www.gingerhaze.com
Issued by R3
About this certificate
This digital certificate with serial number 03:cf:8d:29:cc:50:17:67:06:32:93:6e:b2:85:50:af:5f:15 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.gingerhaze.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:cf:8d:29:cc:50:17:67:06:32:93:6e:b2:85:50:af:5f:15Serial Number (int): 331962945923448929792736833253691492359957
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 40:a5:63:8d:11:8d:92:ac:f1:1c:91:8f:70:d4:57:df:17:21:10:0c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 38:9f:94:52:db:a9:24:91:9f:1b:8a:bc:e1:d1:92:4c:0a:01:17:03
Fingerprint (sha256): a5:c1:1b:8f:05:d0:65:dc:6c:38:51:24:8e:4e:2d:94:b0:3d:1c:b1:aa:50:ce:2c:76:81:0f:62:d3:42:39:e8
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.gingerhaze.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.gingerhaze.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.gingerhaze.com
Other certificates including the domain name gingerhaze.com
(limited to 100 certificates)
gingerhaze.com
gingerhaze.com
gingerhaze.com
web13.tigertech.biz
gingerhaze.com
gingerhaze.com
mail.gingerhaze.com
*.capemaytoday.com
gingerhaze.com
sni.cloudflaressl.com
gingerhaze.com
www.gingerhaze.com
web13.tigertech.biz
web13.tigertech.biz
www.gingerhaze.com
gingerhaze.com
*.gingerhaze.com
sni.cloudflaressl.com
*.aldonys.org
www.gingerhaze.com
web13.tigertech.biz
gingerhaze.com
web13.tigertech.biz
web13.tigertech.biz
*.urbancultureyo.com
web13.tigertech.biz
www.gingerhaze.com
*.aldonys.org
*.californiawindowmasters.com
*.aldonys.org
*.pacificees.org
gingerhaze.com
gingerhaze.com
gingerhaze.com
gingerhaze.com
web13.tigertech.biz
gingerhaze.com
gingerhaze.com
mail.gingerhaze.com
*.capemaytoday.com
gingerhaze.com
sni.cloudflaressl.com
gingerhaze.com
www.gingerhaze.com
web13.tigertech.biz
web13.tigertech.biz
www.gingerhaze.com
gingerhaze.com
*.gingerhaze.com
sni.cloudflaressl.com
*.aldonys.org
www.gingerhaze.com
web13.tigertech.biz
gingerhaze.com
web13.tigertech.biz
web13.tigertech.biz
*.urbancultureyo.com
web13.tigertech.biz
www.gingerhaze.com
*.aldonys.org
*.californiawindowmasters.com
*.aldonys.org
*.pacificees.org
gingerhaze.com
gingerhaze.com
Certificate
The complete raw certificate details for www.gingerhaze.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgISA8+NKcxQF2cGMpNusoVQr18VMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MjExMjI1NThaFw0yNDA3MjAxMjI1NTdaMB0xGzAZBgNVBAMT End3dy5naW5nZXJoYXplLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJqmSNizzSfEjYCSMZFI8RiSo/Ptv9OnEk55QVjzA4duc3ZLPWQwen4P3PEk 71Umnu8j7iLtI7aSY9GMvBAnRTy5QtNFSPTwqu0ggsmXY3QGtbB4R9b5vM18r7uu GetKP5SjrUfuNz82MSCxK4ZSqyUmbbOsN8Zrx9smvvje9Ch6TgWQ/oJRYSQwxp59 /RetiCXRLetr/BdqJnqqtxxPUxWsZk0QeZBzY1fMBAaIdITPZXeXG28F13ttkoxq uZWxYqlOrmR0+oX+dkLXkYv1QLmH1QVpTyFMLgsfAaIWMybi3Gdzefenbhwsh0Ia bu/GmOdQHuqbZdPqQmb1lz/2pBUCAwEAAaOCAhQwggIQMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUQKVjjRGNkqzxHJGPcNRX3xchEAwwHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8wHQYDVR0RBBYwFIISd3d3LmdpbmdlcmhhemUuY29tMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAPxdLT9ciR1iUHWUc hL4NEu2QN38fhWrrwb8ohez4ZG4AAAGPANW9IAAABAMARzBFAiEAi3HOSI2PYQsC