www.northernart.ac.uk
Issued by R3
About this certificate
This digital certificate with serial number 03:85:90:8a:16:49:ee:04:07:d3:f0:9e:19:2f:72:69:e1:04 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.northernart.ac.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:85:90:8a:16:49:ee:04:07:d3:f0:9e:19:2f:72:69:e1:04Serial Number (int): 306786538416195390721296377980185622470916
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 42:c2:fe:4b:26:14:04:e2:2d:c9:16:a1:1e:23:d2:14:e8:30:9b:a0
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f0:4c:53:fe:27:f7:64:47:f9:1e:a5:09:f3:c5:64:79:e5:4f:69:2f
Fingerprint (sha256): 01:ac:01:2b:4e:30:c1:62:2e:9c:16:43:39:4c:49:8f:db:2c:6d:26:33:e5:37:17:67:50:fa:51:ba:4b:19:2c
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.northernart.ac.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.northernart.ac.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
northernart.ac.uk
www.northernart.ac.uk
www.northernart.ac.uk
Other certificates including the domain name northernart.ac.uk
(limited to 100 certificates)
www.northernart.ac.uk
*.northernart.ac.uk
moodle.northernart.ac.uk
moodle.northernart.ac.uk
moodle.northernart.ac.uk
northernart.ac.uk
adfs.northernart.ac.uk
moodle.northernart.ac.uk
moodle.northernart.ac.uk
adfs.northernart.ac.uk
northernart.ac.uk
northernart.ac.uk
northernart.ac.uk
northernart.ac.uk
northernart.ac.uk
northernart.ac.uk
northernart.ac.uk
adfs.northernart.ac.uk
moodle.northernart.ac.uk
moodle.northernart.ac.uk
moodle.northernart.ac.uk
*.northernart.ac.uk
northernart.ac.uk
moodle.northernart.ac.uk
moodle.northernart.ac.uk
northernart.ac.uk
moodle.northernart.ac.uk
*.northernart.ac.uk
moodle.northernart.ac.uk
moodle.northernart.ac.uk
moodle.northernart.ac.uk
northernart.ac.uk
adfs.northernart.ac.uk
moodle.northernart.ac.uk
moodle.northernart.ac.uk
adfs.northernart.ac.uk
northernart.ac.uk
northernart.ac.uk
northernart.ac.uk
northernart.ac.uk
northernart.ac.uk
northernart.ac.uk
northernart.ac.uk
adfs.northernart.ac.uk
moodle.northernart.ac.uk
moodle.northernart.ac.uk
moodle.northernart.ac.uk
*.northernart.ac.uk
northernart.ac.uk
moodle.northernart.ac.uk
moodle.northernart.ac.uk
northernart.ac.uk
moodle.northernart.ac.uk
Certificate
The complete raw certificate details for www.northernart.ac.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFCzCCA/OgAwIBAgISA4WQihZJ7gQH0/CeGS9yaeEEMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjgwMDIxMTdaFw0yNDA2MjYwMDIxMTZaMCAxHjAcBgNVBAMT FXd3dy5ub3J0aGVybmFydC5hYy51azCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBANVZoBYlk8qtNUGc8xnwgsvi2Nku/iSEQkR7mXYskzyUdxU+3tFLb0ab K38pbcWAr9CFBZtvXRx1/KDXMrEihEWPvnD27P6A+dMT/XRbOu3pctQa+ouUqB/7 FAeyzPIL3rIvm+OuTWjfuTLD/Ub7f6yGjHjsACyRsn1frvyOK2Ouo04ysf6WqwNi jRqnT2S+YEVEarrnLNudL/+UKBSbMJ5ut/Su1WY0RkWcASkSyeu/siHFHTh54Nzn 1BMIJvtHHF98bpfrym34WyhpxG9GbFHrMkfGwR0/uGIgO53y3XCo/opG/JySf2+C UzhiYC9GDz+OweHo9CgbAA0j8cBKsa0CAwEAAaOCAiswggInMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIw ADAdBgNVHQ4EFgQUQsL+SyYUBOItyRahHiPSFOgwm6AwHwYDVR0jBBgwFoAUFC6z F7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVo dHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxl bmNyLm9yZy8wMwYDVR0RBCwwKoIRbm9ydGhlcm5hcnQuYWMudWuCFXd3dy5ub3J0 aGVybmFydC5hYy51azATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkC