turtlereality.net

Issued by R3

About this certificate

This digital certificate with serial number 03:72:53:f6:89:84:60:3f:85:5e:c3:cc:c4:8f:6b:b2:62:2f was issued on by Let's Encrypt.

With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=turtlereality.net

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:72:53:f6:89:84:60:3f:85:5e:c3:cc:c4:8f:6b:b2:62:2f
Serial Number (int): 300240653642123092864998108766721054761519
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 10:27:78:12:bd:e2:c6:83:c6:6e:f5:c3:12:9a:d4:5f:b4:e7:1c:97
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 67:dc:34:b5:22:9e:cd:7c:75:cf:90:d3:03:66:c3:13:ef:7d:f9:73
Fingerprint (sha256): e8:e2:7e:eb:b0:62:96:92:98:ea:aa:29:5e:7e:9b:92:08:ba:f6:de:3e:58:eb:f9:9f:d4:33:81:e5:6b:b9:bb

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate turtlereality.net

4

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for turtlereality.net

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.turtlereality.net
turtlereality.net
www.akctest.turtlereality.net
www.ck.turtlereality.net

Other certificates including the domain name turtlereality.net

(limited to 100 certificates)
turtlereality.net
turtlereality.net
turtlereality.net
turtlereality.net
turtlereality.net
akctest.turtlereality.net

Certificate

The complete raw certificate details for turtlereality.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApeevm0RJ1J5O8Ma1tovg
V2JEmLrdP5DDo2DdcfzIpQGsCvpn3Ch3ipYzmWhenyPfCFWW6k8QwEdW+2oM4AUR
LAN7aZVQWjVNaHrakdswLsdNjlA9iQ/COMWDPNgTdhQrYH7y2pRUYZDFvVKWr0Sr
epqRqMeFzFdBiKlm5VZZGcT0aVwRsNDY2yQEaxD2HACz1F2EgC4hEW8Nt35J47FK
8hJXeMGhLE+1evhp5UI7WYcjgLObZ1uzNKx5V/lJvsgI5XjZvSsOTOzLM+wuxlpk
9APw8plohGn2S0c6hQHuy5Hmf37cBt//avEq5w4+RCp6ZphFmHWUMbyf3mWPboNS
nwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 300240653642123092864998108766721054761519
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-02 20:27:33 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-01 20:27:32 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'turtlereality.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20943568925825617375779579473614799317137836342965959395028484271006090300437936555384730539716009668517775523031277815446892183179355520589414473282550877426437528650250106818919035156295493191052491101747803269449679134195467535449757567272766819731284841814979652967036863066737894911254257622704447510296146890505474440966951384576946313330392070337794704759680296500008901790005378542113803935077460951209415302840507895415293675962060188860801586289556635398043419632456959641727293247319673058574578163296155833092807238013300447357236429250714131287942668509576543158210964626800214594138205829112044026286751
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							10277812bde2c683c66ef5c3129ad45fb4e71c97
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.turtlereality.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'turtlereality.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.akctest.turtlereality.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ck.turtlereality.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c2c6df9660000040300473045022046f24451af9e17d5d9c10bbf1c383daca2480191ad94e58618a4f3950238af1f022100878e0b77ff1cd5777a8993411556ede615c3371481f5c9276b76fbe3c4ec38d9007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018c2c6dfa1c000004030046304402200867be224bb1bbcb60943024da9698e6290be406d1ea1056541075f56e70a4da02206938322daeec8930968420c4221e2d25a3490e8bc4c016a35d675a9e5cefe3a7
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00b46ffb116758e62e3f51a6279c8d9ee8f22b14a8c973da10ff352bb8619469a026a6ef75cf51d7fe6ecb02cd76539fdcd57369260c4ecc87369274d40a4a428b381c53ad27f4277d74eae5c137db2d31fc2d1190a52a509c835ae6081b886a592b9aca8b2e5e15e0b346ee2ac3cdbab48c6c8d9add8fc09cbbbce9537c315cfef4e582646e039e48fd38dfa8e39fd5957d17a23a3340776a16d1aa2abccdb274b35087ef46e311d3d7302de7a36fe977f1428a8ba1c726344a8e96ecc80d14943a96caba1ea7de0016183b13deffd383c38b4ce18f0be483867c8c25afca00a08470be87c4586bb8eeaa810145f4575d0a76f2bb137bb11fbcce761fcc7bbe19