xON64hddFS8CVT0GSkA7NzJyVCOS6esCIHjRT/hzDb6cRASRU8jkcIh+ctjCLupX zIJAVtCZlm1sAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGP ANW9HQAABAMARzBFAiB6l7k7PoVxhHTZ7GyZ/jspeZFYbI/mUt5jRGLXEeoQ0QIh AKOPOcajOkm2w4omWuZAqPoctmvjg+glnaZfR5HCxvl9MA0GCSqGSIb3DQEBCwUA A4IBAQBfP9kbFojXG5/7FBf0dVoVjEdtFyQojTd1T39yyMBf8OJojZnzMCUOY2SF gT5s1beL61hTXUCHFR4RiKQ1oxmqLffqjBU8nmdUBRTWx920hI0INNDTg5Qo+jaO jc1+0ZsWzXqQTW2ZVnE6lDl2wTh7KWcRhfrrx60C1zWCyGXGFzUv4W/PI1C/8oWL 9ur1dRqv/3YKWJopz6Rzogg7LSNPn7Gtx62oYp96SEyz7mInv1byjwihTXPKJapT Ub/ldF/X+2b284iXtB8mR+ajepc2xzZy9sktnW5cD7OdKCu7T8XmN7lwbkd22DJC 3SxsXRKH6dg8G38GbMdCkj+JtYkK -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmqZI2LPNJ8SNgJIxkUjx GJKj8+2/06cSTnlBWPMDh25zdks9ZDB6fg/c8STvVSae7yPuIu0jtpJj0Yy8ECdF PLlC00VI9PCq7SCCyZdjdAa1sHhH1vm8zXyvu64Z60o/lKOtR+43PzYxILErhlKr JSZts6w3xmvH2ya++N70KHpOBZD+glFhJDDGnn39F62IJdEt62v8F2omeqq3HE9T FaxmTRB5kHNjV8wEBoh0hM9ld5cbbwXXe22SjGq5lbFiqU6uZHT6hf52QteRi/VA uYfVBWlPIUwuCx8BohYzJuLcZ3N596duHCyHQhpu78aY51Ae6ptl0+pCZvWXP/ak FQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 331962945923448929792736833253691492359957 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-21 12:25:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-20 12:25:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.gingerhaze.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19522696935746329276249084304792255541491108929684038235738175043790443236405144744589891762221152517550638258944553223885768416336888760093739602415660613000972347561647662153338878328619959858561861906120591974417532931807645209623991927089108073620728504929810639703423667326330808029332375894683698278453879525316977517559793182816065765889238322740660255575367604480153057159827172630719444533571771487207925982854535099984968658361589791091803662227945751370130533640931105428756582484897431975092816949758538075736388033862389835442795244425320573574067278701957672481151432664060643255039923391197100576777237 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 40a5638d118d92acf11c918f70d457df1721100c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gingerhaze.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f00d5bd2000000403004730450221008b71ce488d8f610b02c4e37ae2175d152f02553d064a403b373272542392e9eb022078d14ff8730dbe9c44049153c8e470887e72d8c22eea57cc824056d099966d6c00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f00d5bd1d000004030047304502207a97b93b3e85718474d9ec6c99fe3b297991586c8fe652de634462d711ea10d1022100a38f39c6a33a49b6c38a265ae640a8fa1cb66be383e8259da65f4791c2c6f97d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 005f3fd91b1688d71b9ffb1417f4755a158c476d1724288d37754f7f72c8c05ff0e2688d99f330250e636485813e6cd5b78beb58535d4087151e1188a435a319aa2df7ea8c153c9e67540514d6c7ddb4848d0834d0d3839428fa368e8dcd7ed19b16cd7a904d6d9956713a943976c1387b29671185faebc7ad02d73582c865c617352fe16fcf2350bff2858bf6eaf5751aafff760a589a29cfa473a2083b2d234f9fb1adc7ada8629f7a484cb3ee6227bf56f28f08a14d73ca25aa5351bfe5745fd7fb66f6f38897b41f2647e6a37a9736c73672f6c92d9d6e5c0fb39d282bbb4fc5e637b9706e4776d83242dd2c6c5d1287e9d83c1b7f066cc742923f89b5890a