homeschoolpenpal.org
Issued by R3
About this certificate
This digital certificate with serial number 04:b5:ae:68:c0:1c:ef:96:ce:16:8a:9e:80:70:b0:a2:15:fa was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=homeschoolpenpal.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:b5:ae:68:c0:1c:ef:96:ce:16:8a:9e:80:70:b0:a2:15:faSerial Number (int): 410272081706385893138288710474694186374650
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 24:9e:fe:a2:14:d8:82:a4:90:ca:82:ff:88:7a:63:d0:05:b2:85:da
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): b2:ab:fb:47:f1:16:8d:7d:4c:6c:c1:01:9d:6d:aa:f7:cc:ed:3f:2f
Fingerprint (sha256): a2:c2:67:b6:25:74:04:f8:40:18:c2:0e:cf:4b:53:a9:45:bd:f5:bf:16:fb:6d:4c:a9:f4:a7:da:17:7e:02:92
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate homeschoolpenpal.org
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for homeschoolpenpal.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aliceinwonderlamp.com
hempbond.com
homeschoolpenpal.org
myjeans.in.colloidalsilver.net.madeintheusasupplements.com.doctorbenlynch.com
wordsmadeeasy.com
hempbond.com
homeschoolpenpal.org
myjeans.in.colloidalsilver.net.madeintheusasupplements.com.doctorbenlynch.com
wordsmadeeasy.com
Other certificates including the domain name homeschoolpenpal.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for homeschoolpenpal.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFfjCCBGagAwIBAgISBLWuaMAc75bOFoqegHCwohX6MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMjUxNzA4MzdaFw0yNDAzMjQxNzA4MzZaMB8xHTAbBgNVBAMT FGhvbWVzY2hvb2xwZW5wYWwub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAvW+rB2V5eEGc2HI5vSDYfnzCniBIs/QrffDvzormCOzWFzZm/iE8P5Gi Nd6k7MGOuoZabh5AkXE5DFte36GO8DDYDsKf7LHz7lch6rt8Jy7eIOdkZABHph3H rAs1rF+K6E2RSTinF8Nt0bfJY2qPQ4/yMeb0UDGJ9GLWi1UEdPRSsKEO4iosatm0 8IyykbaQv2yW6Q3ZHfnoIsGh8v83o8Sec4uCOeSYXMoy8Y9XvsuziFyoQIvZxlBG o4scCPB7W6GK++yq29NOTAhTm5aBnDUkn0NJq50Ggc5Jazu5d4MlpG1t8AnbRCXm CRsAANXEMAobUV7PcxEb1si9C2fU7wIDAQABo4ICnzCCApswDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBQknv6iFNiCpJDKgv+IemPQBbKF2jAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzCBqAYDVR0RBIGgMIGdghVhbGljZWlud29uZGVybGFtcC5jb22CDGhl bXBib25kLmNvbYIUaG9tZXNjaG9vbHBlbnBhbC5vcmeCTW15amVhbnMuaW4uY29s bG9pZGFsc2lsdmVyLm5ldC5tYWRlaW50aGV1c2FzdXBwbGVtZW50cy5jb20uZG9j dG9yYmVubHluY2guY29tghF3b3Jkc21hZGVlYXN5LmNvbTATBgNVHSAEDDAKMAgG BmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AEiw42vapkc0D+VqAvqd MOscUgHLVt0sgdm7v6s52IRzAAABjKIqHRgAAAQDAEYwRAIgBszSywK+5YaBKPAs Lp7UaQh+O697yLSkg60183N62+UCIHyet7tPgjIjUH9G8xqDY57IHrbt9KCVzgF7 5lR/tUxSAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGMoiod cgAABAMARzBFAiEAnfLmmBIjc4NOdvVDzlbuwqN8Eohowmmz7bThrLt9ZGECIHla 7+1xuHo+gfUOhfs7KrLmWh2nrKVHqIy0srvnF5zQMA0GCSqGSIb3DQEBCwUAA4IB AQCd9lFJ22DI9tYetuZhAuhRELHA294gMhn+cTw07J7MX/lEWUj0KsENoG1Bf/Iy mDOrqZsjPDCQBDn09i1gwS/lQjwXqJNNooH7RyuK6zAE4xAq4zmNKCRDit3HPIfs tqaNhUQQE7NZyHwoPBfXUWGBUaT42K5CW8206tG6CwWIJ9HKF1gYQOL0thH/ZswX VcYC7ALtTx3gFo/6HVLsXB3CxsOO94NEj36C5BrYQizGb7pJd0H98vOVG7Ad3yRX e3BsmSDV5wDo63yd78/0gh9rWCIURu1K6Q8wN0cYVwaDOZNaqpUgMeLknQFlxL93 Q+xq65amdPGLuBSsG7pMOYgV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvW+rB2V5eEGc2HI5vSDY fnzCniBIs/QrffDvzormCOzWFzZm/iE8P5GiNd6k7MGOuoZabh5AkXE5DFte36GO 8DDYDsKf7LHz7lch6rt8Jy7eIOdkZABHph3HrAs1rF+K6E2RSTinF8Nt0bfJY2qP Q4/yMeb0UDGJ9GLWi1UEdPRSsKEO4iosatm08IyykbaQv2yW6Q3ZHfnoIsGh8v83 o8Sec4uCOeSYXMoy8Y9XvsuziFyoQIvZxlBGo4scCPB7W6GK++yq29NOTAhTm5aB nDUkn0NJq50Ggc5Jazu5d4MlpG1t8AnbRCXmCRsAANXEMAobUV7PcxEb1si9C2fU 7wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 410272081706385893138288710474694186374650 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-25 17:08:37 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-24 17:08:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'homeschoolpenpal.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23914105221949306374553660393521455121289678230713207556532917796243346274625045108771480147615147610990521185747728100418922319388348961695649611423711439734667108430713709107219219384198731879154862839469040561901339316854942617803955185600867431960935079862221424662616066147060973518422453627627652265780993834726978822863608276440461008396047022772044830694721398371163042601225743407410027980647725682569927178255977348733935958470840362563501573829866431547297557590604364528175030622505684421154541683617993242257645031242154945453847680560097447498434448522798152411473793106708256166031086889453648389592303 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 249efea214d882a490ca82ff887a63d005b285da . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (160 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aliceinwonderlamp.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hempbond.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschoolpenpal.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myjeans.in.colloidalsilver.net.madeintheusasupplements.com.doctorbenlynch.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wordsmadeeasy.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ca22a1d180000040300463044022006ccd2cb02bee5868128f02c2e9ed469087e3baf7bc8b4a483ad35f3737adbe502207c9eb7bb4f823223507f46f31a83639ec81eb6edf4a095ce017be6547fb54c5200760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ca22a1d7200000403004730450221009df2e698122373834e76f543ce56eec2a37c128868c269b3edb4e1acbb7d64610220795aefed71b87a3e81f50e85fb3b2ab2e65a1da7aca547a88cb4b2bbe7179cd0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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