DV SSL/TLS Certificate for www.rockvalleykiwanis.org

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the www.rockvalleykiwanis.org DV SSL/TLS Certificate

This certificate with serial number 05:40:07:11:55:04:49:ef:d5:d6:74:25:11:e9:34:66:f9:04 for www.rockvalleykiwanis.org was issued on by Let's Encrypt.

With 3 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.rockvalleykiwanis.org provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:40:07:11:55:04:49:ef:d5:d6:74:25:11:e9:34:66:f9:04
Serial Number (int): 457348895731102995707212406726620350970116
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: d1:4c:8e:6d:b0:81:fb:45:d0:53:a0:85:d0:9f:66:0e:d9:76:c0:ae
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 6f:11:7d:59:4a:f4:06:72:27:15:81:a1:96:ef:eb:83:b4:6e:c2:82
Fingerprint (SHA-256): e2:2a:31:8c:0e:56:57:ec:8f:da:94:cb:47:67:0f:df:a4:d5:88:9e:a5:03:44:25:45:16:b9:5e:7a:f3:f4:c4

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/5.crl

Check the revocation status for certificate www.rockvalleykiwanis.org
3
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.rockvalleykiwanis.org

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for www.rockvalleykiwanis.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcQfRXDtJN21dI/J1M7B
Nx1SbvXY72mpEFP48qZRjQmm372ue+z70tN7Pf2wbb3JjWV0/ug2yocCyLqNGZIG
YCKpsTMJfgEMIFOWDChgNxeZ2V9gpNm31GHPTdQsq7ZWUKdw7t5/Qogezf5eQPFq
UmKUw/fxjFwFzSaBrrWz3lLZzCUnIUnsFNAax/sKOdL0rMOWpOb4vR5jUwRTsLtt
RDEjllrRhCJkBbK4ZLJ4R2uWomClZTWBDrJkkiIUpKeQMp7VoHy4IWefGqvBqr0c
W0Pe6KADeTEcChcvXlLfxw0cvstLIfdR0jmw+qtAIuJ+v1bMggDgV85/BE17aM1B
CwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 457348895731102995707212406726620350970116
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-08 15:45:29 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-09-06 15:45:28 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.rockvalleykiwanis.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21935938197423470863662627874678876796076427339493696240426515511866053021212657267815372847855781414962834424607058478447957655856869610226390091254796787198643761750276592943524259480016659731577283122701577632559192704470215175389938045124759165811514890772383941164116541999168264331668861295567295477183700138280553812116089187773731513666331824888218290886801160983343411917477122985607134643228940603951736535992614180530385093152854401733141707489967677567401933697060023414948538893376324134470297999326905313739995279633826793210255034206584072487740058626808201606295289100432475930873826730475959291298059
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d14c8e6db081fb45d053a085d09f660ed976c0ae
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (80 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.rockvalleykiwanis.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rockvalleykiwanis.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rockvalleykiwanis.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/5.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a845400000197506d72570000040300473045022100fde2f95e60745a8261bd536a9994fd4833332d64e9109c4e10b9b2611b4b20c902205961e064585c182597736f98f667eab5c7a8d104f8e0f4ee5f45876dc3c96e9c00770012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a00000197506d724a0000040300483046022100cc49efecafbe307834c688cdaa3c2209ce1b45a18216bd9d9860c541753b6158022100e8fe655b38617a091ac327f98243c97d124531935851f28dc34b417d58b9e2e3
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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