4h.ansci.cornell.edu
Issued by R3
About this certificate
This digital certificate with serial number 03:57:80:52:71:c4:34:9a:35:5a:07:8d:e1:6d:02:1a:23:7c was issued on by Let's Encrypt.
With 71 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=4h.ansci.cornell.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:57:80:52:71:c4:34:9a:35:5a:07:8d:e1:6d:02:1a:23:7cSerial Number (int): 291111992976662540061250189727130644521852
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: fa:a7:30:22:60:b8:bb:18:b0:b5:6f:68:a3:cc:39:72:13:cb:22:14
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 9b:a5:87:6e:d2:98:17:5c:a2:fc:a5:60:26:30:f0:b4:3d:35:46:92
Fingerprint (sha256): 0d:7e:2f:a0:ee:be:1b:44:0e:e5:96:bd:98:24:22:96:fe:61:8b:78:31:02:30:22:48:04:a9:30:b9:04:f5:40
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate 4h.ansci.cornell.edu
71
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 4h.ansci.cornell.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
4h.ansci.cornell.edu
aadcawarenessacademy.com
agents.fridayhealthplans.com
astralpower.com
beyondbreakthrough.caltech.edu
breeding.rutgers.edu
ca.devca.eatsmart.net
cf-ns4c-cms.s4c.cymru
clinicaltrials.targetovariancancer.org.uk
colektor.gsm.cornell.edu
community.levelaccess.com
confiscated.sites.ps-pantheon.com
countweb.med.harvard.edu
dev-mtc-www.metrotech.edu
dev.mville.edu
dev.portal.dexis.com
dev.raflearning.org
developer-test-roadsideapi.allstate.com
developerportal.northeastern.edu
digitalscholarship.lsa.umich.edu
domaintest.cals.cornell.edu
domaintest.cce.cornell.edu
domino.gsm.cornell.edu
funeral.elitelearning.com
goverment.krtv.com
h20.stanford.edu
healthy-aging.advanceweb.com
id.multidev.gsm.cornell.edu
info.francistuttle.edu
layer.gsm.cornell.edu
legacy.centeronaddiction.org
live.pantheon.theactivetimes.com
lucky.gsm.cornell.edu
menaconstruction.meed.com
messaging-dev.stanford.edu
mnr.umbro.com
multidev.gsm.cornell.edu
newstudentguide-staging.sfsu.edu
nwkevents.accessintel.com
old.atr.org
oldsite.thedailymeal.com
origin-www.nobelbiocare.com
ottomanhistorians.fas.harvard.edu
pantheon01.slac.stanford.edu
pantheon02.slac.stanford.edu
pantheon04.slac.stanford.edu
player.krtv.com
preprod.entomology.cals.cornell.edu
preprod.foodsafety.foodscience.cornell.edu
preprod.nyfoodsafety.cals.cornell.edu
preprod.producesafetyalliance.cornell.edu
profile-updates-agreement.healthgrades.com
redesign.umbro.com
search.nscee.edu
services.natera.com
smaxwin.advanceweb.com
sustainable-farming.rutgers.edu
test.environment.cornell.edu
test.rbwm.gov.uk
testparks.indy.gov
vonza.gbci.org
vonza383.gbci.org
vonzaplay.gbci.org
www-stage.cs.sunysb.edu
www.catalyst.harvard.edu
www.china.umd.edu
www.orientation.smhs.gwu.edu
www.ottomanhistorians.fas.harvard.edu
www.raflearning.org
www.test1.csiamerica.com
wwwnews.ucf.edu
aadcawarenessacademy.com
agents.fridayhealthplans.com
astralpower.com
beyondbreakthrough.caltech.edu
breeding.rutgers.edu
ca.devca.eatsmart.net
cf-ns4c-cms.s4c.cymru
clinicaltrials.targetovariancancer.org.uk
colektor.gsm.cornell.edu
community.levelaccess.com
