gravescreative.com.howtocontrolenglishivy.org
Issued by R3
About this certificate
This digital certificate with serial number 03:a2:49:5f:26:e9:38:3e:16:1a:71:9c:9f:94:64:6d:68:4f was issued on by Let's Encrypt.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=gravescreative.com.howtocontrolenglishivy.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a2:49:5f:26:e9:38:3e:16:1a:71:9c:9f:94:64:6d:68:4fSerial Number (int): 316560128937575763711202815986975871166543
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8f:f2:95:41:5c:2e:07:83:f8:b9:79:55:26:7b:5a:e5:0f:1f:7b:cf
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): a1:83:2d:a1:ee:8d:f4:fb:dc:07:fc:70:49:ed:b3:80:51:26:45:d0
Fingerprint (sha256): 8c:0e:8c:63:be:f7:05:2f:de:cf:b4:c4:19:2c:09:10:d4:81:d9:39:2f:20:2d:95:e3:20:f3:25:61:f3:85:53
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate gravescreative.com.howtocontrolenglishivy.org
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gravescreative.com.howtocontrolenglishivy.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
chriscashak.com
eizayagawedding.com
gogreenconnecticut.com
gravescreative.com.howtocontrolenglishivy.org
homeless.team
homerestoration.solutions
kisssucrosegoodbye.com.dallasasphaltpaving.com
postfallsrealestate.com.microphone.parts
rentalsforvip.com
showmetheplan.com
themotioncaptureplant.com
eizayagawedding.com
gogreenconnecticut.com
gravescreative.com.howtocontrolenglishivy.org
homeless.team
homerestoration.solutions
kisssucrosegoodbye.com.dallasasphaltpaving.com
postfallsrealestate.com.microphone.parts
rentalsforvip.com
showmetheplan.com
themotioncaptureplant.com
Other certificates including the domain name howtocontrolenglishivy.org
(limited to 100 certificates)
bhagavatgita.org
bestchoicevending.com
oklahomacitywomanleaders.org
howtocontrolenglishivy.org
canwebuild.org
stflanaganinstitute.ie
shiftcrm.ca
gravescreative.com.howtocontrolenglishivy.org
alliancedefensefund.org
charank.xyz.howtocontrolenglishivy.org
tvfour.co.za
ciao.vc
howtocontrolenglishivy.org
howtocontrolenglishivy.org
enerpactoolsgroup.de
acheter.bible
bestchoicevending.com
oklahomacitywomanleaders.org
howtocontrolenglishivy.org
canwebuild.org
stflanaganinstitute.ie
shiftcrm.ca
gravescreative.com.howtocontrolenglishivy.org
alliancedefensefund.org
charank.xyz.howtocontrolenglishivy.org
tvfour.co.za
ciao.vc
howtocontrolenglishivy.org
howtocontrolenglishivy.org
enerpactoolsgroup.de
acheter.bible
Certificate
The complete raw certificate details for gravescreative.com.howtocontrolenglishivy.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGMDCCBRigAwIBAgISA6JJXybpOD4WGnGcn5RkbWhPMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTcwNjM5MDBaFw0yNDAzMTYwNjM4NTlaMDgxNjA0BgNVBAMT LWdyYXZlc2NyZWF0aXZlLmNvbS5ob3d0b2NvbnRyb2xlbmdsaXNoaXZ5Lm9yZzCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANBG4HK5RrcD9mtXy2O7bZBn xcv85Gq0FME9i6cqoEY+8UMjoojbtvTZSGdja3jFgziQI+yQyYpZAEKve/PmPHLO i+CcB31/VWLd0f41Nf741I+epWuWEIW2IpBZg3I+duSMoj2XpPGdXD/c4/g+YZvT 903aRSPBtp7l0vOD2rs7YRcUfZkwzVBce5NsbF70RLp6x1QWGvTv/jOTOhj6Uxch DUEvNJvIVultNju7GdhGNrsdiZzuI6aVahYQn0SJ9cqeyzBQlT6g3e0U3yCQT2Uy OnkB4JKXRK6YA1lvCVe9Qqxyffq2BOitJ8J5NXrlgR6M2kNxtFtFvTOIhjtbdq8C AwEAAaOCAzgwggM0MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUj/KVQVwuB4P4uXlV Jnta5Q8fe88wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYB BQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYI KwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wggE/BgNVHREEggE2MIIB MoIPY2hyaXNjYXNoYWsuY29tghNlaXpheWFnYXdlZGRpbmcuY29tghZnb2dyZWVu Y29ubmVjdGljdXQuY29tgi1ncmF2ZXNjcmVhdGl2ZS5jb20uaG93dG9jb250cm9s ZW5nbGlzaGl2eS5vcmeCDWhvbWVsZXNzLnRlYW2CGWhvbWVyZXN0b3JhdGlvbi5z b2x1dGlvbnOCLmtpc3NzdWNyb3NlZ29vZGJ5ZS5jb20uZGFsbGFzYXNwaGFsdHBh dmluZy5jb22CKHBvc3RmYWxsc3JlYWxlc3RhdGUuY29tLm1pY3JvcGhvbmUucGFy