homeschooladvocates.org
Issued by R3
About this certificate
This digital certificate with serial number 04:ca:6f:cc:3d:79:ed:7a:68:ae:9d:38:bd:71:56:f6:3a:f9 was issued on by Let's Encrypt.
With 20 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=homeschooladvocates.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ca:6f:cc:3d:79:ed:7a:68:ae:9d:38:bd:71:56:f6:3a:f9Serial Number (int): 417334786628048912390428520692364042713849
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a3:9a:66:b2:23:ff:02:db:6d:52:1e:27:99:81:ad:5d:9b:a9:89:e4
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 40:6d:6b:a7:49:70:27:5c:19:26:94:d7:21:e5:26:4c:ce:3d:c1:b3
Fingerprint (sha256): e4:f3:aa:5b:22:e1:63:4d:8b:33:d1:03:47:05:5c:76:52:21:0b:7e:e6:cf:89:e9:2a:3a:b1:fa:6e:50:a7:4e
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate homeschooladvocates.org
20
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for homeschooladvocates.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
arbitrageur.in
baldwinpark.net
bettiepardee.com
brameo.com
frelsburgranches.com
homeschooladvocates.org
honguitos.com
jobluk.net
nationalhomeschoolconferences.com
networksinsurance.com
pointonewellness.com
productionspot.com
quratedbars.com
swealthyhealthy.com
techredar.com
translivecams.com
usedcaseco.com
vestalvirgins.com
www.calledtomercy.com
www.canwebuild.com
baldwinpark.net
bettiepardee.com
brameo.com
frelsburgranches.com
homeschooladvocates.org
honguitos.com
jobluk.net
nationalhomeschoolconferences.com
networksinsurance.com
pointonewellness.com
productionspot.com
quratedbars.com
swealthyhealthy.com
techredar.com
translivecams.com
usedcaseco.com
vestalvirgins.com
www.calledtomercy.com
www.canwebuild.com
Other certificates including the domain name homeschooladvocates.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for homeschooladvocates.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGazCCBVOgAwIBAgISBMpvzD157Xporp04vXFW9jr5MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDExNzEyNTZaFw0yNDA1MzAxNzEyNTVaMCIxIDAeBgNVBAMT F2hvbWVzY2hvb2xhZHZvY2F0ZXMub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEA1W6dVb9SVw95zFFwnld3Jpw9s+LyFW0RW21P4PUHcGcLfVlWD5Ig E52XIlkkMhTkRnwpzp24rRZQXZshsCRbDAvZEnM5H/YANou0O7xLHo/s+Wc5zJgn oaaFtR2DRUUlpii2eRSVeOasvfVyMB/+2ICHHYK3tU40WfK0dy0jMmkhVNIQ7jo1 lyJI0Ev2MP1gg2A4Re/L9dwtmG4R5wqeYxXLvsr+MSH3DdeORoCaLWVBb6iTGu3/ acyxNorzlYESqfJT/56yxRoDmjjeCPFdGp+ipviSkpoHGXN9ZXwmF5vdhMp3SufI rcwjUqxOazGHJv48l8NMSoNz7tQwtIUdLQIDAQABo4IDiTCCA4UwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8E AjAAMB0GA1UdDgQWBBSjmmayI/8C221SHieZga1dm6mJ5DAfBgNVHSMEGDAWgBQU LrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGG FWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmku bGVuY3Iub3JnLzCCAZAGA1UdEQSCAYcwggGDgg5hcmJpdHJhZ2V1ci5pboIPYmFs ZHdpbnBhcmsubmV0ghBiZXR0aWVwYXJkZWUuY29tggpicmFtZW8uY29tghRmcmVs c2J1cmdyYW5jaGVzLmNvbYIXaG9tZXNjaG9vbGFkdm9jYXRlcy5vcmeCDWhvbmd1 aXRvcy5jb22CCmpvYmx1ay5uZXSCIW5hdGlvbmFsaG9tZXNjaG9vbGNvbmZlcmVu Y2VzLmNvbYIVbmV0d29ya3NpbnN1cmFuY2UuY29tghRwb2ludG9uZXdlbGxuZXNz LmNvbYIScHJvZHVjdGlvbnNwb3QuY29tgg9xdXJhdGVkYmFycy5jb22CE3N3ZWFs dGh5aGVhbHRoeS5jb22CDXRlY2hyZWRhci5jb22CEXRyYW5zbGl2ZWNhbXMuY29t gg51c2VkY2FzZWNvLmNvbYIRdmVzdGFsdmlyZ2lucy5jb22CFXd3dy5jYWxsZWR0 b21lcmN5LmNvbYISd3d3LmNhbndlYnVpbGQuY29tMBMGA1UdIAQMMAowCAYGZ4EM AQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAouK/1h7eLy8HoNZObTen3GVD sMa1LqLat4r4mm31F9gAAAGN+zglHwAABAMARzBFAiB3YJLHWKNHePL/kUPwcveO MQ3U1/FkzqP1Ou+LcwMZ5wIhAI3sZAW92ctZRifQXGh7a/+F8jeM0tRf+S9pWcGN nqnBAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGN+zglAgAA BAMARzBFAiAVs5lQoscGi3PipPrShWSsS65YJ9wz50TGsUZTnUGVjgIhAMc7r870 fZfVl/6ohgCPwM/IIzpOiO8flLxp+7Yo4qmfMA0GCSqGSIb3DQEBCwUAA4IBAQBy