aldy.csail.mit.edu
Issued by R3
About this certificate
This digital certificate with serial number 03:9d:db:20:53:a2:5d:f1:b6:16:73:00:f3:ce:41:2f:a3:9e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=aldy.csail.mit.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9d:db:20:53:a2:5d:f1:b6:16:73:00:f3:ce:41:2f:a3:9eSerial Number (int): 315052458182748482141591753834546594816926
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 08:f9:52:be:38:be:16:9f:a8:d6:8b:ad:b8:d6:09:af:3f:ae:ce:68
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c4:4c:22:36:09:13:aa:fd:95:17:02:bc:a8:b4:f5:7c:c7:43:db:4c
Fingerprint (sha256): 00:a3:1e:58:5b:b9:6a:89:6a:b7:6c:db:e8:0e:ce:ac:69:4e:af:a9:0d:81:8b:0e:83:98:d4:96:a6:36:38:a7
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate aldy.csail.mit.edu
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aldy.csail.mit.edu
Public Key Algorithm
ECDSA
Key Size
256
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aldy.csail.mit.edu
Other certificates including the domain name mit.edu
(limited to 100 certificates)
5692462144159744-fe3.pantheonsite.io
discussions.odl.mit.edu
frankwilczek.mit.edu
5671617594130432-fe3.pantheonsite.io
dreams.media.mit.edu
github-backup.mit.edu
www.wgs.mit.edu
bucket.mit.edu
cf-registration.mit.edu
tstormvideo.ll.mit.edu
clpi.mers.csail.mit.edu
bosefellows.mit.edu
ceepr.mit.edu
somtow-sucharitkul.mit.edu
us.prod.campusgroups.com
cliff-homepage.mcservices1.media.mit.edu
sloanfacultysearches.mit.edu
image.20210408.094303.s11.et.yellsatcloud.com
5724596284162048-fe2.pantheonsite.io
mailto.mit.edu
discussions-ci.odl.mit.edu
covid-stats.wi.mit.edu
bone.mit.edu
nothangout.media.mit.edu
eqaads.ll.mit.edu
listlottery-dev.mit.edu
crowdsensor.org
sciwrite.mit.edu
edu-apps-test.mit.edu
statuspage.io
maz.mit.edu
theta.mit.edu
rmerton.mit.edu
psirudahximenes.com
admissions.emeritus.org
mobilityofthefuture.mit.edu
dome-preview.mit.edu
www.borgeapps.eu
radius.mit.edu
5638203017003008-fe2.pantheonsite.io
aidm.mit.edu
tatacenter.mit.edu
newhouse.mit.edu
sloangroups.mit.edu
mitoc.mit.edu
meche-prod-app-2.mit.edu
olinda.mit.edu
ipespeakerseries.mit.edu
probcomp-2.csail.mit.edu
5750683647082496-fe3.pantheonsite.io
boyerlab.mit.edu
fryonthefly.mit.edu
silvaire.mit.edu
imes-fmp.mit.edu
git.mers.csail.mit.edu
us.prod.campusgroups.com
aldy.csail.mit.edu
beeme.mit.edu
alm.mit.edu
www.gcws.mit.edu
www.create.mit.edu
infiniteseries.mit.edu
mri-rle.mit.edu
5636026810761216-fe1.pantheonsite.io
hsf1.csail.mit.edu
ceepr.mit.edu
ceipostdoc.mit.edu
socialphysics.media.mit.edu
think.mit.edu
hilary.mit.edu
cce.mit.edu
clubsports.mit.edu
ikim.mit.edu
capco-status.polaris.synopsys.com
sdm.mit.edu
msm-dsoos.mit.edu
visor.mit.edu
education.mit.edu
classrooms.mit.edu
terrascope.mit.edu
5638203017003008-fe2.pantheonsite.io
unhangout.media.mit.edu
atlas.mit.edu
www.sloan-hbc.mit.edu
j3.shared.global.fastly.net
cfg2018.csail.mit.edu
ogs.mit.edu
paulbert.media.mit.edu
stat-stage.mit.edu
oc11-jabber-2.mit.edu
j3.shared.global.fastly.net
darts.mit.edu
skullhouse.mit.edu
5636026810761216-fe1.pantheonsite.io
techspace.mit.edu
hkn.mit.edu
create.mit.edu
hecsh1web01.mit.edu
fermi.haystack.mit.edu
securelink.mit.edu
discussions.odl.mit.edu
frankwilczek.mit.edu
5671617594130432-fe3.pantheonsite.io
dreams.media.mit.edu
github-backup.mit.edu
www.wgs.mit.edu
bucket.mit.edu
cf-registration.mit.edu
tstormvideo.ll.mit.edu
clpi.mers.csail.mit.edu
bosefellows.mit.edu
ceepr.mit.edu
somtow-sucharitkul.mit.edu
us.prod.campusgroups.com
cliff-homepage.mcservices1.media.mit.edu
sloanfacultysearches.mit.edu
image.20210408.094303.s11.et.yellsatcloud.com
5724596284162048-fe2.pantheonsite.io
mailto.mit.edu
discussions-ci.odl.mit.edu
covid-stats.wi.mit.edu
bone.mit.edu
nothangout.media.mit.edu
eqaads.ll.mit.edu
listlottery-dev.mit.edu
crowdsensor.org
sciwrite.mit.edu
edu-apps-test.mit.edu
statuspage.io
maz.mit.edu
theta.mit.edu
rmerton.mit.edu
psirudahximenes.com
admissions.emeritus.org
mobilityofthefuture.mit.edu
dome-preview.mit.edu
www.borgeapps.eu
radius.mit.edu
5638203017003008-fe2.pantheonsite.io
aidm.mit.edu
tatacenter.mit.edu
newhouse.mit.edu
sloangroups.mit.edu
mitoc.mit.edu