confiscated.sites.ps-pantheon.com
countweb.med.harvard.edu
dev-mtc-www.metrotech.edu
dev.mville.edu
dev.portal.dexis.com
dev.raflearning.org
developer-test-roadsideapi.allstate.com
developerportal.northeastern.edu
digitalscholarship.lsa.umich.edu
domaintest.cals.cornell.edu
domaintest.cce.cornell.edu
domino.gsm.cornell.edu
funeral.elitelearning.com
goverment.krtv.com
h20.stanford.edu
healthy-aging.advanceweb.com
id.multidev.gsm.cornell.edu
info.francistuttle.edu
layer.gsm.cornell.edu
legacy.centeronaddiction.org
live.pantheon.theactivetimes.com
lucky.gsm.cornell.edu
menaconstruction.meed.com
messaging-dev.stanford.edu
mnr.umbro.com
multidev.gsm.cornell.edu
newstudentguide-staging.sfsu.edu
nwkevents.accessintel.com
old.atr.org
oldsite.thedailymeal.com
origin-www.nobelbiocare.com
ottomanhistorians.fas.harvard.edu
pantheon01.slac.stanford.edu
pantheon02.slac.stanford.edu
pantheon04.slac.stanford.edu
player.krtv.com
preprod.entomology.cals.cornell.edu
preprod.foodsafety.foodscience.cornell.edu
preprod.nyfoodsafety.cals.cornell.edu
preprod.producesafetyalliance.cornell.edu
profile-updates-agreement.healthgrades.com
redesign.umbro.com
search.nscee.edu
services.natera.com
smaxwin.advanceweb.com
sustainable-farming.rutgers.edu
test.environment.cornell.edu
test.rbwm.gov.uk
testparks.indy.gov
vonza.gbci.org
vonza383.gbci.org
vonzaplay.gbci.org
www-stage.cs.sunysb.edu
www.catalyst.harvard.edu
www.china.umd.edu
www.orientation.smhs.gwu.edu
www.ottomanhistorians.fas.harvard.edu
www.raflearning.org
www.test1.csiamerica.com
wwwnews.ucf.edu
Other certificates including the domain name cornell.edu
(limited to 100 certificates)
usda-int.library.cornell.edu
island.cnf.cornell.edu
dbme.dyson.cornell.edu
www.llmoverview.law.cornell.edu
dfbs.cornell.edu
engr-cms-multi-ssl.cit.cornell.edu
staticweb.ssit.scl.cornell.edu
atstaticapps.cit.cornell.edu
ubsc.cornell.edu
newstudents.cornell.edu
test-web-lws.edu.help
www.nys4h.cce.cornell.edu
5769623379116032-fe2.pantheonsite.io
carpepm.almonds.com
5693048138760192-fe2.pantheonsite.io
*.givegab.com
dns-vetting1c.map.fastly.net
5686812383117312-fe3.pantheonsite.io
allianceforscience.cornell.edu
scholarship.sha.cornell.edu
vertere.ehs.cornell.edu
llmoverview.law.cornell.edu
5764748591235072-fe2.pantheonsite.io
5747286126624768-fe3.pantheonsite.io
manage.esign.cornell.edu
fs-lb-1.fs.cornell.edu
it.uahs.arizona.edu
www.pryde.bctr.cornell.edu
cluster3.technolutions.net
lingual.phonetics.cornell.edu
boomresume.cis.cornell.edu
apl.cs.cornell.edu
annualreport.cals.cornell.edu
crane.chem.cornell.edu
badwall.cac.cornell.edu
resumebook.acsu.cornell.edu
scabusa.ag.cornell.edu
5727217287954432-fe1.pantheonsite.io
3cpg.cornell.edu
ucdc.edu
cluster3.technolutions.net
classcouncil.cornell.edu
5693048138760192-fe2.pantheonsite.io
5202656289095680-fe4.pantheonsite.io
kanbur.aem.cornell.edu
cals.cornell.edu
5691420614590464-fe3.pantheonsite.io
aws-110-042.internal.library.cornell.edu
5709068098338816-fe3.pantheonsite.io
5636647567753216-fe1.pantheonsite.io
hdil.human.cornell.edu
nartc.fcm.arizona.edu
sf-lib-lms-018.serverfarm.cornell.edu
