registry.bible
Issued by R3
About this certificate
This digital certificate with serial number 03:5b:c1:82:12:51:d4:6c:55:4d:39:4f:b9:5f:b8:c9:46:5b was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=registry.bible
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:5b:c1:82:12:51:d4:6c:55:4d:39:4f:b9:5f:b8:c9:46:5bSerial Number (int): 292559769558430834224382734082493477635675
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 03:ef:2e:51:8e:a7:4c:80:2c:db:9c:7e:9a:3d:c6:3b:8d:f3:2e:ae
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 11:7f:d4:73:3d:20:42:27:fc:73:a2:bf:60:01:e8:15:7e:5b:56:96
Fingerprint (sha256): cb:ee:4d:f2:8e:1d:80:ff:75:9e:f0:ab:14:61:52:ee:95:2f:88:a2:5c:1a:8d:6e:af:0c:34:9a:19:f4:fd:9d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate registry.bible
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for registry.bible
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.registry.bible
registry.bible
registry.bible
Other certificates including the domain name registry.bible
(limited to 100 certificates)
dumptruck.ca
starband.ca
starband.ca
starband.ca
impossible.ca
coal.world
dumptruck.ca
dumptruck.ca
registry.bible
jenksamericatoastmasters.club
starband.ca
coal.world
curlupanddye.ca
dumptruck.ca
starband.ca
real.college
dumptruck.ca
coal.world
starband.ca
real.science
registry.bible
registry.bible
starband.ca
dumptruck.ca
starband.ca
registry.bible
starband.ca
starband.ca
starband.ca
www.registry.bible
starband.ca
dumptruck.ca
starband.ca
coal.world
starband.ca
registry.bible
starband.ca
starband.ca
starband.ca
impossible.ca
coal.world
dumptruck.ca
dumptruck.ca
registry.bible
jenksamericatoastmasters.club
starband.ca
coal.world
curlupanddye.ca
dumptruck.ca
starband.ca
real.college
dumptruck.ca
coal.world
starband.ca
real.science
registry.bible
registry.bible
starband.ca
dumptruck.ca
starband.ca
registry.bible
starband.ca
starband.ca
starband.ca
www.registry.bible
starband.ca
dumptruck.ca
starband.ca
coal.world
starband.ca
registry.bible
Certificate
The complete raw certificate details for registry.bible in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgISA1vBghJR1GxVTTlPuV+4yUZbMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTEyMzEwMTRaFw0yNDA4MDkyMzEwMTNaMBkxFzAVBgNVBAMT DnJlZ2lzdHJ5LmJpYmxlMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA 7Jz98dC8qXPOBcXrlxXig4GjeGtAWEnm21hpj34dPwnaPqvh/SEx+XrLD+kj+BdN rU7uRaf2VA4kOcgFvH311Bl1/AdpbWNG+ccBfpC+lxM88cV4DmQHgUCb4nuI1fa5 AQcwlm/M6BR46SF++/gkaIWwEWbRrb9b9zU6CATfAjh/v2RS6/BmGJpR2rN4gGM8 scBwdNsYMsg/uKh5+ashFgYLqcJPEKE7elM36hPiCPaU/idSTmm/Rl3dELRRAQ7R W1u3qiJWcnhXKS4Syt16Yykgzj5WUgi1Apz1b/9HlhmlrYbZ7fEm2Gx0405OECx7 pfrcNYOifqx6ZXAfWPERpr2l3zCWc2nCU0YbDPzTlRy7xjjTI50JisbNRayc2aoy 7fhTb9jhJ/XrsRptCGYrEnVU+U+RJM9uyRQtR/DWedooGmSANDJLGb947+LVyjLX 5VhZ4Pm+3RE2rAfK9HQDMVPc3PBDiSoH5lFE9VtpbvnoOyLgyzuiMjDJ73/hm87r 7L5Rs1KmIuiz5RLCt88wCFFA76hfKYmLDxHF/tj6HK1vaWuMij9fBEi27RGYQMyR fhv1mzBT3tKVKjrD1QgFsaHO9PPPk1AYa/cwH9i93her3VL+icRAYxUy4Pk0uPNv PGCyqe6Mzzmsmy+2n46bHKzh9T5Vv32fHUi0WSCq6MMCAwEAAaOCAiEwggIdMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQUA+8uUY6nTIAs25x+mj3GO43zLq4wHwYDVR0j BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6 Ly9yMy5pLmxlbmNyLm9yZy8wKwYDVR0RBCQwIoIQKi5yZWdpc3RyeS5iaWJsZYIO cmVnaXN0cnkuYmlibGUwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgorBgEEAdZ5 AgQCBIH0BIHxAO8AdQAZmBBxCfDWUi4wgNKeP2S7g24ozPkPUo7u385KPxa0ygAA AY9qIsY0AAAEAwBGMEQCIGyPQpHcVQEhfFQa9H5aso0Iu5JxCJAf5q0j3MvIaziT AiBrsMPkucT1SvSCuiv/OMR+1RCwbo1469uxGJKwD5UOFQB2AHb/iD8KtvuVUcJh zPWHujS0pM27KdxoQgqf5mdMWjp0AAABj2oixl8AAAQDAEcwRQIhANfb/LBpO+dh