ginnifer.org

Issued by R3

About this certificate

This digital certificate with serial number 04:38:e2:fa:8b:71:05:99:c5:f2:73:10:5a:c5:e3:c5:a6:e3 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ginnifer.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:38:e2:fa:8b:71:05:99:c5:f2:73:10:5a:c5:e3:c5:a6:e3
Serial Number (int): 367806662704085015831800136304238864475875
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: c2:e0:c4:61:88:37:84:00:dc:56:72:6c:3a:3a:87:9a:f6:aa:32:2d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 3d:d9:25:1b:68:6d:87:04:e7:b2:dd:85:e1:f3:30:bf:72:8c:e3:73
Fingerprint (sha256): a2:87:69:68:b0:0d:68:c6:d6:ed:6c:1c:65:73:44:91:ea:91:31:e3:41:05:94:9d:ae:af:e2:d8:40:79:05:a9

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate ginnifer.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ginnifer.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ginnifer.org

Other certificates including the domain name ginnifer.org

(limited to 100 certificates)
www.ginnifer.org
www.ginnifer.org
ginnifer.org
ginnifer.org
ginnifer.org
ginnifer.org
ginnifer.org
ginnifer.org
www.ginnifer.org
ginnifer.org
ginnifer.org
www.ginnifer.org
www.ginnifer.org
ginnifer.org
www.ginnifer.org
ginnifer.org

Certificate

The complete raw certificate details for ginnifer.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 367806662704085015831800136304238864475875
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-06 14:30:33 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-04 14:30:32 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ginnifer.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 860320488876176105217586429715281800164999296732050208892256869468057802178685096342074362096286071146503968142016010382386016711823695992447109654537178124736177674270257900997461163322231724012045581055771503676576573226019977014757456088488621336812611044407947735479144244686236203088778923046720355226651947497011455496863693862522008752716916534657300394044627207636783195251160974875820322963196845710681040690601447211756537310298902421742843445935362527459944427765808304497395035826723015428212746573994183464480086845439361378202351732150840639787604295100729170405220506445910266381102890802873640714216611528945554008614884565698332318834516993064795857875631142677422532796167766693680376417747250484611309706954732563169276466449024146740781808764053934175313242885764549056656422556480525651911343282306402234084170194402619274944975240944861534970175486060504333226351686077006187932515083181977840432756616565096597671821076456131733816328942571237369697153924045284926567181562304447561908895565340612739213858794819502365264867024116981289597574102044250706864606157730462879699852351535776716256636345867076445290236056412327159320189925022155811496795240653721304518223033076594980082891160428314793138224796247
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c2e0c46188378400dc56726c3a3a879af6aa322d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ginnifer.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e14634498000004030047304502207f6203c9a0ff74aaa9eac703815f2f07402a3bc9c74fa0b4b97d277297309647022100b2b6d8c5e7e6add61a9a55b3d0d3ad089fe8c1bc555c57e39211a6fc20b209d1007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e1463449f0000040300463044022032912ef94293dda5fbcd7f18638ec58e85b677aa46d60d4df4811371d7fad9f302206f1b639b3e0c1f42fbb14dadefe0530e41d61bc23480b71e7ff248a5487e85d0
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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