flanaganfilm.org
Issued by R3
About this certificate
This digital certificate with serial number 03:0e:aa:76:f5:28:c5:8b:82:1b:1c:a3:a7:3e:f4:c1:1b:f5 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=flanaganfilm.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0e:aa:76:f5:28:c5:8b:82:1b:1c:a3:a7:3e:f4:c1:1b:f5Serial Number (int): 266327397354907237833674084133256774622197
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 16:46:82:ac:3e:3c:01:73:72:db:16:8e:ca:d5:e6:d2:dd:3f:c5:0c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c0:04:d2:58:47:31:5f:ca:83:07:54:90:6d:4b:f8:93:8a:93:81:1b
Fingerprint (sha256): cf:7c:1d:4c:6d:44:3a:c1:f7:58:8b:e5:bf:53:e2:9a:a2:a7:a4:2f:ba:b2:44:18:bc:69:7d:d3:9b:5b:70:47
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate flanaganfilm.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for flanaganfilm.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
flanaganfilm.org
roadto50races.com
roadto50races.com
Other certificates including the domain name flanaganfilm.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for flanaganfilm.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE/zCCA+egAwIBAgISAw6qdvUoxYuCGxyjpz70wRv1MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMTMwMDIzNTNaFw0yNDA2MTEwMDIzNTJaMBsxGTAXBgNVBAMT EGZsYW5hZ2FuZmlsbS5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC5KPuABNvxAjHWaNGQkmMVtBUuuO51uB380o6zgWYxLkJMZio1cLk1nV5BrXKa FubN0xYjGYREitBK80vstWB4084cX5jJXhGSlhWDDkPU3VQfqKdDq+1Jc069x15a McFCkVYaW5ecaG4yhqn5WSVgN9VHN2MwYgI6j0hu9FlV4W4CgA6+/jKTaN3+3Aso Bf497ihAwpF7KiDT7GiXxMKYogKGGHYL6d8l0XlzUpFLUHFliJcN73/gg/aQSiz7 4S8P6MlVeWgvtnh1s40/8UJxNLnV6ceqayqXIWGkvE6TmUEqE57OLQ63/7zWKwD9 +NxLYTwvj4QrNbzEC4sMky15AgMBAAGjggIkMIICIDAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFBZGgqw+PAFzctsWjsrV5tLdP8UMMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMC4GA1UdEQQnMCWCEGZsYW5hZ2FuZmlsbS5vcmeCEXJvYWR0bzUwcmFjZXMu Y29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDv AHUAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGONWig+QAABAMA RjBEAiAnPnNK/bMnXQbiXPeUq6kxO8Yf+yNb9hNt049I6oXDRwIgRTM5A20gmQ44 afRr/B4wFM8kKe+KR/7s9nKPl45IfCYAdgB2/4g/Crb7lVHCYcz1h7o0tKTNuync aEIKn+ZnTFo6dAAAAY41aKEuAAAEAwBHMEUCIQDNlW3/VE3i8xs7IVJPxrNppLFF Ad4XVVP/9EJrN6NrWwIgCVU9MHZDtd/f5G/UaXAwYbMDZqz87DA6KL9ThgxmKlcw DQYJKoZIhvcNAQELBQADggEBAF0OwAoPjNJrz0tyhywnQKvNS/KHov6Mp6IZdYKw 1lukFl4+csvtkEkeFg/3F52pG0DM0nVFhubncGuZLr7qCYm+PeVxNvPmM1nMk9dd IfKnCgjv4EL1wvFp7yo+07cy+Nrp1X52vHbTnakwBWA/3g4qR5QcnzjCeyTZ5HeH x3OGSRqghQWbdDwUFGeT3TuOTkc7mEBbTFUKiKipyy2ETWom4v6w/P/LuZvy401+ FjCGwP7XiDwC8VsKE+QbUH730y3rzdBBudilogYskbsDDPAoKFIR17Qz1H7I9FGe 19fE8x5h77k71yV0D0xEj9E8txE3T02POurOUJ1B9rTKftU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuSj7gATb8QIx1mjRkJJj FbQVLrjudbgd/NKOs4FmMS5CTGYqNXC5NZ1eQa1ymhbmzdMWIxmERIrQSvNL7LVg eNPOHF+YyV4RkpYVgw5D1N1UH6inQ6vtSXNOvcdeWjHBQpFWGluXnGhuMoap+Vkl YDfVRzdjMGICOo9IbvRZVeFuAoAOvv4yk2jd/twLKAX+Pe4oQMKReyog0+xol8TC mKIChhh2C+nfJdF5c1KRS1BxZYiXDe9/4IP2kEos++EvD+jJVXloL7Z4dbONP/FC cTS51enHqmsqlyFhpLxOk5lBKhOezi0Ot/+81isA/fjcS2E8L4+EKzW8xAuLDJMt eQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 266327397354907237833674084133256774622197 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-13 00:23:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-11 00:23:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'flanaganfilm.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23374295604296884300032284202905765360639842944194432690317787706117377967656557329070440708152131291377754275797630372386269305424413939959762896689974293365623636126759726272002233454242239883997547633979368385466756161750825042667887628085943961176824073274159725949628850461290723489585301244844376885976852259084769153064660093191928905205888909422678845150625198123536092844371206341861851152917226335674375757330915930488473310124736064831081969381418940391045389605884785746860608621231183397952535693024248084625266798542758176594281681440359075679614166313154883257373685777651503971913696422094906326199673 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 164682ac3e3c017372db168ecad5e6d2dd3fc50c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flanaganfilm.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roadto50races.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e3568a0f900000403004630440220273e734afdb3275d06e25cf794aba9313bc61ffb235bf6136dd38f48ea85c3470220453339036d20990e3869f46bfc1e3014cf2429ef8a47feecf6728f978e487c2600760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e3568a12e0000040300473045022100cd956dff544de2f31b3b21524fc6b369a4b14501de175553fff4426b37a36b5b022009553d307643b5dfdfe46fd469703061b30366acfcec303a28bf53860c662a57 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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