BAIEgfYEgfMA8QB3AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAAB joKlpSMAAAQDAEgwRgIhAPbjc+akA1dT6TF+ZCJ+qUNjINdcOVeB71jitbpE1546 AiEAjpQvxeGTkYVSVwR042ULYEuSa9GdTOAy9BVRZLLP59sAdgDuzdBk1dsazsVc t520zROiModGfLzs3sNRSFlGcR+1mwAAAY6CpaTwAAAEAwBHMEUCIC7Vze4f3uPS jJGabGURKwwMdu5VhNmoJhztkBk33YHkAiEAiL2ylnRlComaYNP2SLwgO843Yx9L yAY5kN6b5u9gpvQwDQYJKoZIhvcNAQELBQADggEBAAx3CAhQE68LbuVv/zEs9wix GlBZMs1TSqVhR5QYrJkd/pImRSI4JcIdYbeK/wtkh+0cYYj/vZ8ovimuYLYM7hDd l24zmE/UxGMe979pzIEcYzetdf9pHYfgWYpGsKrNgPyU8USa0AloEKZYaFtvFQNt F8fEbM6dGNzEERsAdZ55CgawxQzcwLk7DRHXCyT0f5BtxzZw424UciA8n8KBJ0Bi lX2Rk+EnF18esCuzok6gLyQ/c10ILLRgkGCVoV7Gzvktnq1EAtHUdrGg6udqzlyJ Whl5F+aO711MZvOxVJwwMBYaDDugyUcCbybnVPRN3eyb2Prcc2ktX+zKp8QhIe4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1VmgFiWTyq01QZzzGfCC y+LY2S7+JIRCRHuZdiyTPJR3FT7e0UtvRpsrfyltxYCv0IUFm29dHHX8oNcysSKE RY++cPbs/oD50xP9dFs67ely1Br6i5SoH/sUB7LM8gvesi+b465NaN+5MsP9Rvt/ rIaMeOwALJGyfV+u/I4rY66jTjKx/parA2KNGqdPZL5gRURquucs250v/5QoFJsw nm639K7VZjRGRZwBKRLJ67+yIcUdOHng3OfUEwgm+0ccX3xul+vKbfhbKGnEb0Zs UesyR8bBHT+4YiA7nfLdcKj+ikb8nJJ/b4JTOGJgL0YPP47B4ej0KBsADSPxwEqx rQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 306786538416195390721296377980185622470916 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-28 00:21:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-26 00:21:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.northernart.ac.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26932954859109119356631587683630430203770133529291002112233873990052039211511856077163469513016394402802363446800315108674434402397264373969432385339811982758095486691123650189486452985391440629326341448045757388777226853905252108123524116332394167340231813628702848197181995814291776850188447540353412461401777718790143499216406647410221619358197199478961777347936264018356142076449286496662111739792369006381783489121394568100882127833646956591010140600436260239021564759043196549217831238384787380701881564048273486315566165051374906977590849971429798782417757288535998901263505582304388207098253855586318723756461 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 42c2fe4b261404e22dc916a11e23d214e8309ba0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'northernart.ac.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.northernart.ac.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e82a5a5230000040300483046022100f6e373e6a4035753e9317e64227ea9436320d75c395781ef58e2b5ba44d79e3a0221008e942fc5e193918552570474e3650b604b926bd19d4ce032f4155164b2cfe7db007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e82a5a4f0000004030047304502202ed5cdee1fdee3d28c919a6c65112b0c0c76ee5584d9a8261ced901937dd81e402210088bdb29674650a899a60d3f648bc203bce37631f4bc8063990de9be6ef60a6f4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 000c7708085013af0b6ee56fff312cf708b11a505932cd534aa561479418ac991dfe922645223825c21d61b78aff0b6487ed1c6188ffbd9f28be29ae60b60cee10dd976e33984fd4c4631ef7bf69cc811c6337ad75ff691d87e0598a46b0aacd80fc94f1449ad0096810a658685b6f15036d17c7c46cce9d18dcc4111b00759e790a06b0c50cdcc0b93b0d11d70b24f47f906dc73670e36e1472203c9fc281274062957d9193e127175f1eb02bb3a24ea02f243f735d082cb460906095a15ec6cef92d9ead4402d1d476b1a0eae76ace5c895a197917e68eef5d4c66f3b1549c3030161a0c3ba0c947026f26e754f44dddec9bd8fadc73692d5feccaa7c42121ee