ja3yaq.ampr.org

Issued by R3

About this certificate

This digital certificate with serial number 03:14:c6:43:24:77:14:a5:39:fc:3d:65:e0:25:06:95:8e:6f was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ja3yaq.ampr.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:14:c6:43:24:77:14:a5:39:fc:3d:65:e0:25:06:95:8e:6f
Serial Number (int): 268406040900355730902867403967147189571183
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 2f:b4:f8:0d:37:ed:80:ca:58:0b:16:ec:aa:02:18:20:7c:60:eb:47
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 67:63:e8:44:fe:58:07:26:2a:69:de:82:49:22:a6:b6:f8:7a:4d:e0
Fingerprint (sha256): 04:7a:9a:c9:c3:3e:8e:d0:31:3c:fb:f6:d3:8e:2f:f1:fb:8c:a1:4d:6e:ec:63:2a:e4:20:25:4c:22:5a:97:52

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate ja3yaq.ampr.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ja3yaq.ampr.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ja3yaq.ampr.org

Other certificates including the domain name ampr.org

(limited to 100 certificates)
n1uro.ampr.org
db0gw-i.ampr.org
sp2l.ampr.org
jplarc.ampr.org
f4mzi.ampr.org
ja3yaq.ampr.org
sp2l.ampr.org
db0gw-i.ampr.org
www.n0qbj.ampr.org
mattermost.pi9noz.ampr.org
hosting.va4wan.ampr.org
as15780.ampr.org
www.crarc.ampr.org
www.n0qbj.ampr.org
ja3yaq.ampr.org
f4mzi.ampr.org
www.stagecraft.cx
de.ampr.org
jplarc.ampr.org
f5pql.ampr.org
hoseline.pd0mz.ampr.org
www.stagecraft.cx
www.crarc.ampr.org
jplarc.ampr.org
wiki.ampr.org
sp2l.ampr.org
f4mzi.ampr.org
n1uro.ampr.org
as15780.ampr.org
www.pb0fh.ampr.org
www.ampr.org
ja3yaq.ampr.org
portal.ampr.org
portal.ampr.org
f5pql.ampr.org
de.ampr.org
www.pb0fh.ampr.org
db0gw-i.ampr.org
www.pb0fh.nl
de.ampr.org
pi2shb.ampr.org
sp2l.ampr.org
db0gw-i.ampr.org
ampr.org
bm-lastheard.pi9noz.ampr.org
www.n0qbj.ampr.org
www.pb0fh.ampr.org
wiki.ampr.org
weblog.pe1pqf.ampr.org
f5pql.ampr.org
www.ampr.org
db0gw-i.ampr.org
gw.ampr.org
www.5150fm.net
ncpa.ampr.org
wiki.ampr.org
www.pb0fh.ampr.org
www.oz6bl.dk
www.n0qbj.ampr.org
www.pb0fh.ampr.org
as15780.ampr.org
db0gw-i.ampr.org
portal.ampr.org
www.ampr.org
weblog.pe1pqf.ampr.org
as15780.ampr.org
www.5150fm.net
jplarc.ampr.org
ja3yaq.ampr.org
www.pb0fh.nl
db0gw-i.ampr.org
ampr.org
bfoo.com
ncpa.ampr.org
jplarc.ampr.org
www.pb0fh.nl
serveurperso.flnet.org
gw.ampr.org
ncpa.ampr.org
de.ampr.org
db0gw-i.ampr.org
weblog.pe1pqf.ampr.org
www.ampr.org
mailman.ampr.org
jplarc.ampr.org
f4mzi.ampr.org
portal.ampr.org
ampr.org
f4mzi.ampr.org
weblog.pe1pqf.ampr.org
mailman.ampr.org
www.pa3get.ampr.org
wiki.ampr.org
portal.ampr.org
www.oz6bl.dk
mattermost.pi9noz.ampr.org
sys6.pe1pqf.ampr.org
mattermost.pi9noz.ampr.org
www.ampr.org
de.ampr.org

