deepstudios.org
Issued by R3
About this certificate
This digital certificate with serial number 03:5e:c0:cd:27:ed:bc:17:7d:fd:6a:5d:73:f1:45:a1:d7:52 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=deepstudios.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:5e:c0:cd:27:ed:bc:17:7d:fd:6a:5d:73:f1:45:a1:d7:52Serial Number (int): 293579677291744919633096850885484623288146
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: dd:18:34:9c:6e:82:f9:a3:87:cd:d7:c6:a4:08:2a:01:cb:2b:78:dc
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 28:76:07:de:29:51:19:07:51:ea:bc:97:d2:a0:a0:84:23:e1:a6:eb
Fingerprint (sha256): ae:62:0a:14:9c:c1:36:1f:f1:83:3d:d9:ee:56:39:7e:50:4f:4c:c0:e3:ac:0a:f1:9a:db:cd:f5:df:e5:45:42
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate deepstudios.org
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for deepstudios.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
deepstudios.org
webmail.deepstudios.org
www.deepstudios.org
webmail.deepstudios.org
www.deepstudios.org
Other certificates including the domain name deepstudios.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for deepstudios.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFGzCCBAOgAwIBAgISA17AzSftvBd9/Wpdc/FFoddSMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MjkyMjQ1MTdaFw0yNDA3MjgyMjQ1MTZaMBoxGDAWBgNVBAMT D2RlZXBzdHVkaW9zLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMl1/qXk938zCU29gSZqLcz8o7ALhWGraG5gasSx6ZfarKEV+m9QYVriIcp+SUhv U+vysHa1AGizlcD4Lpenue5az0CVfpVvbkbSO7XyGGM4hQmrX7h1a5ha8sk4IGmj AScrJ+8Vhg9lZDxKXYGhZbRr2UzFtZXjyovnw35ivCmxqjlEm5sTT3P+7Mxqq6yN rYhWwPzbaHP69wYhlkBIEIcciiCgzv4Cy+OpYr4uNYTJfePaEZJMEqjQ5UCOAfjt 2NtcyD2JQF8Bgr41gS4DdhHxVIdugGeQhHvqV4LcgI1t601FG/LVfK+BCYZc0Xhq zc25V+Q4JMoMwIOndWKvhWUCAwEAAaOCAkEwggI9MA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQU3Rg0nG6C+aOHzdfGpAgqAcsreNwwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wSAYDVR0RBEEwP4IPZGVlcHN0dWRpb3Mub3Jnghd3ZWJtYWlsLmRlZXBzdHVk aW9zLm9yZ4ITd3d3LmRlZXBzdHVkaW9zLm9yZzATBgNVHSAEDDAKMAgGBmeBDAEC ATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3AD8XS0/XIkdYlB1lHIS+DRLtkDd/ H4Vq68G/KIXs+GRuAAABjyw/m08AAAQDAEgwRgIhAMJGoSlymrKFDpw0ENEFijet rZHAVIrmxhHftgN8lpr5AiEAsPHpoEl6+4TuGFvkGZ/bUsDWdF11g4llsStj7GLn qHcAdwDf4VbrqgWvtZwPhnGNqMAyTq5W2W6n9aVqAdHBO75SXAAAAY8sP5wBAAAE AwBIMEYCIQDlFf6jxLjX5o/W4Rh5onPnaS6xnrOooDuDeAw/EZK1UQIhAOS9TtT7 XRc1oTKuLxajTHgXiWn6ghlh+08ri43+Y7SgMA0GCSqGSIb3DQEBCwUAA4IBAQBt hYXBNbeOanqOpaB3hYVyMWYR5hRSmJv4s974mCzBpbcDwf0+SYTSXhrXueK7AEZs xBQAt19UlXQnSp3YzFZ2KLfDLUb7R8UWdXVNrzTSlTRSguFNnW9M8N3YSt3xqoml 3g0xAaMnRfO2YZGa45wVF8tRmldEmg9D1JzDG77kaccwxOwQkZKt0n/UJ3RFrrSE J463yYZG72t837mVysLoaX4NNH2ERhQOErgBqNy69XTn3kZih17RpNv/MoxQwmn5 v/TM9Eo7cUBK3DT+HU6n2Z9q5QtXOdJ0lTnlRRCOZg+boT4MyhR+JLxRDSS4UU9N wzn9FeaDBQd49gZy0G2i -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyXX+peT3fzMJTb2BJmot zPyjsAuFYatobmBqxLHpl9qsoRX6b1BhWuIhyn5JSG9T6/KwdrUAaLOVwPgul6e5 7lrPQJV+lW9uRtI7tfIYYziFCatfuHVrmFryyTggaaMBJysn7xWGD2VkPEpdgaFl tGvZTMW1lePKi+fDfmK8KbGqOUSbmxNPc/7szGqrrI2tiFbA/Ntoc/r3BiGWQEgQ hxyKIKDO/gLL46livi41hMl949oRkkwSqNDlQI4B+O3Y21zIPYlAXwGCvjWBLgN2 EfFUh26AZ5CEe+pXgtyAjW3rTUUb8tV8r4EJhlzReGrNzblX5DgkygzAg6d1Yq+F ZQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 293579677291744919633096850885484623288146 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-29 22:45:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-28 22:45:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'deepstudios.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25432084662639805221335020765176456384189371016531483862340999690155044831864936469916735113264126650642506928119869818224723746277710132320066215735938024371913806903486863582404296576341714748764438255708101117954359765434861313325790618190220779433162483876991731638453547796592490036115232596862422337797457444122237616025563669448234225949645321756199669610165680907388516209122435671810087970003321272471199959279370790157830486930844133979009959398400587766631769468008307059329341307597269732420897968793159773312396014929999526999811091750289318103020891621305501427118759487584934644496021773428922581484901 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dd18349c6e82f9a387cdd7c6a4082a01cb2b78dc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'deepstudios.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.deepstudios.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.deepstudios.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f2c3f9b4f0000040300483046022100c246a129729ab2850e9c3410d1058a37adad91c0548ae6c611dfb6037c969af9022100b0f1e9a0497afb84ee185be4199fdb52c0d6745d75838965b12b63ec62e7a877007700dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018f2c3f9c010000040300483046022100e515fea3c4b8d7e68fd6e11879a273e7692eb19eb3a8a03b83780c3f1192b551022100e4bd4ed4fb5d1735a132ae2f16a34c78178969fa821961fb4f2b8b8dfe63b4a0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 006d8585c135b78e6a7a8ea5a077858572316611e61452989bf8b3def8982cc1a5b703c1fd3e4984d25e1ad7b9e2bb00466cc41400b75f549574274a9dd8cc567628b7c32d46fb47c51675754daf34d295345282e14d9d6f4cf0ddd84addf1aa89a5de0d3101a32745f3b661919ae39c1517cb519a57449a0f43d49cc31bbee469c730c4ec109192add27fd4277445aeb484278eb7c98646ef6b7cdfb995cac2e8697e0d347d8446140e12b801a8dcbaf574e7de4662875ed1a4dbff328c50c269f9bff4ccf44a3b71404adc34fe1d4ea7d99f6ae50b5739d2749539e545108e660f9ba13e0cca147e24bc510d24b8514f4dc339fd15e683050778f60672d06da2