ownman.vc

Issued by R3

About this certificate

This digital certificate with serial number 03:d0:f2:8b:ba:8d:9c:9e:1e:d4:f3:98:21:0d:0c:4b:01:5f was issued on by Let's Encrypt.

With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ownman.vc

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:d0:f2:8b:ba:8d:9c:9e:1e:d4:f3:98:21:0d:0c:4b:01:5f
Serial Number (int): 332437988802827054333669560343595867373919
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 74:67:a7:3d:6c:68:73:66:ac:36:ad:d6:08:c8:7d:a0:50:b8:6a:0a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): c2:f1:ea:52:88:74:7b:9f:75:56:7d:16:23:8f:5d:a7:46:b3:8f:0f
Fingerprint (sha256): fc:6e:1e:d6:7e:4a:d7:f3:85:9b:63:4b:d0:31:bf:d9:9b:5c:f0:8e:e0:9c:59:f6:0a:a5:88:91:d2:62:3e:19

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate ownman.vc

5

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ownman.vc

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

loveshemp.com
michianascrap.com
ownman.vc
rthomasv3.com
secondstorystudioanddesign.com

Other certificates including the domain name ownman.vc

(limited to 100 certificates)
ownman.vc
ownman.vc
enerpactoolsgroup.asia
ownman.vc
ssl-lsplg.epik.to
ownman.vc
ownman.vc
ownman.vc
ownman.vc

Certificate

The complete raw certificate details for ownman.vc in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6XlPETtAw2hlLAi1/RvB
eclsalEOcKHUu8yguIeeGEcEERxDg7Qk7Zm+SndozxOlkkMgoByD1aXWZuUUxCC6
ZbMZMbOwWwSvQnU2ym3AfXsQ/CXlk4Ppg26OwywVErfjvcFddp8LBOMkHeDPuJyT
QxRvPHdkdTPTrxi8CyA+lgmL7buAm9c0leVQo1M0Ny+BI0KtZ9eFWxCMW3nY6DDx
tTxvXOtkLyxcGuu5n98SYz7DAjbo2JAzZPBQGrHI3DToRptfzV/52vdjp3xaLbIe
Q8nRbCOZZRM07x8mxIr39KElfsnlAiccPE+uApeJXv5KqsD7LNSyQ19W2TFC7Oz+
TQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 332437988802827054333669560343595867373919
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-06 15:11:20 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-04 15:11:19 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ownman.vc'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29473344683829163114456881568090537977759048294450304540967935605145151971342734323182820734581435175075788913184417707696644625794889417681870075657436683063839131866218346421707891730129802987101094084500466970163264741774536889339973787422495528240263692722037293193413863235516812731709548212731134521422531233177551698539281711521578307813977962618474279658023575186257538661440948735054415198225960556426511548123102411760011398419048666234226900418529397230852534377498228913854728167388462988435102917423182178071046495383084254231343514858830956387783842394643562853118742310965678264461816956174274384428621
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7467a73d6c687366ac36add608c87da050b86a0a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'loveshemp.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michianascrap.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ownman.vc'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rthomasv3.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secondstorystudioanddesign.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f4eac87bb0000040300483046022100d0acbcaf5e8c66b5b00367eac43cdcba4e1d7ea2ff3d85d8cd6233444f4a3794022100803e0e2d31582b27f9758528a96f11e5a8ea1cf46fb95bfedf742d17bfaf932c0076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018f4eac87d1000004030047304502203553ddd4c788678c0522b5a57ad7447d14329140e472e70cca0bd028685815e0022100e6dba3f2e89879e4ca5bd041eadfed586ed2efba13d45a632ff7d7a499772220
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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