Certificate

The complete raw certificate details for ja3yaq.ampr.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIE6zCCA9OgAwIBAgISAxTGQyR3FKU5/D1l4CUGlY5vMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDAxMTkxNDA4MzVaFw0yNDA0MTgxNDA4MzRaMBoxGDAWBgNVBAMT
D2phM3lhcS5hbXByLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMDtfRkD0KR8UKUuQ3v+eF11TuJhyfO2YkHv5KSqxOGVnBophXSQE2ZMdqsbQ+rJ
Rxpaih0wVuFG2Wpdvg1WFYHPaLSwnkW7iVyZCFG40SpjQLv8FIZVgx7Hg4sMHdIQ
0EA3G80Lyjv8d6pmL7lRFsNPTqeX8WPlKKY92ZGuPxMBzHBCXkh82Hn3YT3ubl/Y
8L52hA8jVLz4FG2Ew6MXSspNIT+O7sgNG1e7Joq/rFiFDAwRhoPq+9WmFFbhicXr
Cp95NqR94e3VwggcE6a2cJH1ygig2+ndBC3Dwm2pttyT7GiwiMLZoNFUz2cbQUWD
w5Sal4pnophftaZdxVb/fRMCAwEAAaOCAhEwggINMA4GA1UdDwEB/wQEAwIFoDAd
BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV
HQ4EFgQUL7T4DTftgMpYCxbsqgIYIHxg60cwHwYDVR0jBBgwFoAUFC6zF7dYVsuu
UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v
cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y
Zy8wGgYDVR0RBBMwEYIPamEzeWFxLmFtcHIub3JnMBMGA1UdIAQMMAowCAYGZ4EM
AQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAO1N3dT4tuYBOizBbBv5AO2fY
T8P0x70ADS1yb+H61BcAAAGNIkRErwAABAMARzBFAiEAwke9LsZoNhXuL6U7qDIT
MD124BBxuiAvf850YKdC0ZYCIAYqmfB1jTgSU2RbXVtxzDeH2k4B3zHFvCfy2q/W
hx9fAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGNIkRG7AAA
BAMARzBFAiEAknYyHiFEazV/eL03rXnqSUKBpO+99XqJJRwQbw5X/n8CIDU//L4w
aWMJhXjSP/OnOPsE4wefEcF7BdU1orXY8D5/MA0GCSqGSIb3DQEBCwUAA4IBAQA6
av/F+sae/r8gn6Qv/Q3eHE0Cn8GGgDRH1g4id9Kk+OG4hI+va53G4sFdf72YSMBB
5uGxbsRVi6YZe4GPOu+XNyTM7KCjqYFy4jtEUoXx1aUB7DwLgWlHHB2XLh9o8rZN
gAIHR44OVSlGOEnUu86B3cS4k14RXRe1+vCCfGTsWuWsur8/ac0Fac2f0s6Hqgty
Ul/JQ+/u+GMkWyaoRDk2rU+js5mIsWqRpsyLMpGwykOuuCcatljDcMC6mRQQ9ZaZ
tUGSL/knSaTx9Tmta6bny2Afjuf0UA6/eyWmwuJi00FfoqIL9fIuKwdGC5Ngncpa
VEK4NpghKjy5KdIS0zY+
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwO19GQPQpHxQpS5De/54
XXVO4mHJ87ZiQe/kpKrE4ZWcGimFdJATZkx2qxtD6slHGlqKHTBW4UbZal2+DVYV
gc9otLCeRbuJXJkIUbjRKmNAu/wUhlWDHseDiwwd0hDQQDcbzQvKO/x3qmYvuVEW
w09Op5fxY+Uopj3Zka4/EwHMcEJeSHzYefdhPe5uX9jwvnaEDyNUvPgUbYTDoxdK
yk0hP47uyA0bV7smir+sWIUMDBGGg+r71aYUVuGJxesKn3k2pH3h7dXCCBwTprZw
kfXKCKDb6d0ELcPCbam23JPsaLCIwtmg0VTPZxtBRYPDlJqXimeimF+1pl3FVv99
EwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 268406040900355730902867403967147189571183
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-19 14:08:35 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-18 14:08:34 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ja3yaq.ampr.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24354864577932864453279315557126456076237912086924941439557588731162903677616254840251919243709545725624686248777797715047350122732446541866796429567267011545752759386944266918891599744448588909825944780154916580106593749338121287148831566166974808713353198559372525009088319459096927296681917258993125494081633251397082573913382625861665974018155775660955989097112354135317966321976661343048107015798710986900719288771750568840156709301416062662319683755167057914357169011465303316015985408499873962005102551013205199940796444914046272556625333787337188023977097122155101583703054398027331097506562183316467456376083
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							2fb4f80d37ed80ca580b16ecaa0218207c60eb47
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ja3yaq.ampr.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d224444af0000040300473045022100c247bd2ec6683615ee2fa53ba83213303d76e01071ba202f7fce7460a742d1960220062a99f0758d381253645b5d5b71cc3787da4e01df31c5bc27f2daafd6871f5f00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d224446ec00000403004730450221009276321e21446b357f78bd37ad79ea494281a4efbdf57a89251c106f0e57fe7f0220353ffcbe306963098578d23ff3a738fb04e3079f11c17b05d535a2b5d8f03e7f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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