meche-prod-app-2.mit.edu
olinda.mit.edu
ipespeakerseries.mit.edu
probcomp-2.csail.mit.edu
5750683647082496-fe3.pantheonsite.io
boyerlab.mit.edu
fryonthefly.mit.edu
silvaire.mit.edu
imes-fmp.mit.edu
git.mers.csail.mit.edu
us.prod.campusgroups.com
aldy.csail.mit.edu
beeme.mit.edu
alm.mit.edu
www.gcws.mit.edu
www.create.mit.edu
infiniteseries.mit.edu
mri-rle.mit.edu
5636026810761216-fe1.pantheonsite.io
hsf1.csail.mit.edu
ceepr.mit.edu
ceipostdoc.mit.edu
socialphysics.media.mit.edu
think.mit.edu
hilary.mit.edu
cce.mit.edu
clubsports.mit.edu
ikim.mit.edu
capco-status.polaris.synopsys.com
sdm.mit.edu
msm-dsoos.mit.edu
visor.mit.edu
education.mit.edu
classrooms.mit.edu
terrascope.mit.edu
5638203017003008-fe2.pantheonsite.io
unhangout.media.mit.edu
atlas.mit.edu
www.sloan-hbc.mit.edu
j3.shared.global.fastly.net
cfg2018.csail.mit.edu
ogs.mit.edu
paulbert.media.mit.edu
stat-stage.mit.edu
oc11-jabber-2.mit.edu
j3.shared.global.fastly.net
darts.mit.edu
skullhouse.mit.edu
5636026810761216-fe1.pantheonsite.io
techspace.mit.edu
hkn.mit.edu
create.mit.edu
hecsh1web01.mit.edu
fermi.haystack.mit.edu
securelink.mit.edu
Certificate
The complete raw certificate details for aldy.csail.mit.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEJTCCAw2gAwIBAgISA53bIFOiXfG2FnMA885BL6OeMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMTMwMTI2MzdaFw0yNDAxMTEwMTI2MzZaMB0xGzAZBgNVBAMT EmFsZHkuY3NhaWwubWl0LmVkdTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABJYv EgQAPUK+j/RXVCmgLSmghxAk+4ul3gVbHnjdBPgFyaQHLaWNwHGxIv3F4RL/Os3W nn0C6ojLPeb8A+cSTKijggITMIICDzAOBgNVHQ8BAf8EBAMCB4AwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFAj5 Ur44vhafqNaLrbjWCa8/rs5oMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52L FMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVu Y3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMB0GA1Ud EQQWMBSCEmFsZHkuY3NhaWwubWl0LmVkdTATBgNVHSAEDDAKMAgGBmeBDAECATCC AQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSF NL2kPTBI1/urAAABiybbcoAAAAQDAEcwRQIgMKt9qXzZIjKT4EEyTyfFFQU2fLqH X7GAFuDMQ1fdpZYCIQCEOKA4xBnUpdrdiN6/02ywNOugXNhBWYR6qBJXeSwlpwB1 AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABiybbc3AAAAQDAEYw RAIgIprusD3L/muc6uSRSP2FSfpGPWdWfvUvLJIPwpGR3Y8CICAVOTFzFh5WCj4d lcbKEzTa8Cmclb+bY2ZHhlHTsDDGMA0GCSqGSIb3DQEBCwUAA4IBAQBPrs9F014W i0vkbEN4jLBdSZRDXiV0dxjbSbfp8yHzOGxq726ZnunHYVZpWgRogApztmciiMuG uFhNsiyQ42u1mexXXT5FUY/AH/EvFf1NdQ068Wl93SWEYbunCh4beD/78FM3l9oN gN+3tJ1n3KewLv7t+kcwVk2CEwO6w7OKy4NNf7Qbdzjlnk7n1NCR+qCP2635yYqC zr6nmfwlKFsBYbWg1eRt1IxoZhlHbHcvP9OAsIKYJdKcTpn4if3Oh3uhNOGfp7HK 1LV+yeiS5GvZrUGq8/k+F0YgR61Oo8LGxyl+ayyXWRUo6kBXZCxZIeTDXSS1CSRj Yzho3Pz+gbTP -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEli8SBAA9Qr6P9FdUKaAtKaCHECT7 i6XeBVseeN0E+AXJpActpY3AcbEi/cXhEv86zdaefQLqiMs95vwD5xJMqA== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 315052458182748482141591753834546594816926 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-13 01:26:37 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-11 01:26:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aldy.csail.mit.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.2.1 (ecPublicKey) . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.3.1.7 (prime256v1) . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (520 bits) 0004962f1204003d42be8ff4575429a02d29a0871024fb8ba5de055b1e78dd04f805c9a4072da58dc071b122fdc5e112ff3acdd69e7d02ea88cb3de6fc03e7124ca8 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits) 0780 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 08f952be38be169fa8d68badb8d609af3faece68 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aldy.csail.mit.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b26db72800000040300473045022030ab7da97cd9223293e041324f27c51505367cba875fb18016e0cc4357dda5960221008438a038c419d4a5dadd88debfd36cb034eba05cd84159847aa81257792c25a700750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b26db737000000403004630440220229aeeb03dcbfe6b9ceae49148fd8549fa463d67567ef52f2c920fc29191dd8f02202015393173161e560a3e1d95c6ca1334daf0299c95bf9b6366478651d3b030c6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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