legacy.ece.cornell.edu
verne.soc.cornell.edu
blog.johnson.cornell.edu
5730774057746432-fe4.pantheonsite.io
5654672874405888-fe3.pantheonsite.io
avedon.med.cornell.edu
calendar.sdzsafaripark.org
5763210187636736-fe2.pantheonsite.io
engineering.cornell.edu
s001.med.cornell.edu
puppet.coecis.cornell.edu
sullivan.cce.cornell.edu
coffeabase.org
5707324073181184-fe2.pantheonsite.io
5700866052980736-fe2.pantheonsite.io
bearinmind.eclipsco.org
gunalert02.ornith.cornell.edu
3fadmin.govdelivery.com
d2.shared.global.fastly.net
tier.dyson.cornell.edu
newfit.cit.cornell.edu
5658962204557312-fe4.pantheonsite.io
5736907271045120-fe1.pantheonsite.io
library.cornell.edu
pryde.bctr.cornell.edu
lassp.cornell.edu
newsletter.research.cornell.edu
5686536431468544-fe1.pantheonsite.io
streetfilms.org
5763210187636736-fe2.pantheonsite.io
5659822271758336-fe3.pantheonsite.io
5654961308303360-fe2.pantheonsite.io
charon.ece.cornell.edu
www.cmm.cornell.edu
delib-cal.qatar-weill.cornell.edu
urmc.cs.cornell.edu
calscomlabs-multi-ssl.cit.cornell.edu
webeditor.dyson.cornell.edu
5769623379116032-fe2.pantheonsite.io
dns-vetting1g.map.fastly.net
5736907271045120-fe1.pantheonsite.io
5740240702537728-fe2.pantheonsite.io
hotelie.sha.cornell.edu
courses1.cit.cornell.edu
5637369860456448-fe1.pantheonsite.io
www.systems.cs.cornell.edu
forms-dev.serverfarm.cornell.edu
island.cnf.cornell.edu
dbme.dyson.cornell.edu
www.llmoverview.law.cornell.edu
dfbs.cornell.edu
engr-cms-multi-ssl.cit.cornell.edu
staticweb.ssit.scl.cornell.edu
atstaticapps.cit.cornell.edu
ubsc.cornell.edu
newstudents.cornell.edu
test-web-lws.edu.help
www.nys4h.cce.cornell.edu
5769623379116032-fe2.pantheonsite.io
carpepm.almonds.com
5693048138760192-fe2.pantheonsite.io
*.givegab.com
dns-vetting1c.map.fastly.net
5686812383117312-fe3.pantheonsite.io
allianceforscience.cornell.edu
scholarship.sha.cornell.edu
vertere.ehs.cornell.edu
llmoverview.law.cornell.edu
5764748591235072-fe2.pantheonsite.io
5747286126624768-fe3.pantheonsite.io
manage.esign.cornell.edu
fs-lb-1.fs.cornell.edu
it.uahs.arizona.edu
www.pryde.bctr.cornell.edu
cluster3.technolutions.net
lingual.phonetics.cornell.edu
boomresume.cis.cornell.edu
apl.cs.cornell.edu
annualreport.cals.cornell.edu
crane.chem.cornell.edu
badwall.cac.cornell.edu
resumebook.acsu.cornell.edu
scabusa.ag.cornell.edu
5727217287954432-fe1.pantheonsite.io
3cpg.cornell.edu
ucdc.edu
cluster3.technolutions.net
classcouncil.cornell.edu
5693048138760192-fe2.pantheonsite.io
5202656289095680-fe4.pantheonsite.io
kanbur.aem.cornell.edu
cals.cornell.edu
5691420614590464-fe3.pantheonsite.io
aws-110-042.internal.library.cornell.edu
5709068098338816-fe3.pantheonsite.io
5636647567753216-fe1.pantheonsite.io
hdil.human.cornell.edu
nartc.fcm.arizona.edu
sf-lib-lms-018.serverfarm.cornell.edu
legacy.ece.cornell.edu
verne.soc.cornell.edu
blog.johnson.cornell.edu
5730774057746432-fe4.pantheonsite.io
5654672874405888-fe3.pantheonsite.io
avedon.med.cornell.edu
calendar.sdzsafaripark.org
5763210187636736-fe2.pantheonsite.io
engineering.cornell.edu
s001.med.cornell.edu
puppet.coecis.cornell.edu
sullivan.cce.cornell.edu
