sandraalexander.com
Issued by R3
About this certificate
This digital certificate with serial number 04:14:98:54:a3:8e:81:ea:0d:1f:f3:f1:44:d3:c7:e4:35:f5 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=sandraalexander.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:14:98:54:a3:8e:81:ea:0d:1f:f3:f1:44:d3:c7:e4:35:f5Serial Number (int): 355457273191078550983102015022485228238325
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 66:b6:85:ba:a0:6c:8a:e9:dd:71:fe:38:46:3c:27:7d:eb:9d:3e:28
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 38:93:35:91:bb:21:c2:4a:96:45:5d:a0:38:8f:11:7f:2a:7b:77:c5
Fingerprint (sha256): e0:d9:93:6b:4c:7d:fc:c2:7b:90:0e:d1:56:72:2d:a3:be:2e:1d:07:58:e3:cf:a0:62:e5:7f:bc:06:b5:73:36
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate sandraalexander.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sandraalexander.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sandraalexander.com
www.sandraalexander.com
www.sandraalexander.com
Other certificates including the domain name sandraalexander.com
(limited to 100 certificates)
www.37pay.co
dh607.com
www.mngoptrump.com
lifelinehealthsystems.com
www.fakehiphop.com
www.private-dancer.com
www.sandraalexander.com
shippingtojapan.com
www.halanderson.org
www.lgbtqimatchmaker.com
www.cosimo.co
nicolemullen.com
almeno.com
sandraalexander.com
aeroso.com
goodhealthherbals.com
yugocasino.com
www.svezia.co
hoclpower.com
xcamer.com
occio.com
www.instantdomainchecker.com
sandraalexander.com
www.sharp-shooter.com
sandraalexander.com
mobicanada.com
verimaster.com
dh607.com
www.mngoptrump.com
lifelinehealthsystems.com
www.fakehiphop.com
www.private-dancer.com
www.sandraalexander.com
shippingtojapan.com
www.halanderson.org
www.lgbtqimatchmaker.com
www.cosimo.co
nicolemullen.com
almeno.com
sandraalexander.com
aeroso.com
goodhealthherbals.com
yugocasino.com
www.svezia.co
hoclpower.com
xcamer.com
occio.com
www.instantdomainchecker.com
sandraalexander.com
www.sharp-shooter.com
sandraalexander.com
mobicanada.com
verimaster.com
Certificate
The complete raw certificate details for sandraalexander.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGDDCCBPSgAwIBAgISBBSYVKOOgeoNH/PxRNPH5DX1MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMjEyMTA0NThaFw0yNDAzMjAyMTA0NTdaMB4xHDAaBgNVBAMT E3NhbmRyYWFsZXhhbmRlci5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK AoICAQCwF745cqvkIbvQjH3wd+C22ov6LaMDUJqcN5/Qk+mHlovqz9ZdgVVin6ZB cGf5xxtzqbuGdZLVpsjaaZpAxNzUkiinaOFvE0Ibxp+Byro8ax02CXT4WZichsf+ /+RIDAlCkab4IeMwuYGaP5D8B1XadmtmL3vgsSokdgUH3PwQfC0IMmvbF0xKKS+H WVIRz5ktIKatAoOdNM907SozyXaiD9bUcXhnYP2MHlGs87VgMnS1s0lJVAxUXa16 ufyGFmQA5F+Y5q9tBG52YbEg7sVAfgL3GHwh2Ajech/1u4hzimd4JZgReDGpTB5s MFjfPbpikpwH4u2Qagr1C2DlFUX7oo483koOccybOJw9qyP7aee6kWnaWCNdDgeS dcVK1clcZNnszm0SACL3xYfAJReZDGasLa7TfeufdxtuMjiZpSwP5jmX6DooGUi3 3Oh9/CDPOCMlykpjIQuSjy1em3NphX3tt1bTBar3U1aOlfPL7BLmBS2MLFqTQURD BXlfXfj2+Y5epyfZLzGEw0Jj7X5vktuD/BPkIp22eSv8vwx2T5J1NvWmCjeF2RGB LwogU2VCFj0IZ8zqLmimUd2Q2RHiqNsxTW/qw6vt74bImxBt+2FtV4tAlMqfhA8x UZHrvyPnk9BlZ7q0UfSjVCiWQVemqROVz30CSwe6hQNM2O85eQIDAQABo4ICLjCC AiowDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRmtoW6oGyK6d1x/jhGPCd9650+KDAf BgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcw IQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYW aHR0cDovL3IzLmkubGVuY3Iub3JnLzA3BgNVHREEMDAughNzYW5kcmFhbGV4YW5k ZXIuY29tghd3d3cuc2FuZHJhYWxleGFuZGVyLmNvbTATBgNVHSAEDDAKMAgGBmeB DAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AEiw42vapkc0D+VqAvqdMOsc UgHLVt0sgdm7v6s52IRzAAABjI5pDLEAAAQDAEcwRQIgdydsijCsC07eSTwmgP8a 4fcY+KzVUDe4RA14X+6EbU4CIQCFqleZsbfst3CYm5idIXKe4+Jt6I2ONCoD2zLj TFld7gB2ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjI5pDK4A AAQDAEcwRQIgVFLLgnjE2R3hqGYqmQc3H+qOTVTynOd2OwxlSgMRZQQCIQD6AQdB rkVYcOPt0jSeN/b9TCjpNZtxEJ7r8z0NW/50DzANBgkqhkiG9w0BAQsFAAOCAQEA