gptlaw.org

Issued by R3

About this certificate

This digital certificate with serial number 04:fe:34:48:cc:6f:42:49:b3:db:ff:95:c9:c6:c9:b0:89:eb was issued on by Let's Encrypt.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=gptlaw.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:fe:34:48:cc:6f:42:49:b3:db:ff:95:c9:c6:c9:b0:89:eb
Serial Number (int): 434950362772540386734792003295173997005291
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: fa:70:ee:ce:2f:09:83:91:de:2f:bf:e9:9f:34:b6:2c:ba:3f:79:44
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): d5:1d:26:45:e5:ec:df:a9:22:b9:e2:81:be:6a:60:29:0e:4f:b4:85
Fingerprint (sha256): b8:81:20:97:ed:2e:29:dc:65:38:28:4e:6d:31:95:18:54:8e:23:bf:fb:2e:23:42:67:4b:23:2a:b5:1b:6c:57

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate gptlaw.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for gptlaw.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

gptlaw.org

Other certificates including the domain name gptlaw.org

(limited to 100 certificates)
gptlaw.org
gptlaw.org
gptlaw.org
pyaarse.org

Certificate

The complete raw certificate details for gptlaw.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 434950362772540386734792003295173997005291
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-11 23:56:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-10 23:55:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gptlaw.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 763348467403356051583959110632247769468542526241582647373537088342771102102467169112386421853319148293718347567865531492501824114922429046964828387299174984727092013648955792147596085177308806277445932462537533142643528691099057054285074149631356967304345205816943062501002495936024856297368546146506972059741842269580078999421888465915593772293069464468368601106813315975463255163713824668844946967469908924665835424027630495581029184140940266055789728597526897984659432144155318793770658442668262244726421764379642927177088377531154595727525707006941030109704508491977790050450950330823012178850827857311529260348904293317337179428116178141016676036293700587467503686592413670389201204182979545810308703420812283107429197217356836525761830183350853026112184505931795764201502840846867106939272175028157897367534019007078470484852417833451943345722357615138081849869864639973287376984431969279291122147853423385257095300839176881178415568151463360426514967798342469551405316087191120094929371129754865198309095836944918365057381831193233210134924091230422304690510780871926339812533644542858095463420483114194734286856036254387834023852944426900014859415412675385553216832298243351118586404552647475840875973640898294714757558012781
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							fa70eece2f098391de2fbfe99f34b62cba3f7944
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gptlaw.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ecfcde60e00000403004830460221009e48926009b880e71a78f64609368264882cecf914d549c8073d488d6f2d0604022100a7ab10314f9c2669c651cfc3ebe9f360237e08bdfb6c45080d0849e4bd00ea2c007500dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ecfcde65e0000040300463044022073f32dcf78e0053b493123735146cc2e775f223073abbd5a758eeb8c414e6ef502206b9dacb6358dac043d7758089029857546ae1aa590c4541e2f09ab77b9b2d374
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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