coffeabase.org
5707324073181184-fe2.pantheonsite.io
5700866052980736-fe2.pantheonsite.io
bearinmind.eclipsco.org
gunalert02.ornith.cornell.edu
3fadmin.govdelivery.com
d2.shared.global.fastly.net
tier.dyson.cornell.edu
newfit.cit.cornell.edu
5658962204557312-fe4.pantheonsite.io
5736907271045120-fe1.pantheonsite.io
library.cornell.edu
pryde.bctr.cornell.edu
lassp.cornell.edu
newsletter.research.cornell.edu
5686536431468544-fe1.pantheonsite.io
streetfilms.org
5763210187636736-fe2.pantheonsite.io
5659822271758336-fe3.pantheonsite.io
5654961308303360-fe2.pantheonsite.io
charon.ece.cornell.edu
www.cmm.cornell.edu
delib-cal.qatar-weill.cornell.edu
urmc.cs.cornell.edu
calscomlabs-multi-ssl.cit.cornell.edu
webeditor.dyson.cornell.edu
5769623379116032-fe2.pantheonsite.io
dns-vetting1g.map.fastly.net
5736907271045120-fe1.pantheonsite.io
5740240702537728-fe2.pantheonsite.io
hotelie.sha.cornell.edu
courses1.cit.cornell.edu
5637369860456448-fe1.pantheonsite.io
www.systems.cs.cornell.edu
forms-dev.serverfarm.cornell.edu
Certificate
The complete raw certificate details for 4h.ansci.cornell.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIMUzCCCzugAwIBAgISA1eAUnHENJo1WgeN4W0CGiN8MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMjcwMTEyNTJaFw0yNDA0MjYwMTEyNTFaMB8xHTAbBgNVBAMT FDRoLmFuc2NpLmNvcm5lbGwuZWR1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAwHSnemv0wZzcXAgMkBQXztwjNHFrHpIs5axrzzrdlw7T+GZAQLPiUvSZ mF3ScRQ1Ni77M7wvvj8WKgEm6kmkIGsqEr1NwVO/9M+bfL4ePy1ywV87Wx7ZOVVK 4JWJMqctOtWZynJz3jX67Nda0+9B++4/N4TAaLpUnxu83mMaTL+l/8yYin0iItxx Z3YRMvL8oMO9BWqFighCSszfIpRufGHjpEeodJZe7aLi7DcePvwyXZWi/al1YQeC dFkrpkcgk8myhP/APzQjk3bdKAlwKQDdvQR4Y3b+bMJVibDWVrVqjLz+ybpaAJiO jKOmp9NDC6LZPJujVsE+mvYR8y2ZVQIDAQABo4IJdDCCCXAwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBT6pzAiYLi7GLC1b2ijzDlyE8siFDAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzCCB3sGA1UdEQSCB3IwggdughQ0aC5hbnNjaS5jb3JuZWxsLmVkdYIY YWFkY2F3YXJlbmVzc2FjYWRlbXkuY29tghxhZ2VudHMuZnJpZGF5aGVhbHRocGxh bnMuY29tgg9hc3RyYWxwb3dlci5jb22CHmJleW9uZGJyZWFrdGhyb3VnaC5jYWx0 ZWNoLmVkdYIUYnJlZWRpbmcucnV0Z2Vycy5lZHWCFWNhLmRldmNhLmVhdHNtYXJ0 Lm5ldIIVY2YtbnM0Yy1jbXMuczRjLmN5bXJ1giljbGluaWNhbHRyaWFscy50YXJn ZXRvdmFyaWFuY2FuY2VyLm9yZy51a4IYY29sZWt0b3IuZ3NtLmNvcm5lbGwuZWR1 ghljb21tdW5pdHkubGV2ZWxhY2Nlc3MuY29tgiFjb25maXNjYXRlZC5zaXRlcy5w cy1wYW50aGVvbi5jb22CGGNvdW50d2ViLm1lZC5oYXJ2YXJkLmVkdYIZZGV2LW10 Yy13d3cubWV0cm90ZWNoLmVkdYIOZGV2Lm12aWxsZS5lZHWCFGRldi5wb3J0YWwu ZGV4aXMuY29tghNkZXYucmFmbGVhcm5pbmcub3JngidkZXZlbG9wZXItdGVzdC1y b2Fkc2lkZWFwaS5hbGxzdGF0ZS5jb22CIGRldmVsb3BlcnBvcnRhbC5ub3J0aGVh c3Rlcm4uZWR1giBkaWdpdGFsc2Nob2xhcnNoaXAubHNhLnVtaWNoLmVkdYIbZG9t YWludGVzdC5jYWxzLmNvcm5lbGwuZWR1ghpkb21haW50ZXN0LmNjZS5jb3JuZWxs LmVkdYIWZG9taW5vLmdzbS5jb3JuZWxsLmVkdYIZZnVuZXJhbC5lbGl0ZWxlYXJu aW5nLmNvbYISZ292ZXJtZW50LmtydHYuY29tghBoMjAuc3RhbmZvcmQuZWR1ghxo ZWFsdGh5LWFnaW5nLmFkdmFuY2V3ZWIuY29tghtpZC5tdWx0aWRldi5nc20uY29y bmVsbC5lZHWCFmluZm8uZnJhbmNpc3R1dHRsZS5lZHWCFWxheWVyLmdzbS5jb3Ju ZWxsLmVkdYIcbGVnYWN5LmNlbnRlcm9uYWRkaWN0aW9uLm9yZ4IgbGl2ZS5wYW50 aGVvbi50aGVhY3RpdmV0aW1lcy5jb22CFWx1Y2t5LmdzbS5jb3JuZWxsLmVkdYIZ bWVuYWNvbnN0cnVjdGlvbi5tZWVkLmNvbYIabWVzc2FnaW5nLWRldi5zdGFuZm9y ZC5lZHWCDW1uci51bWJyby5jb22CGG11bHRpZGV2LmdzbS5jb3JuZWxsLmVkdYIg bmV3c3R1ZGVudGd1aWRlLXN0YWdpbmcuc2ZzdS5lZHWCGW53a2V2ZW50cy5hY2Nl c3NpbnRlbC5jb22CC29sZC5hdHIub3JnghhvbGRzaXRlLnRoZWRhaWx5bWVhbC5j b22CG29yaWdpbi13d3cubm9iZWxiaW9jYXJlLmNvbYIhb3R0b21hbmhpc3Rvcmlh bnMuZmFzLmhhcnZhcmQuZWR1ghxwYW50aGVvbjAxLnNsYWMuc3RhbmZvcmQuZWR1 ghxwYW50aGVvbjAyLnNsYWMuc3RhbmZvcmQuZWR1ghxwYW50aGVvbjA0LnNsYWMu c3RhbmZvcmQuZWR1gg9wbGF5ZXIua3J0di5jb22CI3ByZXByb2QuZW50b21vbG9n eS5jYWxzLmNvcm5lbGwuZWR1gipwcmVwcm9kLmZvb2RzYWZldHkuZm9vZHNjaWVu Y2UuY29ybmVsbC5lZHWCJXByZXByb2Qubnlmb29kc2FmZXR5LmNhbHMuY29ybmVs bC5lZHWCKXByZXByb2QucHJvZHVjZXNhZmV0eWFsbGlhbmNlLmNvcm5lbGwuZWR1 gipwcm9maWxlLXVwZGF0ZXMtYWdyZWVtZW50LmhlYWx0aGdyYWRlcy5jb22CEnJl ZGVzaWduLnVtYnJvLmNvbYIQc2VhcmNoLm5zY2VlLmVkdYITc2VydmljZXMubmF0 ZXJhLmNvbYIWc21heHdpbi5hZHZhbmNld2ViLmNvbYIfc3VzdGFpbmFibGUtZmFy bWluZy5ydXRnZXJzLmVkdYIcdGVzdC5lbnZpcm9ubWVudC5jb3JuZWxsLmVkdYIQ dGVzdC5yYndtLmdvdi51a4ISdGVzdHBhcmtzLmluZHkuZ292gg52b256YS5nYmNp Lm9yZ4IRdm9uemEzODMuZ2JjaS5vcmeCEnZvbnphcGxheS5nYmNpLm9yZ4IXd3d3 LXN0YWdlLmNzLnN1bnlzYi5lZHWCGHd3dy5jYXRhbHlzdC5oYXJ2YXJkLmVkdYIR d3d3LmNoaW5hLnVtZC5lZHWCHHd3dy5vcmllbnRhdGlvbi5zbWhzLmd3dS5lZHWC JXd3dy5vdHRvbWFuaGlzdG9yaWFucy5mYXMuaGFydmFyZC5lZHWCE3d3dy5yYWZs ZWFybmluZy5vcmeCGHd3dy50ZXN0MS5jc2lhbWVyaWNhLmNvbYIPd3d3bmV3cy51 Y2YuZWR1MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB 8gDwAHcAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGNSLDzaAAA BAMASDBGAiEAuuQ/wEnFFZMk3rYoe7Cr+Wcpn+oi6+xWua1tHh1JC8wCIQCqvHJQ m2gy7zQO1+etmr45K4cJEvrMabqIY1bKLk+4KAB1AHb/iD8KtvuVUcJhzPWHujS0 pM27KdxoQgqf5mdMWjp0AAABjUiw8+AAAAQDAEYwRAIgZnw5NU1VpCXK4MX+MeRz 1c1uHbZ3X811l/Bx3HxqgCoCIHntGYZjRxPTF2dA+LgvQGhxM2INugeGJfl4puFW lrWkMA0GCSqGSIb3DQEBCwUAA4IBAQBBXA6V4va7g71zwlJam5EBrXmErVR6gLHW OM5ReYVrIZz/QcgEzFHE99mr0OA8SFvUNcqZ0w3o4pJhm4zQ7KusQHPzMGLSWQFV P3tVtxZJj777peWzzcVbMqRBBV/JPvZ39yvmKyOCuPABs3KJUSFOHIaZg/399uVe TeeTPTbPjfjAZSif5cM4qxT4Ve1l8YlMZxF0k4q2OBD6Vvs6ZjJzGQT0SmLurMKs 4KfbNtWecFuqg83IroWSKt76bJLTQRZ5jFPICjwmKiEKBYjZOA6BVN4WKOh5DP55 UoZNBQhO1Pj6GqCVV6Wfuik/uEH+SypbsfIk4jEWiGshvMYz6nRA -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHSnemv0wZzcXAgMkBQX ztwjNHFrHpIs5axrzzrdlw7T+GZAQLPiUvSZmF3ScRQ1Ni77M7wvvj8WKgEm6kmk IGsqEr1NwVO/9M+bfL4ePy1ywV87Wx7ZOVVK4JWJMqctOtWZynJz3jX67Nda0+9B ++4/N4TAaLpUnxu83mMaTL+l/8yYin0iItxxZ3YRMvL8oMO9BWqFighCSszfIpRu fGHjpEeodJZe7aLi7DcePvwyXZWi/al1YQeCdFkrpkcgk8myhP/APzQjk3bdKAlw KQDdvQR4Y3b+bMJVibDWVrVqjLz+ybpaAJiOjKOmp9NDC6LZPJujVsE+mvYR8y2Z VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 291111992976662540061250189727130644521852 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-27 01:12:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-26 01:12:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '4h.ansci.cornell.