KpVYSTi4ANqWkqTkLZjg6FEoOT/DyZzC1Awpo8JqbdONkLplpLMwlwg8NShD5t3H PkSwizIWKXz0vjLBZo7qEnHUIy2WtA+wJy/CKPZQHS00NIxEy1AieQsu4lsV1waK ov96kVpMcCTV6Ocnbg+071tBy3f8i3ryxhvZ5Zan469vgGSB4ONdH5OWG5rhLRgL M6nCMiHWeNiqxdNrggOiA+f04sdJNHNG0k0hEEW5k7dIlKZSQcjBk93yABw//Bmc 26v6uFCejOmjGa8OIi9RNs2fZIF15YUqxsQpmbHgFIEcWl1xcftgBjEQAbv56t1R SCDF15+lA0YwyY6SfTAfag== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsBe+OXKr5CG70Ix98Hfg ttqL+i2jA1CanDef0JPph5aL6s/WXYFVYp+mQXBn+ccbc6m7hnWS1abI2mmaQMTc 1JIop2jhbxNCG8afgcq6PGsdNgl0+FmYnIbH/v/kSAwJQpGm+CHjMLmBmj+Q/AdV 2nZrZi974LEqJHYFB9z8EHwtCDJr2xdMSikvh1lSEc+ZLSCmrQKDnTTPdO0qM8l2 og/W1HF4Z2D9jB5RrPO1YDJ0tbNJSVQMVF2tern8hhZkAORfmOavbQRudmGxIO7F QH4C9xh8IdgI3nIf9buIc4pneCWYEXgxqUwebDBY3z26YpKcB+LtkGoK9Qtg5RVF +6KOPN5KDnHMmzicPasj+2nnupFp2lgjXQ4HknXFStXJXGTZ7M5tEgAi98WHwCUX mQxmrC2u033rn3cbbjI4maUsD+Y5l+g6KBlIt9zoffwgzzgjJcpKYyELko8tXptz aYV97bdW0wWq91NWjpXzy+wS5gUtjCxak0FEQwV5X1349vmOXqcn2S8xhMNCY+1+ b5Lbg/wT5CKdtnkr/L8Mdk+SdTb1pgo3hdkRgS8KIFNlQhY9CGfM6i5oplHdkNkR 4qjbMU1v6sOr7e+GyJsQbfthbVeLQJTKn4QPMVGR678j55PQZWe6tFH0o1QolkFX pqkTlc99AksHuoUDTNjvOXkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 355457273191078550983102015022485228238325 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-21 21:04:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-20 21:04:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sandraalexander.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 718395728044021942950174496296874278565631751206731059947777653105597297779318646043181092139105430397594291311390603419214998112688827574271553025099792203475591579177161657148661521814263201913652027817563863025009726978184997708364795888295934700420832996724265411432565509469817990583135388440493718588957477838220050047560316200360560421808340054037341043144442475275368409280268237298464514260390665291910440413839247319228438715556000770249394961133889570099005631015510320975328178405783280732225665924689606769467231525461338123885312905386465892157522539301863552642883783487989748291377384069694338929671790695182489979446079328421961435531976247745082798042686922675355803527955880838049743318896676697413808751521794361155918232886560750840603325496553083657265443022717964088073204070159480012809696381641650091743874674526082974699712158655762439665570198113778320111271329710881399097582669837006391777837959801603266133848075443331813912912299510425249644227845019023066367109094685081260760006981114632992265355006142552414062926748140333312589991955354581283766648594163106566706154443895915185040438176991392903531533591482975573728296041535285553419988449844283243830264596100873170345892403498700404684967852409 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 66b685baa06c8ae9dd71fe38463c277deb9d3e28 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sandraalexander.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sandraalexander.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c8e690cb10000040300473045022077276c8a30ac0b4ede493c2680ff1ae1f718f8acd55037b8440d785fee846d4e02210085aa5799b1b7ecb770989b989d21729ee3e26de88d8e342a03db32e34c595dee0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c8e690cae000004030047304502205452cb8278c4d91de1a8662a9907371fea8e4d54f29ce7763b0c654a03116504022100fa010741ae455870e3edd2349e37f6fd4c28e9359b71109eebf33d0d5bfe740f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 002a95584938b800da9692a4e42d98e0e85128393fc3c99cc2d40c29a3c26a6dd38d90ba65a4b33097083c352843e6ddc73e44b08b3216297cf4be32c1668eea1271d4232d96b40fb0272fc228f6501d2d34348c44cb5022790b2ee25b15d7068aa2ff7a915a4c7024d5e8e7276e0fb4ef5b41cb77fc8b7af2c61bd9e596a7e3af6f806481e0e35d1f93961b9ae12d180b33a9c23221d678d8aac5d36b8203a203e7f4e2c749347346d24d211045b993b74894a65241c8c193ddf2001c3ffc199cdbabfab8509e8ce9a319af0e222f5136cd9f648175e5852ac6c42999b1e014811c5a5d7171fb6006311001bbf9eadd514820c5d79fa5034630c98e927d301f6a