ginnifer.org
Issued by R3
About this certificate
This digital certificate with serial number 04:38:e2:fa:8b:71:05:99:c5:f2:73:10:5a:c5:e3:c5:a6:e3 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ginnifer.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:38:e2:fa:8b:71:05:99:c5:f2:73:10:5a:c5:e3:c5:a6:e3Serial Number (int): 367806662704085015831800136304238864475875
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c2:e0:c4:61:88:37:84:00:dc:56:72:6c:3a:3a:87:9a:f6:aa:32:2d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 3d:d9:25:1b:68:6d:87:04:e7:b2:dd:85:e1:f3:30:bf:72:8c:e3:73
Fingerprint (sha256): a2:87:69:68:b0:0d:68:c6:d6:ed:6c:1c:65:73:44:91:ea:91:31:e3:41:05:94:9d:ae:af:e2:d8:40:79:05:a9
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ginnifer.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ginnifer.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ginnifer.org
Other certificates including the domain name ginnifer.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for ginnifer.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5DCCBMygAwIBAgISBDji+otxBZnF8nMQWsXjxabjMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDYxNDMwMzNaFw0yNDA2MDQxNDMwMzJaMBcxFTATBgNVBAMT DGdpbm5pZmVyLm9yZzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANLh mmANm2EqTmu3AwGoSbMBRz8OgzwsuC5Apw5xsSiBTG8d2LPr8H7OfoFfuvQwXi0w 1S75zzfXx1n/FueNlyFvTeF2IflKZ8JzLPUiOOeC20cY/HQe89esb9zKFsUmEnZr rXL1paduzpD6p7GrTVHlUTe6VV1IMiwjJFsyFHgaSsAZM5E7s7Z+JM3LUOIzRdSB MX9otVhr6Yp8eDp4j2NptXsQjblZlb6joYtjC5/zB2j0QThwA23EDd+vZXJbc07d lM6oCyztjC7LJGp7p0187k2lpIksz7ySnb9yz5azFPPxuICWmr8rtntoqMRTlV4C yAYFGE8KvdxdLZLcKb+pvDIXG1PrKn0HrQQGq14/5gy7ZG71Qdp776KHE+1fLvV9 azIEm2QRqNjlYvg0iCzcgWAm2JXj4ErL08vzfP8BYaIbfvjhkJv3P/ITuGkGpv0E H7yoKXkJy8NKKBXPclE/wGJCR4RnvmeKuyDyHQkw8fADEVqvOnYSRMduwnX8/4IX 3I8OmirCHjQjiihkynevPJiqrtfOz4b570/QqsL+BNWWaxDlGk8nY60Ne+I11nX6 bDc5BGZRP81kx1Qy165jkCHxtrj1oi7fFsB/AaKr5I86TOc8jNbQJBoeLKv1ZaWS chSojR+fvg5ioBKtqfQP7gbjMPeqTu4lfnqnzpJXAgMBAAGjggINMIICCTAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFMLgxGGIN4QA3FZybDo6h5r2qjItMB8GA1UdIwQY MBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEF BQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8v cjMuaS5sZW5jci5vcmcvMBcGA1UdEQQQMA6CDGdpbm5pZmVyLm9yZzATBgNVHSAE DDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2ADtTd3U+LbmA ToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjhRjRJgAAAQDAEcwRQIgf2IDyaD/ dKqp6scDgV8vB0AqO8nHT6C0uX0ncpcwlkcCIQCyttjF5+at1hqaVbPQ060In+jB vFVcV+OSEab8ILIJ0QB1AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7Wb AAABjhRjRJ8AAAQDAEYwRAIgMpEu+UKT3aX7zX8YY47FjoW2d6pG1g1N9IETcdf6 2fMCIG8bY5s+DB9C+7FNre/gUw5B1hvCNIC3Hn/ySKVIfoXQMA0GCSqGSIb3DQEB CwUAA4IBAQAnZ2IhrJcOmtD2Qz39SkVg00n9yrsgL0vCHwCfAhIAKImYFyZNeLeT iNIrkk89AF71flT9/8CS1ngukBm5NBZUSnH17WKqgGmNpyUd8Rq3CdkukuWfbMCu FsHkOGLI34+37Xdwnmt83Rs3zfgwkbiGqRwpB2szZ2LUMc1BoDQYRqJdIFSDbpxj Pk17CRF+fUzBPL9vXJ8FaHfnHUg2rCIkk0WCg1ptedfj9n3suQLLREL4gWfKsi8R HpyRnXSt+nP1paf7MQXCGsst79frBSfv3DS/kpsJAC6v8RiUJMJ6vL35DbWF81kF S5iv2YcPRUL1ZYvTV2UcH7W2WdS2eQQy -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0uGaYA2bYSpOa7cDAahJ swFHPw6DPCy4LkCnDnGxKIFMbx3Ys+vwfs5+gV+69DBeLTDVLvnPN9fHWf8W542X IW9N4XYh+UpnwnMs9SI454LbRxj8dB7z16xv3MoWxSYSdmutcvWlp27OkPqnsatN UeVRN7pVXUgyLCMkWzIUeBpKwBkzkTuztn4kzctQ4jNF1IExf2i1WGvpinx4OniP Y2m1exCNuVmVvqOhi2MLn/MHaPRBOHADbcQN369lcltzTt2UzqgLLO2MLsskanun TXzuTaWkiSzPvJKdv3LPlrMU8/G4gJaavyu2e2ioxFOVXgLIBgUYTwq93F0tktwp v6m8MhcbU+sqfQetBAarXj/mDLtkbvVB2nvvoocT7V8u9X1rMgSbZBGo2OVi+DSI LNyBYCbYlePgSsvTy/N8/wFhoht++OGQm/c/8hO4aQam/QQfvKgpeQnLw0ooFc9y UT/AYkJHhGe+Z4q7IPIdCTDx8AMRWq86dhJEx27Cdfz/ghfcjw6aKsIeNCOKKGTK d688mKqu187PhvnvT9Cqwv4E1ZZrEOUaTydjrQ174jXWdfpsNzkEZlE/zWTHVDLX rmOQIfG2uPWiLt8WwH8BoqvkjzpM5zyM1tAkGh4sq/VlpZJyFKiNH5++DmKgEq2p 9A/uBuMw96pO7iV+eqfOklcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 367806662704085015831800136304238864475875 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-06 14:30:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-04 14:30:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ginnifer.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 860320488876176105217586429715281800164999296732050208892256869468057802178685096342074362096286071146503968142016010382386016711823695992447109654537178124736177674270257900997461163322231724012045581055771503676576573226019977014757456088488621336812611044407947735479144244686236203088778923046720355226651947497011455496863693862522008752716916534657300394044627207636783195251160974875820322963196845710681040690601447211756537310298902421742843445935362527459944427765808304497395035826723015428212746573994183464480086845439361378202351732150840639787604295100729170405220506445910266381102890802873640714216611528945554008614884565698332318834516993064795857875631142677422532796167766693680376417747250484611309706954732563169276466449024146740781808764053934175313242885764549056656422556480525651911343282306402234084170194402619274944975240944861534970175486060504333226351686077006187932515083181977840432756616565096597671821076456131733816328942571237369697153924045284926567181562304447561908895565340612739213858794819502365264867024116981289597574102044250706864606157730462879699852351535776716256636345867076445290236056412327159320189925022155811496795240653721304518223033076594980082891160428314793138224796247 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c2e0c46188378400dc56726c3a3a879af6aa322d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ginnifer.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e14634498000004030047304502207f6203c9a0ff74aaa9eac703815f2f07402a3bc9c74fa0b4b97d277297309647022100b2b6d8c5e7e6add61a9a55b3d0d3ad089fe8c1bc555c57e39211a6fc20b209d1007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e1463449f0000040300463044022032912ef94293dda5fbcd7f18638ec58e85b677aa46d60d4df4811371d7fad9f302206f1b639b3e0c1f42fbb14dadefe0530e41d61bc23480b71e7ff248a5487e85d0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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