ontofu.com

Issued by R3

About this certificate

This digital certificate with serial number 03:3b:43:1c:61:fc:73:7f:0e:c4:fa:22:23:65:e7:71:40:8c was issued on by Let's Encrypt.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ontofu.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:3b:43:1c:61:fc:73:7f:0e:c4:fa:22:23:65:e7:71:40:8c
Serial Number (int): 281502723091040710510130860816474676740236
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 03:45:7e:46:a7:92:c9:ef:53:fe:6b:3c:6c:99:12:b3:d1:ba:e8:58
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 2a:ef:77:2d:39:ff:bd:0b:b8:91:31:9e:e7:87:8d:d4:61:50:13:27
Fingerprint (sha256): a4:e2:2d:57:f4:c5:5c:b2:e9:f0:0e:2c:d1:32:29:61:29:8e:a5:1f:d6:0f:67:c3:ae:f6:f9:23:8d:55:0e:be

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate ontofu.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ontofu.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ontofu.com

Other certificates including the domain name ontofu.com

(limited to 100 certificates)
forms.focalyt.com
forms.techsdeck.in
forms.pandagis.com
forms.pnyh.org
forms.intownsolutions.com
forms.esfaw.net
forms.pandagis.com
forms.intownsolutions.com
forms.pandagis.com
forms.intownsolutions.com
forms.pandagis.com
forms.rs999.in
form.qwikskills.com
form30.freewebinars.in
support.digimarketersacademy.com
support.dsquarepro.in
forms.intownsolutions.com
apply.shopact.mahalicense.com
forms.jv-extensions.com
forms.intownsolutions.com
forms.relomi.com
forms.premiumlearnings.com
forms.bloomfloral.co.in
forms.relomi.com
forms.digixess.com
forms.intownsolutions.com
apply.shopact.mahalicense.com
forms.intownsolutions.com
form30.freewebinars.in
forms.tileforest.com
ontofu.com
forms.esfaw.net
forms.intownsolutions.com
form.settlementcounselling.com
support.dsquarepro.in
form.settlementcounselling.com
forms.intownsolutions.com
forms.digixess.com
moreyeahs.ontofu.com
forms.techsdeck.in
forms.tileforest.com
forms.digixess.com
support.digimarketersacademy.com
forms.premiumlearnings.com
forms.esfaw.net
form.settlementcounselling.com
forms.relomi.com
forms.intownsolutions.com
forms.relomi.com

Certificate

The complete raw certificate details for ontofu.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 281502723091040710510130860816474676740236
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-17 05:53:42 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-15 05:53:41 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ontofu.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 780375816107703410166643273354771987010283307763991552180117775114318870496877161885782569423911923969274244306429880416298754541298386750234519030914026629744438459517766003546723299579362833938712499735389994057068830981574504854179408353579320177559664467128085408928599397241309915662900747719829823962390932521836927467180913366547117713566731643454617484073160161624282777237621772183567176484066431285691846561400397563769246137778853953330780626275133879524226340637881762993582536824592136585143436831657392569915958793089018309789438694958957358500107666651535244336252767956356276269496277473106869428793901869740821473893838022718419316093308434572926843220535421254732819011833699116131941713797944502693489044247327027516676696224256614085531344762189990194373681089190464372367009959995301216148608037866816097679818795457113453092578221822017295495662197591588217589066385878206107481138668148216488861413281996094968093226783616137998407445890295271600227101993264746207796625888314114882452254589001924413430827604524384164912872461493300831176808504808508305301599528541110520039269948343413023547641855912175777013853938449058627390055965304377161049360324388801559561219277785204785863725042869443066712264924079
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							03457e46a792c9ef53fe6b3c6c9912b3d1bae858
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ontofu.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f8553f3fe000004030046304402202f08dbd1a06c33f09abaeb37b0e5a5c65efc262ba668d5f63bf9e1a3587c1ee102201f08b442f1a65d0a4e03e96469f7a629a1856d9efde7bbcbddbb938dbff7b4240076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018f8553f4c700000403004730450220456a4124fa059da149981c69481f7cec8d6b797ca5d8ccbefd7e3bfb0aa4832e022100f827deb4ef12efbda889e1b8d05f4141e097fc0f6bbe44feb760a6b36b81f9dc
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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