gptlaw.org
Issued by R3
About this certificate
This digital certificate with serial number 04:fe:34:48:cc:6f:42:49:b3:db:ff:95:c9:c6:c9:b0:89:eb was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=gptlaw.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:fe:34:48:cc:6f:42:49:b3:db:ff:95:c9:c6:c9:b0:89:ebSerial Number (int): 434950362772540386734792003295173997005291
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: fa:70:ee:ce:2f:09:83:91:de:2f:bf:e9:9f:34:b6:2c:ba:3f:79:44
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d5:1d:26:45:e5:ec:df:a9:22:b9:e2:81:be:6a:60:29:0e:4f:b4:85
Fingerprint (sha256): b8:81:20:97:ed:2e:29:dc:65:38:28:4e:6d:31:95:18:54:8e:23:bf:fb:2e:23:42:67:4b:23:2a:b5:1b:6c:57
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate gptlaw.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gptlaw.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gptlaw.org
Other certificates including the domain name gptlaw.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for gptlaw.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4TCCBMmgAwIBAgISBP40SMxvQkmz2/+VycbJsInrMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTEyMzU2MDBaFw0yNDA3MTAyMzU1NTlaMBUxEzARBgNVBAMT CmdwdGxhdy5vcmcwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC7HI2d hOhA+Idc+XAeXDeEl4Rhu4uWboFff+Ju+1BL98UBT1O3gRaKyRGPrWLez3vLWrk3 C4zxjCJdLR6G80ZK6BqQhIOFBLRlXR0M88cukbrKkXGs4ni23wQ2GIXQobOLgomo gVzOeAClHaxUXg2AFvlC1zF0pd1ViSmdV8BnxXtseBnIes3uBjd1tbU81sa0rtcl 08eF3LevCHrJI8o2+xU+GPD+Iot8mnni+RIOmNK4N/ngrrB3Re2NBRuvQvg6lis2 crZHSfyPN0yFgCJcQ/6vfwnyR8L4rlaGFG+AmGQKIlCSyGnd9goUUgLjJs4uRdvw sL1CSzGiH4bX4TFPQ3jRSSORpGq3nW80w0EtBF8j5SC0bczAtSe3/WLyiLHlHAfx ItqUx3C1gAXmvHfw9jB1R7Znzrcz0Rz3lCuz7hnHb+2VdpyJ+OT7HdMYboK0aYyT L/pdxhRJOa6j5UCtynEptIEyo0R2HhXFu9QQ/A2clrteLv75itQDmW5l7IPT5bgQ jj0YKu2RBGA2palZiPC0MliFgdilDI21NTRltpzrelEq+fUxImXbq+GcgIthBEGB qavwZtAFpycrPYIwCdyJbf7SW625dq52YKzqemckw9va0EoJ3Ot9wszNwUNl0UVT l37TZ9Kx1bMRGpCuVx22FPG857AnL7daVBeLbQIDAQABo4ICDDCCAggwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBT6cO7OLwmDkd4vv+mfNLYsuj95RDAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzAVBgNVHREEDjAMggpncHRsYXcub3JnMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcAdv+IPwq2+5VRwmHM 9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGOz83mDgAABAMASDBGAiEAnkiSYAm4gOca ePZGCTaCZIgs7PkU1UnIBz1IjW8tBgQCIQCnqxAxT5wmacZRz8Pr6fNgI34Ivfts RQgNCEnkvQDqLAB1AN/hVuuqBa+1nA+GcY2owDJOrlbZbqf1pWoB0cE7vlJcAAAB js/N5l4AAAQDAEYwRAIgc/Mtz3jgBTtJMSNzUUbMLndfIjBzq71adY7rjEFObvUC IGudrLY1jawEPXdYCJAphXVGrhqlkMRUHi8Jq3e5stN0MA0GCSqGSIb3DQEBCwUA A4IBAQCMjFFZpROIpvsTuikPyZ5xf4fXwShXmkUJT8WM1dq+6c4ZVORYnTbFJP+s XZSJuKiheaE2oBRzsO5GieFLn9qmChyL5GtjF3xXg4sfiAeslFJNGeC6K7eMkh1h NeMJbwA43CEoEwPLq+t3CbxgJ8ZtdPYAZ3tUmUxky56Ex8axWFrcc3bDDmSt74au /UTLMr1qtJvJJcPF86bc81fYy2Vd5e0L+pVlyslOuwJiTbycy7WQpqoJwLedv5aO kr0n1HXRTFzz9wXx1p+HRqcjYS3lvb37xMu9nN/aXIwAbJY7Pgk8VywDd+cH0hzo kPiyolBnCrtFTEMrM6mZhmGfe1Gm -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuxyNnYToQPiHXPlwHlw3 hJeEYbuLlm6BX3/ibvtQS/fFAU9Tt4EWiskRj61i3s97y1q5NwuM8YwiXS0ehvNG SugakISDhQS0ZV0dDPPHLpG6ypFxrOJ4tt8ENhiF0KGzi4KJqIFczngApR2sVF4N gBb5QtcxdKXdVYkpnVfAZ8V7bHgZyHrN7gY3dbW1PNbGtK7XJdPHhdy3rwh6ySPK NvsVPhjw/iKLfJp54vkSDpjSuDf54K6wd0XtjQUbr0L4OpYrNnK2R0n8jzdMhYAi XEP+r38J8kfC+K5WhhRvgJhkCiJQkshp3fYKFFIC4ybOLkXb8LC9Qksxoh+G1+Ex T0N40UkjkaRqt51vNMNBLQRfI+UgtG3MwLUnt/1i8oix5RwH8SLalMdwtYAF5rx3 8PYwdUe2Z863M9Ec95Qrs+4Zx2/tlXacifjk+x3TGG6CtGmMky/6XcYUSTmuo+VA rcpxKbSBMqNEdh4VxbvUEPwNnJa7Xi7++YrUA5luZeyD0+W4EI49GCrtkQRgNqWp WYjwtDJYhYHYpQyNtTU0Zbac63pRKvn1MSJl26vhnICLYQRBgamr8GbQBacnKz2C MAnciW3+0lutuXaudmCs6npnJMPb2tBKCdzrfcLMzcFDZdFFU5d+02fSsdWzERqQ rlcdthTxvOewJy+3WlQXi20CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 434950362772540386734792003295173997005291 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-11 23:56:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-10 23:55:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gptlaw.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 763348467403356051583959110632247769468542526241582647373537088342771102102467169112386421853319148293718347567865531492501824114922429046964828387299174984727092013648955792147596085177308806277445932462537533142643528691099057054285074149631356967304345205816943062501002495936024856297368546146506972059741842269580078999421888465915593772293069464468368601106813315975463255163713824668844946967469908924665835424027630495581029184140940266055789728597526897984659432144155318793770658442668262244726421764379642927177088377531154595727525707006941030109704508491977790050450950330823012178850827857311529260348904293317337179428116178141016676036293700587467503686592413670389201204182979545810308703420812283107429197217356836525761830183350853026112184505931795764201502840846867106939272175028157897367534019007078470484852417833451943345722357615138081849869864639973287376984431969279291122147853423385257095300839176881178415568151463360426514967798342469551405316087191120094929371129754865198309095836944918365057381831193233210134924091230422304690510780871926339812533644542858095463420483114194734286856036254387834023852944426900014859415412675385553216832298243351118586404552647475840875973640898294714757558012781 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fa70eece2f098391de2fbfe99f34b62cba3f7944 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gptlaw.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ecfcde60e00000403004830460221009e48926009b880e71a78f64609368264882cecf914d549c8073d488d6f2d0604022100a7ab10314f9c2669c651cfc3ebe9f360237e08bdfb6c45080d0849e4bd00ea2c007500dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ecfcde65e0000040300463044022073f32dcf78e0053b493123735146cc2e775f223073abbd5a758eeb8c414e6ef502206b9dacb6358dac043d7758089029857546ae1aa590c4541e2f09ab77b9b2d374 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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