*.ashevillejungcenter.org
Issued by R3
About this certificate
This digital certificate with serial number 03:6e:81:79:f8:ef:59:79:2b:78:da:81:ac:eb:25:86:19:d2 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.ashevillejungcenter.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:6e:81:79:f8:ef:59:79:2b:78:da:81:ac:eb:25:86:19:d2Serial Number (int): 298940021884960910980303376639084558948818
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 56:7f:04:ac:e0:c1:66:ba:c5:45:97:f9:03:2b:e0:c0:59:41:2a:2f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 12:f3:4a:d2:f1:29:de:69:87:96:ef:b8:ec:91:c3:84:55:af:b7:ac
Fingerprint (sha256): b5:63:d1:3c:72:f8:89:1e:c6:81:bd:fc:80:be:8c:7b:17:d5:48:5f:56:87:71:cd:0d:67:da:d7:c8:22:ed:29
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate *.ashevillejungcenter.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.ashevillejungcenter.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.ashevillejungcenter.org
ashevillejungcenter.org
ashevillejungcenter.org
Other certificates including the domain name ashevillejungcenter.org
(limited to 100 certificates)
customers.tigertech.net
*.brigish.com
*.sliverofice.com
customers.tigertech.net
*.rhondawitwer.com
*.sciman.us
web13.tigertech.biz
web13.tigertech.biz
customers.tigertech.net
customers.tigertech.net
customers.tigertech.net
customers.tigertech.net
*.tappingintonaturalwisdom.com
*.yelpconspiracy.com
*.ashevillejungcenter.org
web13.tigertech.biz
*.mikeallenjazz.com
web13.tigertech.biz
*.ashevillejungcenter.org
*.ashevillejungcenter.org
*.tappingintonaturalwisdom.com
*.mattdans.com
*.tappingintonaturalwisdom.com
*.tappingintonaturalwisdom.com
*.ashevillejungcenter.org
*.thehummingbirds.com
web13.tigertech.biz
customers.tigertech.net
customers.tigertech.net
web13.tigertech.biz
customers.tigertech.net
web13.tigertech.biz
*.brigish.com
*.sliverofice.com
customers.tigertech.net
*.rhondawitwer.com
*.sciman.us
web13.tigertech.biz
web13.tigertech.biz
customers.tigertech.net
customers.tigertech.net
customers.tigertech.net
customers.tigertech.net
*.tappingintonaturalwisdom.com
*.yelpconspiracy.com
*.ashevillejungcenter.org
web13.tigertech.biz
*.mikeallenjazz.com
web13.tigertech.biz
*.ashevillejungcenter.org
*.ashevillejungcenter.org
*.tappingintonaturalwisdom.com
*.mattdans.com
*.tappingintonaturalwisdom.com
*.tappingintonaturalwisdom.com
*.ashevillejungcenter.org
*.thehummingbirds.com
web13.tigertech.biz
customers.tigertech.net
customers.tigertech.net
web13.tigertech.biz
customers.tigertech.net
web13.tigertech.biz
Certificate
The complete raw certificate details for *.ashevillejungcenter.