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24295278889261962340330570593076765092564594026629510040566849443941721212705222905469227342749655760761925628146467776896918161669177237506061638055976839317974540229085566909601290432792766688540743857041618507082302908209321494362376641574366690514136936988276436757394515726000349835912320682069511736058985263380188984941851626522348036976567257123937402752130277851931257557691396509910741392947845349707974538616547869499133806197294376341097227039876415788275764051935080580783290065738507278734728703160147978353048962982659390140744073959855669537306275821116832669307766091573181749448001568724078979553621 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) faa7302260b8bb18b0b56f68a3cc397213cb2214 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1906 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '4h.ansci.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aadcawarenessacademy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agents.fridayhealthplans.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'astralpower.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'beyondbreakthrough.caltech.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'breeding.rutgers.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ca.devca.eatsmart.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cf-ns4c-cms.s4c.cymru' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clinicaltrials.targetovariancancer.org.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'colektor.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'community.levelaccess.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'confiscated.sites.ps-pantheon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'countweb.med.harvard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-mtc-www.metrotech.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.mville.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.portal.dexis.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.raflearning.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'developer-test-roadsideapi.allstate.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'developerportal.northeastern.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digitalscholarship.lsa.umich.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domaintest.cals.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domaintest.cce.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domino.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'funeral.elitelearning.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'goverment.krtv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'h20.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthy-aging.advanceweb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'id.multidev.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'info.francistuttle.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'layer.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'legacy.centeronaddiction.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.pantheon.theactivetimes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lucky.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'menaconstruction.meed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'messaging-dev.