iaeachallenge.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:ef:90:9e:79:74:ae:0c:2c:01:5d:18:ea:06:b4:27:2b:d7 was issued on by Let's Encrypt.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=iaeachallenge.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:ef:90:9e:79:74:ae:0c:2c:01:5d:18:ea:06:b4:27:2b:d7
Serial Number (int): 342856575167097603096216499954165268032471
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 27:4c:47:c9:fc:4d:ac:f2:cf:b8:ce:ba:49:29:ca:04:98:ec:fb:94
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 2f:ea:a2:71:02:e5:95:5c:f6:7f:80:16:f1:4b:cb:e0:a9:44:b3:18
Fingerprint (sha256): 02:a3:d4:d2:6b:30:4b:ea:29:e4:e4:b1:fa:5c:f8:b1:9d:93:48:12:af:6f:00:0c:27:0a:6e:e1:26:3a:73:de

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org/

Check the revocation status for certificate iaeachallenge.org

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for iaeachallenge.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

challenge.iaea.org
iaeachallenge.org
www.iaeachallenge.org

Other certificates including the domain name iaeachallenge.org

(limited to 100 certificates)
iaeachallenge.org
iaeachallenge.org
iaeachallenge.org
iaeachallenge.org
iaeachallenge.org
iaeachallenge.org
iaeachallenge.org
iaeachallenge.org
iaeachallenge.org
iaeachallenge.org

