firstforelk.org
Issued by R3
About this certificate
This digital certificate with serial number 04:aa:9d:0e:54:d5:46:81:49:04:ef:ef:41:08:57:b4:00:05 was issued on by Let's Encrypt.
With 18 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=firstforelk.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:aa:9d:0e:54:d5:46:81:49:04:ef:ef:41:08:57:b4:00:05Serial Number (int): 406505909311714602224122651704689633263621
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 58:ca:38:d2:4e:85:83:db:c1:b1:c3:0c:62:8d:f8:1e:71:4d:ca:69
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f0:9b:67:42:4b:06:4b:8f:d5:8b:3b:b7:6a:a6:3f:1d:5a:79:2a:3a
Fingerprint (sha256): ac:a7:0b:9b:db:7c:9d:51:56:e4:a6:27:89:fd:e3:d3:ab:0b:d2:dc:a1:76:53:5c:13:e2:45:87:a5:66:82:88
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate firstforelk.org
18
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for firstforelk.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
austinneurosurgery.com
bomberssoftball.org
businesstaxadvice.com
downeyca.com
enfieldbankruptcyattorney.com
fiipa.com
firstforelk.org
internetadsnetwork.com
justpoornovel.com
melenadelsur.com
middletownsprings.com
mygeorgiadirectlender.com
otomi.com
realestatepriceopinion.com
researchsynergy.com
southbendwaste.com
watersports.bdsmsecurity.com
www.hostingforjesus.com
bomberssoftball.org
businesstaxadvice.com
downeyca.com
enfieldbankruptcyattorney.com
fiipa.com
firstforelk.org
internetadsnetwork.com
justpoornovel.com
melenadelsur.com
middletownsprings.com
mygeorgiadirectlender.com
otomi.com
realestatepriceopinion.com
researchsynergy.com
southbendwaste.com
watersports.bdsmsecurity.com
www.hostingforjesus.com
Other certificates including the domain name firstforelk.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for firstforelk.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISBKqdDlTVRoFJBO/vQQhXtAAFMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTYwNDQ5MDBaFw0yNDA3MTUwNDQ4NTlaMBoxGDAWBgNVBAMT D2ZpcnN0Zm9yZWxrLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AN+rPi2+fHMkRfEpAfhyjgBlP0UnK5Wd95P1/L6U/yYZsXQSfwazLksUi9UJcjG0 XtapMmxI9mxv+EFvaQxEbPCHdwiE4RJzgicxpbG1z2IeuRrw0ewIAJmLxYoo57u0 K+lx95C2pVTkggMAA9Tc3KgZw6kDn0OdVNUm8zbQ2FkBNOaWqn1a1K6EgXDhWdjf 8E2e6l9iVQ7Z90ZlKjr3X5c4R7huAzIa8qsQyAlnHq6arhfMz4niO2N1abkhsBJc fegSPH4fC5E6ehTm/1QvlRilx9CJ3SwbtSBsPronjLqcQsG6X/f5g4+VA/OuNoou U0E67VPJIP/PhKCC6cVxIEcCAwEAAaOCA4cwggODMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUWMo40k6Fg9vBscMMYo34HnFNymkwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wggGQBgNVHREEggGHMIIBg4IWYXVzdGlubmV1cm9zdXJnZXJ5LmNvbYITYm9t YmVyc3NvZnRiYWxsLm9yZ4IVYnVzaW5lc3N0YXhhZHZpY2UuY29tggxkb3duZXlj YS5jb22CHWVuZmllbGRiYW5rcnVwdGN5YXR0b3JuZXkuY29tgglmaWlwYS5jb22C D2ZpcnN0Zm9yZWxrLm9yZ4IWaW50ZXJuZXRhZHNuZXR3b3JrLmNvbYIRanVzdHBv b3Jub3ZlbC5jb22CEG1lbGVuYWRlbHN1ci5jb22CFW1pZGRsZXRvd25zcHJpbmdz LmNvbYIZbXlnZW9yZ2lhZGlyZWN0bGVuZGVyLmNvbYIJb3RvbWkuY29tghpyZWFs ZXN0YXRlcHJpY2VvcGluaW9uLmNvbYITcmVzZWFyY2hzeW5lcmd5LmNvbYISc291 dGhiZW5kd2FzdGUuY29tghx3YXRlcnNwb3J0cy5iZHNtc2VjdXJpdHkuY29tghd3 d3cuaG9zdGluZ2Zvcmplc3VzLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQIG CisGAQQB1nkCBAIEgfMEgfAA7gB1AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FI WUZxH7WbAAABjuVzkfAAAAQDAEYwRAIgFPy+QddgELe2IydI3CGllppIDTey5LwO /t3Qt7gSE10CIGnHM7N/q+0S/DXA+FSPAOGw310Y5NIuadIF7q6/itt2AHUAGZgQ cQnw1lIuMIDSnj9ku4NuKMz5D1KO7t/OSj8WtMoAAAGO5XOR9wAABAMARjBEAiBg 9BK0aMQw1q2ufIPIkWWh5Js6TiPt9GfLSFQE686fGAIgbkUilNzmjm0RLIYk88+x OCh860QnqJjExO91zF1Aw7YwDQYJKoZIhvcNAQELBQADggEBAKkkPY3+jFAUNYZJ qXay7PnRifJ+5452CM+oQX+AH4kqk/7NYeaFNmmBz7GvGixoQuvk+L7Wegcniy3n