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mnr.umbro.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'multidev.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newstudentguide-staging.sfsu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nwkevents.accessintel.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'old.atr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oldsite.thedailymeal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin-www.nobelbiocare.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ottomanhistorians.fas.harvard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pantheon01.slac.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pantheon02.slac.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pantheon04.slac.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'player.krtv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.entomology.cals.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.foodsafety.foodscience.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.nyfoodsafety.cals.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.producesafetyalliance.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'profile-updates-agreement.healthgrades.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redesign.umbro.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'search.nscee.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'services.natera.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smaxwin.advanceweb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sustainable-farming.rutgers.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.environment.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.rbwm.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'testparks.indy.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vonza.gbci.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vonza383.gbci.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vonzaplay.gbci.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-stage.cs.sunysb.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.catalyst.harvard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.china.umd.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.orientation.smhs.gwu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ottomanhistorians.fas.harvard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.raflearning.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.test1.csiamerica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwwnews.ucf.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018d48b0f3680000040300483046022100bae43fc049c5159324deb6287bb0abf967299fea22ebec56b9ad6d1e1d490bcc022100aabc72509b6832ef340ed7e7ad9abe392b870912facc69ba886356ca2e4fb82800750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d48b0f3e000000403004630440220667c39354d55a425cae0c5fe31e473d5cd6e1db6775fcd7597f071dc7c6a802a022079ed1986634713d3176740f8b82f40687133620dba078625f978a6e15696b5a4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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