dHOCEXJlbnRhbHNmb3J2aXAuY29tghFzaG93bWV0aGVwbGFuLmNvbYIZdGhlbW90 aW9uY2FwdHVyZXBsYW50LmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisG AQQB1nkCBAIEgfUEgfIA8AB2ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h +tQXAAABjHa2zkQAAAQDAEcwRQIhAJGmSBGTEwEkeGmepO3naxTE8J/dTSWXTAuK RYPdhzZuAiBGuG8vIjgegtwFQn/hXctLL6Xm7ggDgJTkT/EtqYmF/QB2AHb/iD8K tvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABjHa2zpIAAAQDAEcwRQIhAOtF 8s56JYmqdA7z9RgTlm+2i7ZKcGPdFlyiKwRxSI0OAiByXWjkH/TPYA4chXYZXgyl zeMrEQVKoYmuT9AVFQww0DANBgkqhkiG9w0BAQsFAAOCAQEAN30QXzqklg8Dx1BO unNeLMQsg2IodDm2H6jBBm7UycpkS1cegA2kAmr5f/DgI3ucIlNnwQuXIEuaF8O4 OAGS4Nyj6INVGhAgoMD37hUCZ8i1Wew8mdDTbx5TAbcfLxp2uMkFIfVQ9Sdyp00O pBvFbpUhV2GvXkVH8tQ7G4GzXjYHf5fnMwN/3mFwNLCEwuYA2irE3NxGepoq5DEK 5rQZhOzz02ug0VJSlTZvGVFR7A2pvzMdN2UU7urKitS+DY9/lBDAHENQVBiNCIui Bzwvpg5aYGUKbd7wQn0yT0v1jIVbBAvCxcdAKj+hZKhVywrCUSUVJ5LLYrQgWh4P LJLhSQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0EbgcrlGtwP2a1fLY7tt kGfFy/zkarQUwT2LpyqgRj7xQyOiiNu29NlIZ2NreMWDOJAj7JDJilkAQq978+Y8 cs6L4JwHfX9VYt3R/jU1/vjUj56la5YQhbYikFmDcj525IyiPZek8Z1cP9zj+D5h m9P3TdpFI8G2nuXS84PauzthFxR9mTDNUFx7k2xsXvREunrHVBYa9O/+M5M6GPpT FyENQS80m8hW6W02O7sZ2EY2ux2JnO4jppVqFhCfRIn1yp7LMFCVPqDd7RTfIJBP ZTI6eQHgkpdErpgDWW8JV71CrHJ9+rYE6K0nwnk1euWBHozaQ3G0W0W9M4iGO1t2 rwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 316560128937575763711202815986975871166543 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-17 06:39:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-16 06:38:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gravescreative.com.howtocontrolenglishivy.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26292518061261826011198374934283276036707212010587262254045884193614772794629614518533495241975866475881736552603726292095307843269245234654267285074631978370695379810538093505289593208734495727794879949981597912038786113655631543635389007180131879601893073887095398113092406911991017264555674967302605676130607813901805417437325570657860223049305006366343999414138476565689993802372842602356264226138370645354556934661382882410089227486138338080679984785284760812069946085540741303754598632152169751854140737876007362017277353602624472137706528494248071073806472281540038310430564151718409035361556993673044688598703 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8ff295415c2e0783f8b97955267b5ae50f1f7bcf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (310 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chriscashak.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eizayagawedding.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gogreenconnecticut.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gravescreative.com.howtocontrolenglishivy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeless.team' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homerestoration.solutions' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kisssucrosegoodbye.com.dallasasphaltpaving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'postfallsrealestate.com.microphone.parts' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rentalsforvip.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'showmetheplan.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'themotioncaptureplant.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c76b6ce44000004030047304502210091a648119313012478699ea4ede76b14c4f09fdd4d25974c0b8a4583dd87366e022046b86f2f22381e82dc05427fe15dcb4b2fa5e6ee08038094e44ff12da98985fd00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c76b6ce920000040300473045022100eb45f2ce7a2589aa740ef3f51813966fb68bb64a7063dd165ca22b0471488d0e0220725d68e41ff4cf600e1c8576195e0ca5cde32b11054aa189ae4fd015150c30d0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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