WeWOf1en7IwXYEZHirSQH9uJKgV3Vk2qzenoaYOlT9JpM7B3Ge7qy7kPC53/BAXb P3XHZcu+oauRITwoLMjzcbYkQaiEDaC15+Mz0hsDfSBmT05SMvqL4NIS//UolDi6 NbUI5cO1lXArMAP2swNoxxAKzeUyP52SCLJND83H7ZJHCEyN7gX/ZIMudEMa6bS+ /PAoukqLjSf/DtJHBrvAMOBIk+uXvh3K50mMem/YqXYaT2PsArrBXfH/lABkF8nT 3CbEBXk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA36s+Lb58cyRF8SkB+HKO AGU/RScrlZ33k/X8vpT/JhmxdBJ/BrMuSxSL1QlyMbRe1qkybEj2bG/4QW9pDERs 8Id3CIThEnOCJzGlsbXPYh65GvDR7AgAmYvFiijnu7Qr6XH3kLalVOSCAwAD1Nzc qBnDqQOfQ51U1SbzNtDYWQE05paqfVrUroSBcOFZ2N/wTZ7qX2JVDtn3RmUqOvdf lzhHuG4DMhryqxDICWcerpquF8zPieI7Y3VpuSGwElx96BI8fh8LkTp6FOb/VC+V GKXH0IndLBu1IGw+uieMupxCwbpf9/mDj5UD8642ii5TQTrtU8kg/8+EoILpxXEg RwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 406505909311714602224122651704689633263621 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-16 04:49:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-15 04:48:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'firstforelk.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28235585021505044750441532490822850613376040744116334607780326155595950950440569323066058332805745423463793227839408334800150485944390080534334600628103637028711142680727961236166176521895773690964304005177167608222770119516466420900265988046618967235989750526962137945504725777714993046346833613974884895698222824193140833280326203373578743414264699725700594294720450535318235475243479652317893224712203760178346786359347723897892310302929896025791921061456694336314615779991986508220765305832364798316885813619843641123037404343534874113066629945879011259351744052050725797440475643287035558503296057832883132375111 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 58ca38d24e8583dbc1b1c30c628df81e714dca69 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (391 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'austinneurosurgery.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bomberssoftball.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'businesstaxadvice.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'downeyca.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'enfieldbankruptcyattorney.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fiipa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'firstforelk.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'internetadsnetwork.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'justpoornovel.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'melenadelsur.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'middletownsprings.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mygeorgiadirectlender.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'otomi.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'realestatepriceopinion.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'researchsynergy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'southbendwaste.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'watersports.bdsmsecurity.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hostingforjesus.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ee57391f00000040300463044022014fcbe41d76010b7b6232748dc21a5969a480d37b2e4bc0efeddd0b7b812135d022069c733b37fabed12fc35c0f8548f00e1b0df5d18e4d22e69d205eeaebf8adb760075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018ee57391f70000040300463044022060f412b468c430d6adae7c83c89165a1e49b3a4e23edf467cb485404ebce9f1802206e452294dce68e6d112c8624f3cfb138287ceb4427a898c4c4ef75cc5d40c3b6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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