skatepark.org
Issued by R3
About this certificate
This digital certificate with serial number 04:0c:ab:f4:ae:1b:32:19:61:84:ec:93:b2:ee:ee:21:70:41 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=skatepark.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:0c:ab:f4:ae:1b:32:19:61:84:ec:93:b2:ee:ee:21:70:41Serial Number (int): 352761100569098887617697920470576193957953
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: e5:52:af:7c:29:da:21:73:26:82:2f:17:a7:fd:89:12:4a:2d:d4:47
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 03:1e:bc:f5:c8:f3:88:13:77:69:f7:6a:49:7d:55:54:29:65:2b:ce
Fingerprint (sha256): e8:b3:37:dc:bf:a2:c4:22:50:e0:e0:f1:b0:99:2d:1e:c3:3a:26:74:cd:4d:92:d1:f3:52:5b:17:6a:c5:60:77
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate skatepark.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for skatepark.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
skatepark.org
www.skatepark.org
www.skatepark.org
Other certificates including the domain name skatepark.org
(limited to 100 certificates)
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
skatepark.org
Certificate
The complete raw certificate details for skatepark.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE+TCCA+GgAwIBAgISBAyr9K4bMhlhhOyTsu7uIXBBMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjkxMzQ3MzZaFw0yMzEyMjgxMzQ3MzVaMBgxFjAUBgNVBAMT DXNrYXRlcGFyay5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDA zP0cwvJqcqa+VcKLWJ0J9PWnEOMxaU26XvMa/AZmFohIsvPNOU3JyV/iwrkniX1x Y8v6MBU55ON/Skccv4E8hpaJZrzQDprea5AcaC0e6VY+3cNqEhSpAFXFilQsbMnZ etZDtzNVbVjCsoCCPjOwNl1xSRPIvBojufpFI7eD7qLtZVgTU96qJqNkVVqA4uTc HdaUwQ4d4JyQ7QMnY8NF6upEGcrQkgcWa4+0fqE/xX1pKvatauZJi9nfAWrkorHR 9UhtBLZUo1SZClnFyUJKIBzp0eM9CsEwgNFMDwgO0Ng/zK4LGkA6kzudS6SZpYBO +81zupNTR8BX+7qE22KpAgMBAAGjggIhMIICHTAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFOVSr3wp2iFzJoIvF6f9iRJKLdRHMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MCsGA1UdEQQkMCKCDXNrYXRlcGFyay5vcmeCEXd3dy5za2F0ZXBhcmsub3JnMBMG A1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAtz77 JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGK4WjNQwAABAMARzBFAiBS goe8obWaxcfBqY8gbmkD8LTdBSzM41KnGdZwmmiOlwIhALxPEICpVerIy1s4z4FI 7lqcyF0xvV06A+GcY4xu0MYtAHUAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6 V6NS61IAAAGK4WjNWgAABAMARjBEAiBivatahFX1ftFm+u5yg/2+yFxdXzRxl2Uy F8Fy+YbiBAIgLQzxzrAzMjlmzb9BAjQPhNLvcU0iOVIEVAHD+jY+y7wwDQYJKoZI hvcNAQELBQADggEBAAUXMTqEOiW8Mlm8fN/jGJ8x8QGS2il4jYsCd7MqpUqwO1zT o50uUVrbg21OYIs8ljmciCLNRkvx3UpuCR38DjvC/2S0LnVFk9ZKsN35BL0iIyT5 4kCQ4fwuszwjqmKYiud+2McE5RlOD8c5CAz/riTlUp4JrP2rJm7wfPFPlOL3KaUa U/viNGxcL1wtbtHpA2eFV8TVMT0Zhi6tF09RLymYhPe3S9ifnmPYSJBlMfRx8XFU Tf8vW+Hhvuw5Lz6uHJ3v2CgTrjH9iEicZmnVNwtxHupSatvD7ucN3Bgqvnfw0c/9 EDPSCOcb/wTM6jQ04KGLi3GhEyKhopaPGNLmE/s= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwMz9HMLyanKmvlXCi1id CfT1pxDjMWlNul7zGvwGZhaISLLzzTlNyclf4sK5J4l9cWPL+jAVOeTjf0pHHL+B PIaWiWa80A6a3muQHGgtHulWPt3DahIUqQBVxYpULGzJ2XrWQ7czVW1YwrKAgj4z sDZdcUkTyLwaI7n6RSO3g+6i7WVYE1PeqiajZFVagOLk3B3WlMEOHeCckO0DJ2PD RerqRBnK0JIHFmuPtH6hP8V9aSr2rWrmSYvZ3wFq5KKx0fVIbQS2VKNUmQpZxclC SiAc6dHjPQrBMIDRTA8IDtDYP8yuCxpAOpM7nUukmaWATvvNc7qTU0fAV/u6hNti qQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 352761100569098887617697920470576193957953 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-29 13:47:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-28 13:47:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'skatepark.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24338838258813665728608191358378242354327835971402328990081103012466018462279526291830196956904469090690705132462355648151163378654447962048755478172278693580585358362022795745080304076644864623373249358901428777942599303799076198214260188123899978580448029924476208611977413437581649664640674472029164274342647939535815099434852356043703800948899709970479361210447025520194485109268447693199515314624129454810840109770461715248584519071672081227944118185857325738684197637168840009444383256423456365573579233667762991622420822630365499932169363380884712955536707626450712369078163785070916281158862186127536540050089 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e552af7c29da217326822f17a7fd89124a2dd447 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'skatepark.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.skatepark.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018ae168cd4300000403004730450220528287bca1b59ac5c7c1a98f206e6903f0b4dd052ccce352a719d6709a688e97022100bc4f1080a955eac8cb5b38cf8148ee5a9cc85d31bd5d3a03e19c638c6ed0c62d0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018ae168cd5a0000040300463044022062bdab5a8455f57ed166faee7283fdbec85c5d5f347197653217c172f986e20402202d0cf1ceb033323966cdbf4102340f84d2ef714d223952045401c3fa363ecbbc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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