Certificate

The complete raw certificate details for iaeachallenge.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGMTCCBRmgAwIBAgISA++Qnnl0rgwsAV0Y6ga0JyvXMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzA1MjQwNzU5MDBaFw0x
NzA4MjIwNzU5MDBaMBwxGjAYBgNVBAMTEWlhZWFjaGFsbGVuZ2Uub3JnMIICIjAN
BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAy0RjViAbwU1oIKNcg83T18UPl1xS
BsDm/cNOIc4YSJH8EUQsnA+bpfmEsFjOhpbaTnS93x0dlWNxPZIa6p6CDljxPFzp
esy/+ZkZ5a1kWeMQJAFDM+IerF/oZWBSZiqlH2zO+AkgQvwnU2oGQ06PUT+A+R/d
RWeRZH7pclyj38opGC3WExeeGWVle2itXmHxYfIemUG7fQyI3TAlKqdWirQfp0Pr
06Fh1ni8+QKUPcnKzY+1QRiUEUhzO9eH+cFAJMFKWTEAwBXitW3LsYpgCd0eq4u9
WNVUDNgduJkSrkV3pRQqTU92hT1BGE35JaMR/t9NuCNog1muRrWxbCyb/8MhktJJ
HbPSfbCrwQhH5O2fxE7bJpU0DzOA8Iue1TV/p+cuEZgQ/pfgoBKdqdTRujRcYjSg
SgaupWTL0cF7VB6uYFCjL9VaoZknGf6napsO2gc0KgWg8uHjMSwoRNpUoOi5R2bQ
n9Lvv38Amdf6nVe49CAq3oMb65qJDkWurXNx+wfPXUzVKovjVd9cnpsQgt3cL7pq
w0+QK9v/MNGV7yw+UQgI+3fPk59SGknn1vI80xfCPEOCJRdCTjqIGMi5uzJKVY4D
Ddwqle4/b7ufx1SNl8SbThUiExNGOsAtmrf+zCo6ZQyFKvOi2uUPdvaoKwFzP7sK
oXYEfzZF0pN5VZsCAwEAAaOCAj0wggI5MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE
FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU
J0xHyfxNrPLPuM66SSnKBJjs+5QwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl
7/Oo7KEwcAYIKwYBBQUHAQEEZDBiMC8GCCsGAQUFBzABhiNodHRwOi8vb2NzcC5p
bnQteDMubGV0c2VuY3J5cHQub3JnLzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu
aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wRwYDVR0RBEAwPoISY2hhbGxlbmdlLmlh
ZWEub3JnghFpYWVhY2hhbGxlbmdlLm9yZ4IVd3d3LmlhZWFjaGFsbGVuZ2Uub3Jn
MIH+BgNVHSAEgfYwgfMwCAYGZ4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggr
BgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwIC
MIGeDIGbVGhpcyBDZXJ0aWZpY2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBi
eSBSZWx5aW5nIFBhcnRpZXMgYW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRo
ZSBDZXJ0aWZpY2F0ZSBQb2xpY3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlw
dC5vcmcvcmVwb3NpdG9yeS8wDQYJKoZIhvcNAQELBQADggEBAA8h8pDhj9ZUUhws
hrIXx0YKxzHkqXTDgUJOq7ivNCUaGuwVjjIaygMvApT+ZMk+AvmIiF5sm25hE4Bw
rqe8mjGPi/Z0IZOz7qrzFlsH0yNdYVl9HBI6qZEaTmBcS7MygDDrn6TNLiLe7HoI
ZtK6p5ITyN8vSutkO5LOU3LE+Ef2oxuHCMzoRKzIq7Ib7pqQcgKds4Qu5uWM6MF8
1PuiIJLhdDVoY3HJIMDdCs1YRI+AIi6acp4Wgn/XmefTE/yyjeTUADa9emOLG0S1
ZrVJlgofQA7gaeoXof9QdWVJxrDgG647aSCrkqBxlJgIChE/i9SxP/MYzfaSq1bm
jD4eU7w=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAy0RjViAbwU1oIKNcg83T
18UPl1xSBsDm/cNOIc4YSJH8EUQsnA+bpfmEsFjOhpbaTnS93x0dlWNxPZIa6p6C
DljxPFzpesy/+ZkZ5a1kWeMQJAFDM+IerF/oZWBSZiqlH2zO+AkgQvwnU2oGQ06P
UT+A+R/dRWeRZH7pclyj38opGC3WExeeGWVle2itXmHxYfIemUG7fQyI3TAlKqdW
irQfp0Pr06Fh1ni8+QKUPcnKzY+1QRiUEUhzO9eH+cFAJMFKWTEAwBXitW3LsYpg
Cd0eq4u9WNVUDNgduJkSrkV3pRQqTU92hT1BGE35JaMR/t9NuCNog1muRrWxbCyb
/8MhktJJHbPSfbCrwQhH5O2fxE7bJpU0DzOA8Iue1TV/p+cuEZgQ/pfgoBKdqdTR
ujRcYjSgSgaupWTL0cF7VB6uYFCjL9VaoZknGf6napsO2gc0KgWg8uHjMSwoRNpU
oOi5R2bQn9Lvv38Amdf6nVe49CAq3oMb65qJDkWurXNx+wfPXUzVKovjVd9cnpsQ
gt3cL7pqw0+QK9v/MNGV7yw+UQgI+3fPk59SGknn1vI80xfCPEOCJRdCTjqIGMi5
uzJKVY4DDdwqle4/b7ufx1SNl8SbThUiExNGOsAtmrf+zCo6ZQyFKvOi2uUPdvao
KwFzP7sKoXYEfzZF0pN5VZsCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 342856575167097603096216499954165268032471
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-24 07:59:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-22 07:59:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'iaeachallenge.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 829257584998805690347584983474313349525672709492584790124040930786248484414086556042592110427907708068937695182909270183465483028543548203174652687578860842595540058892937318206764418556208455017325122843877615104553534348005884707051293244289141157487535485549314849649948381069611710774685777903563531489136226478567580376695670621044172545455149527392782909790063098043595890729041309559821133721850197790520200134529767265212232245745518977008399987281513285219673764182061194007811659543001765911492811625504369292555025001190825588657002677155750925515442652533477828783554625153194857774584073549360018018839583383610971364316162088136837563485504850866110337437175252901456789320730174070090380712944124519481731372444428887141578253702554578127654951470751176529962122196217095787905225781209013061083910520935515358325267657705489392480124568281720531068355958483552838748792753264570960948831322003823345780965449544643680817828359460901499709378559106705206661683506035782990265232070771773792934798703585274923965704821337274103843281918176815750210729345010616880762747268440024648415808065216111215905527314877657847286936762572864155208744073775019522994015872691721309382974280450406914101574906250712563731293361563
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							274c47c9fc4dacf2cfb8ceba4929ca0498ecfb94
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (64 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'challenge.iaea.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iaeachallenge.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iaeachallenge.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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