homeschoolpenpal.org

Issued by R3

About this certificate

This digital certificate with serial number 04:b5:ae:68:c0:1c:ef:96:ce:16:8a:9e:80:70:b0:a2:15:fa was issued on by Let's Encrypt.

With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=homeschoolpenpal.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:b5:ae:68:c0:1c:ef:96:ce:16:8a:9e:80:70:b0:a2:15:fa
Serial Number (int): 410272081706385893138288710474694186374650
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 24:9e:fe:a2:14:d8:82:a4:90:ca:82:ff:88:7a:63:d0:05:b2:85:da
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): b2:ab:fb:47:f1:16:8d:7d:4c:6c:c1:01:9d:6d:aa:f7:cc:ed:3f:2f
Fingerprint (sha256): a2:c2:67:b6:25:74:04:f8:40:18:c2:0e:cf:4b:53:a9:45:bd:f5:bf:16:fb:6d:4c:a9:f4:a7:da:17:7e:02:92

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate homeschoolpenpal.org

5

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for homeschoolpenpal.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

aliceinwonderlamp.com
hempbond.com
homeschoolpenpal.org
myjeans.in.colloidalsilver.net.madeintheusasupplements.com.doctorbenlynch.com
wordsmadeeasy.com

Other certificates including the domain name homeschoolpenpal.org

(limited to 100 certificates)
homeschoolpenpal.org
timwiens.ca
comicbook.bible
homeschoolpenpal.org
homeschoolpenpal.org
homeschoolpenpal.org
homeschoolpenpal.org
allaboutltc.org
homeschoolpenpal.org

Certificate

The complete raw certificate details for homeschoolpenpal.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvW+rB2V5eEGc2HI5vSDY
fnzCniBIs/QrffDvzormCOzWFzZm/iE8P5GiNd6k7MGOuoZabh5AkXE5DFte36GO
8DDYDsKf7LHz7lch6rt8Jy7eIOdkZABHph3HrAs1rF+K6E2RSTinF8Nt0bfJY2qP
Q4/yMeb0UDGJ9GLWi1UEdPRSsKEO4iosatm08IyykbaQv2yW6Q3ZHfnoIsGh8v83
o8Sec4uCOeSYXMoy8Y9XvsuziFyoQIvZxlBGo4scCPB7W6GK++yq29NOTAhTm5aB
nDUkn0NJq50Ggc5Jazu5d4MlpG1t8AnbRCXmCRsAANXEMAobUV7PcxEb1si9C2fU
7wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 410272081706385893138288710474694186374650
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-25 17:08:37 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-24 17:08:36 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'homeschoolpenpal.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23914105221949306374553660393521455121289678230713207556532917796243346274625045108771480147615147610990521185747728100418922319388348961695649611423711439734667108430713709107219219384198731879154862839469040561901339316854942617803955185600867431960935079862221424662616066147060973518422453627627652265780993834726978822863608276440461008396047022772044830694721398371163042601225743407410027980647725682569927178255977348733935958470840362563501573829866431547297557590604364528175030622505684421154541683617993242257645031242154945453847680560097447498434448522798152411473793106708256166031086889453648389592303
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							249efea214d882a490ca82ff887a63d005b285da
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (160 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aliceinwonderlamp.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hempbond.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschoolpenpal.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myjeans.in.colloidalsilver.net.madeintheusasupplements.com.doctorbenlynch.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wordsmadeeasy.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ca22a1d180000040300463044022006ccd2cb02bee5868128f02c2e9ed469087e3baf7bc8b4a483ad35f3737adbe502207c9eb7bb4f823223507f46f31a83639ec81eb6edf4a095ce017be6547fb54c5200760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ca22a1d7200000403004730450221009df2e698122373834e76f543ce56eec2a37c128868c269b3edb4e1acbb7d64610220795aefed71b87a3e81f50e85fb3b2ab2e65a1da7aca547a88cb4b2bbe7179cd0
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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