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEJTCCAw2gAwIBAgISA26BefjvWXkreNqBrOslhhnSMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDMwODU1NTZaFw0yNDA3MDIwODU1NTVaMCQxIjAgBgNVBAMM GSouYXNoZXZpbGxlanVuZ2NlbnRlci5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC8Z/ivbWQJrlyZUHwLV2e1gpLDtxy9+fgr6oL08xbf0takcRhk NCM3xv0iLug8vh/dRyLlbG4gk413ZylGHbBIg+F18zBKOMxMbjFv2wiBUIEx+pBV 4U6kkuM4wRNWMjHnvFkmp12KlA0PiDaVptHK/KaR68O530oxcrs6XSFrAIO8dH3x NQMT8IRT5cQ8Fd1lx4quLMAqMwG2s2ZhVCKE5HasS/Hm5dOi0VhQr2Z16Yt0G4Oi zt0ivWvaiWNM4GcVXClWmC+QdKaQJwrfFqaDBpkwwSbCzPDocbrHxVB1sNwxuj4z JhEULlK0UFXYTTUSJC7kGLRdN+LBbOlBjD+hAgMBAAGjggFBMIIBPTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFFZ/BKzgwWa6xUWX+QMr4MBZQSovMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMD0GA1UdEQQ2MDSCGSouYXNoZXZpbGxlanVuZ2NlbnRlci5v cmeCF2FzaGV2aWxsZWp1bmdjZW50ZXIub3JnMBMGA1UdIAQMMAowCAYGZ4EMAQIB MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAFu9FZVysL OLajqyAj2hdTGORvRbJydItWEHbV8MKeqkKLnXj2pgXZm3p/HjP5oSK73ErJqUWj Fp4GT7EdhYQLzB/vT20JFsGeo1jo++g/TvrjKtUzKLlrOZQqX4SThezRG/xtYo4T Th8ge+RWyfadOSiq2DQ2JRmjEJ06CEFNntdHJgs0b9WwziTmfzaXyi1Mde182Vqe 3qMWYORs1QlAfT4eiErbbftWcVQvZwn9/jPbGahMJ3c+exhr1PQzmnL6Os7vKoAq XP93Ffvcc/s7IM5zEe+1CViuQ64M8kqdghbZfFjxOB9YVWQ3td53GVR5DoXT9q1H 8hfrJAB+IkrK -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvGf4r21kCa5cmVB8C1dn tYKSw7ccvfn4K+qC9PMW39LWpHEYZDQjN8b9Ii7oPL4f3Uci5WxuIJONd2cpRh2w SIPhdfMwSjjMTG4xb9sIgVCBMfqQVeFOpJLjOMETVjIx57xZJqddipQND4g2labR yvymkevDud9KMXK7Ol0hawCDvHR98TUDE/CEU+XEPBXdZceKrizAKjMBtrNmYVQi hOR2rEvx5uXTotFYUK9mdemLdBuDos7dIr1r2oljTOBnFVwpVpgvkHSmkCcK3xam gwaZMMEmwszw6HG6x8VQdbDcMbo+MyYRFC5StFBV2E01EiQu5Bi0XTfiwWzpQYw/ oQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 298940021884960910980303376639084558948818 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-03 08:55:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-02 08:55:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.ashevillejungcenter.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23784071555045506961726898987165415474557470728789010857309828992139819229340829111605169432810659936345345325185933355659550037648871969840368919864054085799387760439644673972616118866513123267615476568697063030135885014131531868976030639028361898415884788825569949887683058511267702280152937721298236946992221127400983781433005569215590425391853230461375845036232147832566867165035474018620837144623845610041845153362693444482647422754386162140732077813572426289335995058681544892072553838992634636652438623084056008764294450887062774371805857548493450055982707737379851519270013798100762716055679616007435012816801 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 567f04ace0c166bac54597f9032be0c059412a2f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ashevillejungcenter.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ashevillejungcenter.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0005bbd159572b0b38b6a3ab2023da175318e46f45b272748b561076d5f0c29eaa428b9d78f6a605d99b7a7f1e33f9a122bbdc4ac9a945a3169e064fb11d85840bcc1fef4f6d0916c19ea358e8fbe83f4efae32ad53328b96b39942a5f849385ecd11bfc6d628e134e1f207be456c9f69d3928aad834362519a3109d3a08414d9ed747260b346fd5b0ce24e67f3697ca2d4c75ed7cd95a9edea31660e46cd509407d3e1e884adb6dfb5671542f6709fdfe33db19a84c27773e7b186bd4f4339a72fa3aceef2a802a5cff7715fbdc73fb3b20ce7311efb50958ae43ae0cf24a9d8216d97c58f1381f58556437b5de771954790e85d3f6ad47f217eb24007e224aca