keepbathroomsafe.org

Issued by R3

About this certificate

This digital certificate with serial number 04:09:b7:e9:d6:56:00:b4:67:3c:ab:6d:4a:e6:c4:4e:1f:da was issued on by Let's Encrypt.

With 14 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=keepbathroomsafe.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:09:b7:e9:d6:56:00:b4:67:3c:ab:6d:4a:e6:c4:4e:1f:da
Serial Number (int): 351756147904975606229099453157404549455834
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: a1:b1:ac:01:04:72:21:d6:66:75:4f:f8:f5:5e:40:2e:9e:c0:ff:58
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 5f:15:f7:4b:1c:96:c2:ec:ea:c2:2b:73:7f:4c:1b:dc:1b:7f:23:70
Fingerprint (sha256): a0:7a:69:d5:4c:45:7b:72:a8:6b:10:08:b6:b0:3e:45:89:56:ba:05:27:81:86:4c:01:ae:d2:c6:82:6d:70:b9

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate keepbathroomsafe.org

14

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for keepbathroomsafe.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

burakyavuz.com.xshemp.com.cbdhempjuice.com
deangilbert.net
entities.info
familyarbiter.com
homeschoolteachingsummit.org
househackingusa.com
keepbathroomsafe.org
marklevystudio.com
ramisabri.com.winatriptoberlin.com
sacondo.info
showfreelancers.com
tilona.com.healthyhomekentucky.com
web3login.com
xiamoi.com

Other certificates including the domain name keepbathroomsafe.org

(limited to 100 certificates)
keepbathroomsafe.org
enerpactoolgroup.net.thecapetonian.co.za
keepbathroomsafe.org
keepbathroomsafe.org
keepbathroomsafe.org
keepbathroomsafe.org
keepbathroomsafe.org
arbitrager.ca
bomberssoftball.org.keepbathroomsafe.org

Certificate

The complete raw certificate details for keepbathroomsafe.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA55OjhnHiq9xLeDNnZgd5
buAh8roRo0E2p2vfA/+aQjBF/teetuKE+FtLv6fRzDGVmGrWahoxDlb5ofWmWvab
l6EsxfAI734bQPwPXGQEfi5cYxnaqFmSpQgSvA22jXZEp17WOb68H9DyQCgNJSPb
rXh2REjnGicHGU8u+4YbGRbvBpBGCnXxs3NJvXgwwqASYWTB6qb+YSmJNjQmSMOW
APUxXE4D249ADeCxcXtip97aOdKoMLUzAZuORNbtCdN23I07LGBiJSvLWfIk+l39
+5vjd6MfPfyWorhpvg1eYqbRsCX8OCdSCinyOfEuwawAZewoFYkmih7rO5X4C999
RQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 351756147904975606229099453157404549455834
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-28 14:45:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-26 14:44:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'keepbathroomsafe.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29233851838172512310067534040905228561691152403741129176764412883140786474210966315962126265401849776625615966357895787107312684204243978603545136333981882384789777565256786654191970806786783180230871930571162139420281840655883522130623815605418536683089801504818004722839454160080373008918835478554976633820113314062322365874998086547554200511313271688221531458872642381201845844175166873973396999288082508635377839064473232773515441225099065427248405504057244938163504220571855553626376472193625284029888918833029275689919611935912955257525641457281075022082111415430975826739498986198507456372906206508531840941381
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a1b1ac01047221d666754ff8f55e402e9ec0ff58
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (326 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'burakyavuz.com.xshemp.com.cbdhempjuice.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'deangilbert.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'entities.info'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'familyarbiter.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschoolteachingsummit.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'househackingusa.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'keepbathroomsafe.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marklevystudio.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ramisabri.com.winatriptoberlin.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sacondo.info'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'showfreelancers.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tilona.com.healthyhomekentucky.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'web3login.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xiamoi.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b76f5c5cb0000040300483046022100aea84a5c0f8d5d34977e97eca9b9c91dd0904dd664a63d59fba6ab0b7a3abf0f022100a76af3fb502c6f292901f7a42d947f589f69db2c1746e9b5b8a2da025df1974a00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b76f5c5ff0000040300473045022100ebb229a512a5ecc50b9000196a8807b074ef33baa7dba8bbe2fb01f6faa1083402205bb6ee3796d1a8ada2e2f79c2911a0e5e7da59a7f677ed7e091acbe15d692377
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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