ZYMW5D1QW39mo3vlm4VNRnZ7JpX6+dQaAiAIv4MnF4rCVaOrf2pjVRCK8M7GnX1r wb2v+jFzXD33XDANBgkqhkiG9w0BAQsFAAOCAQEAJCDwPdWxpmH69ziTN2TUr3Ps P2QksQW5C+aN0kXV6tJJMBiMAyx5wEUrjuexs5vbUhSjvLRtxHXsuuW52avuKXic y3RusNpn9wgQeiXrerSi+uhYRdJt97Q1HaSWI/VRT+TY112uktfaSlBgk4gqi/bD anhZf1D2G2mvFZ7vfJTXMlobOYLwnnltMx6OMnSpTdDcK9isel8yiXD2X3phXBA6 ZrH+hD48Q2h43A8vByJdTsv4Ptf0bf8LPcsdt3BevQAlyStAgGazc01zQ37kmv6L zk3Oxne2pyv3KE0wsDSmCySPeDTBWsDeN5PikMPjsdPbRcsQCxQesv/MR3o9eg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA7Jz98dC8qXPOBcXrlxXi g4GjeGtAWEnm21hpj34dPwnaPqvh/SEx+XrLD+kj+BdNrU7uRaf2VA4kOcgFvH31 1Bl1/AdpbWNG+ccBfpC+lxM88cV4DmQHgUCb4nuI1fa5AQcwlm/M6BR46SF++/gk aIWwEWbRrb9b9zU6CATfAjh/v2RS6/BmGJpR2rN4gGM8scBwdNsYMsg/uKh5+ash FgYLqcJPEKE7elM36hPiCPaU/idSTmm/Rl3dELRRAQ7RW1u3qiJWcnhXKS4Syt16 Yykgzj5WUgi1Apz1b/9HlhmlrYbZ7fEm2Gx0405OECx7pfrcNYOifqx6ZXAfWPER pr2l3zCWc2nCU0YbDPzTlRy7xjjTI50JisbNRayc2aoy7fhTb9jhJ/XrsRptCGYr EnVU+U+RJM9uyRQtR/DWedooGmSANDJLGb947+LVyjLX5VhZ4Pm+3RE2rAfK9HQD MVPc3PBDiSoH5lFE9VtpbvnoOyLgyzuiMjDJ73/hm87r7L5Rs1KmIuiz5RLCt88w CFFA76hfKYmLDxHF/tj6HK1vaWuMij9fBEi27RGYQMyRfhv1mzBT3tKVKjrD1QgF saHO9PPPk1AYa/cwH9i93her3VL+icRAYxUy4Pk0uPNvPGCyqe6Mzzmsmy+2n46b HKzh9T5Vv32fHUi0WSCq6MMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 292559769558430834224382734082493477635675 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-11 23:10:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-09 23:10:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'registry.bible' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 965297841316270009390835879395927980793149648015548816580941550538058118962261059779928068503867919222270025152031506589793726726736126462420851760851431612377620983984263834552268369218467762604362339742480028680196153808565843925861623984968124229436795609750245039496282717025495034677300579515094590195982009466476377820073574352532188084536322100556806386665644774262639550119256933140785576457016573485218307333371767506721624463275034485629206920244017517513715070283854107380596136556671750848088840330903907831281431481249370835839331251355473073281533914501679034807279440301222430924418206214935678523969151834812044738707230119865181003785004463121971020068494506271621741138407669117914638694922178784916127212692375010946413086854257463081197475435045259888049442834757597488481752305201459328103236523929602669822981246457056712328740381971538730629818656967611700917188504957365418550797685471584311759647734389064233259169472128132780815217416704392515808632869225976719172229673165526868277542701269083950791783246382791700099650832278060483120343321710456004698744265626180416654507003555621351429466584939784370031649838372295506969922508751129212703115474399129652898221803916251038352891347654954119962020210883 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 03ef2e518ea74c802cdb9c7e9a3dc63b8df32eae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.registry.bible' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'registry.bible' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018f6a22c634000004030046304402206c8f4291dc5501217c541af47e5ab28d08bb927108901fe6ad23dccbc86b389302206bb0c3e4b9c4f54af482ba2bff38c47ed510b06e8d78ebdbb11892b00f950e1500760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f6a22c65f0000040300473045022100d7dbfcb0693be761658316e43d505b7f66a37be59b854d46767b2695faf9d41a022008bf8327178ac255a3ab7f6a6355108af0cec69d7d6bc1bdaffa31735c3df75c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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