farmdreams.com
Issued by R3
About this certificate
This digital certificate with serial number 03:71:63:d2:05:5d:d4:94:a0:22:6b:c3:a7:b0:7c:2f:77:57 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=farmdreams.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:71:63:d2:05:5d:d4:94:a0:22:6b:c3:a7:b0:7c:2f:77:57Serial Number (int): 299921449320115842927854452878416353916759
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ea:a9:96:fc:59:1e:ef:cd:df:1e:37:bc:1f:ca:84:23:61:91:04:0e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 42:f2:21:a6:84:42:a7:e7:32:03:96:98:31:62:07:c0:04:86:0a:da
Fingerprint (sha256): d6:c3:4a:76:04:76:da:8b:91:05:00:9e:3b:b7:90:26:a1:e6:db:a3:e7:c1:00:82:5e:eb:b6:19:55:e4:95:b0
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate farmdreams.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for farmdreams.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
farmdreams.com
www.farmdreams.com
www.farmdreams.com
Other certificates including the domain name farmdreams.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for farmdreams.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgISA3Fj0gVd1JSgImvDp7B8L3dXMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTUxODE1MDRaFw0yNDA0MTQxODE1MDNaMBkxFzAVBgNVBAMT DmZhcm1kcmVhbXMuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA veevd3QY/5WIcvFYe2tXSYqkBvuPAM7XfKn7dX3XHRx3P9qgqfa8vN5JCEPCvTNs YUV6LAyKrHZ42sQpD7WaYl4SW6H7sizVsRlJjbBS0yhGZfHxQFv40s4KutVQNorY jwy5jSUiCMqTvFjPsDChA+5fvPM/8ruxyzUzAzsX3QSDcp9qe+35p+O3QJ1eKnuR ysaP9AcYqrZuw9u2OX0rVktnEYq6sm8vbgAmSLekT/Moce8E6du5CvB4+pwzWowD NHU3USqGUJXHJ00zZU3r1otDXyf0Tz2j1OXReZh1m4GPcbORrDTFxEOJ2glYzz1N PzEoCJ9ETqmEnW+r/9EAPFDG9wtAsAe/YbDBMt/iXnDVatjdiuCZA8Cuedm9o56X 7o2PIdb8sN4SpJHmKwqPk+kuCEvkvZCDL9iwAh92N0BGpgnvpZFSHQo3zmzWTlSg Wur7KDTCvcWJDZ3CpFjFWW6pj4JQRb4TB0d91At3yeO9qQUf1jBAMM/82fnQriQ5 /YTt5xjgvXZKxTcnm8YGmk0LmSGKeqs/VNbF0SjUo6iBo33KC3tw45jOE9O1QvVT ERfTRhNv5W4tOIktF65ooEiAo8MoBVuhO/OUP6k6D7xukpAJf1OTsF5owgOzAF6I z5Uo31rebMjpju+X0BH8Aj92d3VAetw81cridzKBXgkCAwEAAaOCAiQwggIgMA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQU6qmW/Fke783fHje8H8qEI2GRBA4wHwYDVR0j BBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsG AQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6 Ly9yMy5pLmxlbmNyLm9yZy8wLQYDVR0RBCYwJIIOZmFybWRyZWFtcy5jb22CEnd3 dy5mYXJtZHJlYW1zLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB 1nkCBAIEgfUEgfIA8AB2AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0 AAABjQ6MfSAAAAQDAEcwRQIgBjZhprWFbilRdUuEV712umEcpjzkessVMR3lxlap d28CIQC6vJ8mGiqAcy83vkpqRzMNsPXDFFoKJ24GgiSG9jS2BQB2AKLiv9Ye3i8v B6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAABjQ6MfRgAAAQDAEcwRQIgIfe5E5Bs wgHBFwa1qLhdqjFTLm4zZFBfrr7Bngh5b6QCIQC8rR2sFV4MhdViS4muVFKP/Mdz L+jsk1i9A30roVDpjzANBgkqhkiG9w0BAQsFAAOCAQEAEbF2HKXiFjLuTd+cVPMv iTw9/Iw/qpqiF3a2XUjoz1EHsFAxqYoSolcqXVOaLoIjne/kTY+UjlAYx8UDhqY0 yOz7CiLpPO4rcoj4p+t++vFS/O6wgnLayoiMcPcq8ELMDQyfSG5i4kLld5doHn+V 2FtbBvE5Cyz5bKy9pBDRKQ9G6T7NHSC6lOjUCEdOvU4tgE80cvwONcR4ZigeBDS9 vY06+kIt2quk9PfcVCUYzk1EB+9Ef9Ej4tr91VWVoui2cd7Rz6/hXJUclOF8h3aq vEC+gTYDSBOEogqPHSUbMLTIGUb8sDE/wSFDcH+NPzV7G3clRl5EGnzPNJfvFSXQ /A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAveevd3QY/5WIcvFYe2tX SYqkBvuPAM7XfKn7dX3XHRx3P9qgqfa8vN5JCEPCvTNsYUV6LAyKrHZ42sQpD7Wa Yl4SW6H7sizVsRlJjbBS0yhGZfHxQFv40s4KutVQNorYjwy5jSUiCMqTvFjPsDCh A+5fvPM/8ruxyzUzAzsX3QSDcp9qe+35p+O3QJ1eKnuRysaP9AcYqrZuw9u2OX0r VktnEYq6sm8vbgAmSLekT/Moce8E6du5CvB4+pwzWowDNHU3USqGUJXHJ00zZU3r 1otDXyf0Tz2j1OXReZh1m4GPcbORrDTFxEOJ2glYzz1NPzEoCJ9ETqmEnW+r/9EA PFDG9wtAsAe/YbDBMt/iXnDVatjdiuCZA8Cuedm9o56X7o2PIdb8sN4SpJHmKwqP k+kuCEvkvZCDL9iwAh92N0BGpgnvpZFSHQo3zmzWTlSgWur7KDTCvcWJDZ3CpFjF WW6pj4JQRb4TB0d91At3yeO9qQUf1jBAMM/82fnQriQ5/YTt5xjgvXZKxTcnm8YG mk0LmSGKeqs/VNbF0SjUo6iBo33KC3tw45jOE9O1QvVTERfTRhNv5W4tOIktF65o oEiAo8MoBVuhO/OUP6k6D7xukpAJf1OTsF5owgOzAF6Iz5Uo31rebMjpju+X0BH8 Aj92d3VAetw81cridzKBXgkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 299921449320115842927854452878416353916759 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-15 18:15:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-14 18:15:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'farmdreams.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 774744893054755986146027582592597508010405766201687763752272465105380993745883352002587923066491564545882825103739822825750124433877036812775459600243019794989410047213686033065739408096429254877068032727746635241049558244555452394253968306541321276921691526424985900511172030130740519970553276951290615359375832362168762514898436041556867606624258275972135857091621121379031140587441589037744951246808756589002673636604960036775259027878067954326711245246018325405920462258054391548771562086015413647936645000086953246266147223983241545931287957000553547570715024915942198525887009666997428186785488460998962764495417955284268993675525646983538050125694341295547808112274944154576473703823427012452675707086433378945216360678073813265169080695536944314642313015280725065631894401014507250254826775203420207311655977537658729898219037108156602374419647943714680871623521292167582331247873412768907870576845485806651217616687107270037336836797147061104962219989896015890378936513000293910050953611378514967230826479069230155863116494185599066866949836154135089861753436769519893263674925649649067679163991598242157716849968944468369653636698660103700782838129557044656522134214885444838276095069902915394004546151486540440509119290889 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) eaa996fc591eefcddf1e37bc1fca84236191040e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'farmdreams.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.farmdreams.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d0e8c7d2000000403004730450220063661a6b5856e2951754b8457bd76ba611ca63ce47acb15311de5c656a9776f022100babc9f261a2a80732f37be4a6a47330db0f5c3145a0a276e06822486f634b605007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d0e8c7d180000040300473045022021f7b913906cc201c11706b5a8b85daa31532e6e3364505faebec19e08796fa4022100bcad1dac155e0c85d5624b89ae54528ffcc7732fe8ec9358bd037d2ba150e98f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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