oKeUfXDqOb2o5m PRF98h3PZ0hqlJ0M8hRtqdlpZ+KH8xuHzw5gWg/6EdQlcRyQMzFCAtLCpx+IyBAd 7vlwp9TREIUW7eAvLFm77IHKuer80h1xhm6vqtfa29NrSh9Xrr0yj8DASU2utzV6 23jOFDwP4B9v7UsAVi4lrPPVfSh+J8sIx8jDFo9iaA0huPp/L1Gs4viglqzKXXnL SvQMTY2EmpIMIZUo40W1+T2/zQgVhvXADpafJDoWcNqeijuC2DDa3F//8VJWEE/M 1wi0H2HUYXI1lAtX37JgXCsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 399617717103823295142388679774067550702153 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-10 12:26:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-08 12:26:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'stated.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 937269683838007145231567797966754681675585864671610252656274107046520469621477193220406616800731043772344584808885609603794091414752145334991478159004982650250035581559985295012963933346713965425738747014040885149996012406426811506773889260896991918995744195072614652494004226251937581726163434639417150902394469587191509451897522604618077574762591601071510300260989315500584051577185959735412953072926802332487555636265652897248772706237532055761427742316789071791765065985171010513627648946145066319609646687155267530223255540133099936630834874346923893623530806006125560856922116652623986277656059172735482884157386728839047459604880731620050654704767251788962720576430481025160423758566525456154915813026521620923771102329273622022710948228912081332500918620520078558931872011165467879660802191374451976326394786740680361225750594880575704310849873863293820295676727067027207767873930557258487381887888885746181588033244308952144490320267206714705007151573370461575104124791387936663498013611352063596319553424175072678714203683704596726106944497144932816273623903221015261707746774039849092654944127416959498095714888867714310479346652716246188550530065854639671909172202288649941380817817864075029111960696436844986186812382251 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fa48f58884e44d6f770de0b1d7bad7c8f1daf935 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stated.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e000001900253dd0400000403004830460221009fcd2c9613f8234f92b706bfbbb901e37375b39ec9656b84776629b0e522d5f9022100912aad455d705d79d0cbaf59fb6f6ffb28d263a5ffc695a2c433a8227c8f15a90075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca000001900253de69000004030046304402206eb48309d71f6956223e291518c52f751c7b07a74fe766600912866d8fb14f5702202d708ae18b36a251134c52da6acc8da324c919c746e28a6b64b8c43d29673a8b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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