nCEmzYaSvCSoM/qCW/8E3iouEqyOPcXkw4cDrrl+2PAR/Pt7U2GYuhgKrwG6LNVg UEqfsKzxz0yTEgraiufhaKjXmFQcMNPvh0XZw7IilZS/vWcqH9kLtwIojjMC7+bg eesgN/Du1xpRMbhszSxboivNSh9liQanXPAwZ9OE8srmC4NGhrj6iNbOLJBMzINc AiTOlJjmbaQVnlOatLAgxbRiJKCKLrTLYUY5kiN++Uie08Ak/Lkt/vt3Pjl7u4VS Ac1Yv7i/dZoofIh/IS7zCst1ATF6hy9aFXZA2y+y4pth7EoBryFJLft7lemJPZZX 32kgHUJwg2iR5yOeJrIy -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1W6dVb9SVw95zFFwnld3 Jpw9s+LyFW0RW21P4PUHcGcLfVlWD5IgE52XIlkkMhTkRnwpzp24rRZQXZshsCRb DAvZEnM5H/YANou0O7xLHo/s+Wc5zJgnoaaFtR2DRUUlpii2eRSVeOasvfVyMB/+ 2ICHHYK3tU40WfK0dy0jMmkhVNIQ7jo1lyJI0Ev2MP1gg2A4Re/L9dwtmG4R5wqe YxXLvsr+MSH3DdeORoCaLWVBb6iTGu3/acyxNorzlYESqfJT/56yxRoDmjjeCPFd Gp+ipviSkpoHGXN9ZXwmF5vdhMp3SufIrcwjUqxOazGHJv48l8NMSoNz7tQwtIUd LQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 417334786628048912390428520692364042713849 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-01 17:12:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-30 17:12:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'homeschooladvocates.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26943305044887768296708547983397347780014738338996637742405885702055545565545017448252733670423909356225188873110069981168438295744920492011716800633506200290613049489164482357408531840109673096259461733222068752911440588000662155137764772198558423282954738979813951545936626167493071995241921789790493679728302705903237611206797863423469314245801807757926809009380079206471444120748333387910744305815189018967244545483596834797848414666807177440464847811191015117593783049028647947178223792008866318691272585754839797684262759332118749463780258711055075655304638907948069138666016540009301295669080930635644238372141 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a39a66b223ff02db6d521e279981ad5d9ba989e4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (391 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arbitrageur.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'baldwinpark.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bettiepardee.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brameo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'frelsburgranches.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschooladvocates.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'honguitos.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jobluk.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nationalhomeschoolconferences.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'networksinsurance.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pointonewellness.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'productionspot.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'quratedbars.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'swealthyhealthy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'techredar.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'translivecams.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usedcaseco.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vestalvirgins.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.calledtomercy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.canwebuild.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018dfb38251f00000403004730450220776092c758a34778f2ff9143f072f78e310dd4d7f164cea3f53aef8b730319e70221008dec6405bdd9cb594627d05c687b6bff85f2378cd2d45ff92f6959c18d9ea9c1007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018dfb3825020000040300473045022015b39950a2c7068b73e2a4fad28564ac4bae5827dc33e744c6b146539d41958e022100c73bafcef47d97d597fea886008fc0cfc8233a4e88ef1f94bc69fbb628e2a99f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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