digitaltown.org
Issued by R3
About this certificate
This digital certificate with serial number 03:d3:d2:6c:50:b6:47:e8:91:86:de:d7:10:a4:64:8e:35:f8 was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=digitaltown.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d3:d2:6c:50:b6:47:e8:91:86:de:d7:10:a4:64:8e:35:f8Serial Number (int): 333416137499808858288785691946886896694776
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 8a:06:c7:a8:f0:58:2c:0b:ce:35:fc:08:dd:e8:66:cf:84:f0:04:6a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 33:0a:e4:b4:6e:11:8b:09:2d:61:13:99:0d:d3:d8:b1:3d:77:e5:96
Fingerprint (sha256): dc:f6:28:5f:d8:55:8f:33:a7:86:d2:89:59:98:20:e2:57:6a:7c:c3:f7:be:9e:73:78:b2:ba:bb:07:41:5e:62
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate digitaltown.org
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for digitaltown.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
benbrewer.org
digitaltown.org
domaintoprofit.com
finelineindustries.com
learningmodels.com
modalatmaintowns.com
thesalvagemasters.com
weeklychef.com
digitaltown.org
domaintoprofit.com
finelineindustries.com
learningmodels.com
modalatmaintowns.com
thesalvagemasters.com
weeklychef.com
Other certificates including the domain name digitaltown.org
(limited to 100 certificates)
exoniaconsulting.ca
dotexpertdomains.com.revx2.llc
xsa.co.za
digitaltown.org
kiesza.ca
playgolf.club
noslides.de
allanblock.ae
playgolf.club
playgolf.club
boothlaw.llc
highscale.org
playgolf.club
allanblock.ae
musicoldies.ca
digitaltown.org
allanblock.ae
playgolf.club
punjabmatrimony.in.citydrinks.ae
allanblock.ae
georgiastatenationals.com.windowcleanernearme.org
weibo.co.za
playgolf.club
rental.world
playgolf.club
rental.world
digitaltown.org
digitaltown.org
transaction.vc
5272653.ca
dotexpertdomains.com.revx2.llc
xsa.co.za
digitaltown.org
kiesza.ca
playgolf.club
noslides.de
allanblock.ae
playgolf.club
playgolf.club
boothlaw.llc
highscale.org
playgolf.club
allanblock.ae
musicoldies.ca
digitaltown.org
allanblock.ae
playgolf.club
punjabmatrimony.in.citydrinks.ae
allanblock.ae
georgiastatenationals.com.windowcleanernearme.org
weibo.co.za
playgolf.club
rental.world
playgolf.club
rental.world
digitaltown.org
digitaltown.org
transaction.vc
5272653.ca
Certificate
The complete raw certificate details for digitaltown.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFejCCBGKgAwIBAgISA9PSbFC2R+iRht7XEKRkjjX4MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTkxOTEzMzdaFw0yNDA1MTkxOTEzMzZaMBoxGDAWBgNVBAMT D2RpZ2l0YWx0b3duLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AOTMAcSS1Oa6a/QzRB0RuH7Lcd5GMy+12XvzTM4xMoY8unF8b3WaKQSsPnk3cWYY gVljFTdFlaqdIA4349pmhbqToLyMMLSfIihR0NlvrY8gz+pRCXWHTiLPSn8557ID XXlpi4Ld1uwXe7ZkvNZXUQnCuMtqgPfedU2bpSNIomPYfA7nO34sCaoXpotNI7VG 8eK975x57AqPsSkj+FMJL+XnsxtEbhPVos7bDANFo8NIKCEvn+QhmcHCc3m/2jeC B4B4qEuiIQkU0yjce0ZI/LyyQyaGyAXllr898DnkgkhvRv1A4BAE13pZSU/vu1Zn 789df9YH+1TFmdQwgU7UEjsCAwEAAaOCAqAwggKcMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUigbHqPBYLAvONfwI3ehmz4TwBGowHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wgagGA1UdEQSBoDCBnYINYmVuYnJld2VyLm9yZ4IPZGlnaXRhbHRvd24ub3Jn ghJkb21haW50b3Byb2ZpdC5jb22CFmZpbmVsaW5laW5kdXN0cmllcy5jb22CEmxl YXJuaW5nbW9kZWxzLmNvbYIUbW9kYWxhdG1haW50b3ducy5jb22CFXRoZXNhbHZh Z2VtYXN0ZXJzLmNvbYIOd2Vla2x5Y2hlZi5jb20wEwYDVR0gBAwwCjAIBgZngQwB AgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgDuzdBk1dsazsVct520zROiModG fLzs3sNRSFlGcR+1mwAAAY3DAKqZAAAEAwBHMEUCIQCPRX0DjnteduzW31XPeRkt x9ezYYLQ2UTCa1upsvBWMwIgbD8MISBeD4ZHWOeTD3nL0IGLEqjugmhSnir/ju3D /YgAdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAY3DAKxAAAAE AwBHMEUCIQCuVkaIhW8ndHH9sfLL8XAAAWwdKMaPpS8yB6rEg6yzNgIgX8kQTSGH R+AwJWN1VD7EvPu4U3tXmrRg3f1BwbeSi9kwDQYJKoZIhvcNAQELBQADggEBAJgP 3Be1iDWVJGVsoNbmM99p0bRPzO9xw4xS9Czw4V1hCDNdPeoex3Qu3VIRh2OBOCuY 8TMZ5jqTw6heBZMg+yG2H3BlzYucp+CfFcIoA74r53BZ6qgh0IhX+gkErXVQ6mMd qSQUg2m2p6PPKtKSLfCTkDt1yihpTaGuheN/iGMpBzym2wxsAsLjYTj2GDy3qdSp hqYXkxROiQUeVuWeSRi1Q8NMGWK82GuqwPBGJ9Nb+8n2lRXe0/Yr61kaVUhOi7kc Za4KFNsyAfNqjZcjb30KuKjAnqDYTvlwzspLz9G4uRVlV9I126voWr7n5o2SyMJ9 jjZCpqy9eQFB9ZmMecE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5MwBxJLU5rpr9DNEHRG4 fstx3kYzL7XZe/NMzjEyhjy6cXxvdZopBKw+eTdxZhiBWWMVN0WVqp0gDjfj2maF upOgvIwwtJ8iKFHQ2W+tjyDP6lEJdYdOIs9KfznnsgNdeWmLgt3W7Bd7tmS81ldR CcK4y2qA9951TZulI0iiY9h8Duc7fiwJqhemi00jtUbx4r3vnHnsCo+xKSP4Uwkv 5eezG0RuE9WiztsMA0Wjw0goIS+f5CGZwcJzeb/aN4IHgHioS6IhCRTTKNx7Rkj8 vLJDJobIBeWWvz3wOeSCSG9G/UDgEATXellJT++7Vmfvz11/1gf7VMWZ1DCBTtQS OwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 333416137499808858288785691946886896694776 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-19 19:13:37 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-19 19:13:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'digitaltown.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28882933086870865674485300196869204419115618734760903680191523869040167545237451503024402598047322575863906015071289280052442662893370398808763943665657248522037503938406036679542148882348817577277192423346128996475267348802117472834808387317833633457027681201270212603307318732756945708813978593854782296961092893938795242709202304293451836530971142027724609603908908915046939576815685472755964140657637050040656136703642408974413476083874962499562570529149175220810893766434443395806509953628243378880566540888680731958336539206978400645748382539591432901610356888287017756610604418442772443736534272013105192243771 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8a06c7a8f0582c0bce35fc08dde866cf84f0046a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (160 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'benbrewer.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digitaltown.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domaintoprofit.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finelineindustries.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'learningmodels.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'modalatmaintowns.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thesalvagemasters.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'weeklychef.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018dc300aa9900000403004730450221008f457d038e7b5e76ecd6df55cf79192dc7d7b36182d0d944c26b5ba9b2f0563302206c3f0c21205e0f864758e7930f79cbd0818b12a8ee8268529e2aff8eedc3fd880076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018dc300ac400000040300473045022100ae564688856f277471fdb1f2cbf17000016c1d28c68fa52f3207aac483acb33602205fc9104d218747e030256375543ec4bcfbb8537b579ab460ddfd41c1b7928bd9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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