www.colegioparroquialsantafaz.org
Issued by R3
About this certificate
This digital certificate with serial number 04:6f:b0:74:9e:ca:78:37:f4:76:e3:5b:fb:4d:61:ca:3a:c6 was issued on by Let's Encrypt.
With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.colegioparroquialsantafaz.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:6f:b0:74:9e:ca:78:37:f4:76:e3:5b:fb:4d:61:ca:3a:c6Serial Number (int): 386455036109620903315960642990924035144390
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: f4:31:00:2d:a4:b7:59:34:12:5a:b1:5e:26:7f:1d:22:37:71:f8:80
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c8:4c:b4:df:77:1d:dc:4b:51:31:ac:7f:b5:be:0c:4f:5e:0d:46:63
Fingerprint (sha256): 0e:33:02:07:da:ab:0e:36:71:b5:35:c1:f0:70:d5:60:b9:d0:60:ed:a3:a0:09:da:0f:47:33:a9:5d:fa:3f:95
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.colegioparroquialsantafaz.org
10
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.colegioparroquialsantafaz.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
colegiolaanunciacion-edu-ni.sydaisa.com
colegiolaanunciacion.edu.ni
colegioparroquialsantafaz-org.sydaisa.com
colegioparroquialsantafaz.org
mail.colegiolaanunciacion.edu.ni
mail.colegioparroquialsantafaz.org
www.colegiolaanunciacion-edu-ni.sydaisa.com
www.colegiolaanunciacion.edu.ni
www.colegioparroquialsantafaz-org.sydaisa.com
www.colegioparroquialsantafaz.org
colegiolaanunciacion.edu.ni
colegioparroquialsantafaz-org.sydaisa.com
colegioparroquialsantafaz.org
mail.colegiolaanunciacion.edu.ni
mail.colegioparroquialsantafaz.org
www.colegiolaanunciacion-edu-ni.sydaisa.com
www.colegiolaanunciacion.edu.ni
www.colegioparroquialsantafaz-org.sydaisa.com
www.colegioparroquialsantafaz.org
Other certificates including the domain name colegioparroquialsantafaz.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.colegioparroquialsantafaz.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZzCCBU+gAwIBAgISBG+wdJ7KeDf0duNb+01hyjrGMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMDgwMzA2MDFaFw0yNDAzMDcwMzA2MDBaMCwxKjAoBgNVBAMT IXd3dy5jb2xlZ2lvcGFycm9xdWlhbHNhbnRhZmF6Lm9yZzCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBANXuHcFtex9X/S0cLYGPZ1gGuo4Ex6O+4qrk7z8Y cLurOzXP2CdPHDvo4YJBPVicvd4VOZAmPcTtwGnJ6QHexCHvy5MG8ACovM3BigHa lxPtZSpDFNbLRLJ0+vkDLnbs+6JIW0NbzM344gr/2MQmMKZWLzV3om5Lf+LUmVvM ltqGYhkbGIXjR7sbUJqLTZueunpJG5h8Ti+OgmLCN/OY5JGYKD4bQJtVvZ9GEtZI 9KdrXvbo/KqmE2bWOS6jIX/RRrd5AKOsmeJCa3s7I6yfMZnBtL8CBJAm5QvkD5/d kHrYrESO5MfNq7gQFsDWb15n0YfwUoAdFWsmuf6b9qLENeECAwEAAaOCA3swggN3 MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU9DEALaS3WTQSWrFeJn8dIjdx+IAwHwYD VR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEG CCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0 dHA6Ly9yMy5pLmxlbmNyLm9yZy8wggGDBgNVHREEggF6MIIBdoInY29sZWdpb2xh YW51bmNpYWNpb24tZWR1LW5pLnN5ZGFpc2EuY29tghtjb2xlZ2lvbGFhbnVuY2lh Y2lvbi5lZHUubmmCKWNvbGVnaW9wYXJyb3F1aWFsc2FudGFmYXotb3JnLnN5ZGFp c2EuY29tgh1jb2xlZ2lvcGFycm9xdWlhbHNhbnRhZmF6Lm9yZ4IgbWFpbC5jb2xl Z2lvbGFhbnVuY2lhY2lvbi5lZHUubmmCIm1haWwuY29sZWdpb3BhcnJvcXVpYWxz YW50YWZhei5vcmeCK3d3dy5jb2xlZ2lvbGFhbnVuY2lhY2lvbi1lZHUtbmkuc3lk YWlzYS5jb22CH3d3dy5jb2xlZ2lvbGFhbnVuY2lhY2lvbi5lZHUubmmCLXd3dy5j b2xlZ2lvcGFycm9xdWlhbHNhbnRhZmF6LW9yZy5zeWRhaXNhLmNvbYIhd3d3LmNv bGVnaW9wYXJyb3F1aWFsc2FudGFmYXoub3JnMBMGA1UdIAQMMAowCAYGZ4EMAQIB MIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAO1N3dT4tuYBOizBbBv5AO2fYT8P0 x70ADS1yb+H61BcAAAGMR5qRRgAABAMARjBEAiATwAjSu/IMB7iqgV2uU7q9d5Qw 0MG0qJDfuZH49CjqCAIgTkRoPPqHAtd2DYLj4YJvqap6G1++aq3h07tJegjET3gA dgCi4r/WHt4vLweg1k5tN6fcZUOwxrUuotq3iviabfUX2AAAAYxHmpI3AAAEAwBH MEUCIQC7kl/Poc14ZmLDr8C6z+gjM70x5qpA3QEmVepYdesjLQIgPoEJiaenpnSv cWKjveAEO8sernhjLM6ynFnR2WQmj/4wDQYJKoZIhvcNAQELBQADggEBAH/4E5Ov KVHH+Quc0lJqgdGaHpKNSuvproIGduEn2l9enMvFUK4YUgG/Pv3qP9rzq0rrXpwj Fc2NvYiKG+fDVKq4cDel8PvS9Bfw+o1I0an4WwzZZC30mqBLxiolCJZVEn0u1e0H j9unkZfU+/dX/pNADzxEw9fWadVaenING1RsDcgj35BwXbTdrJ4eomy+bih6Bn66 kS5JHpsDcEUdTS/lta9RyYxHisD4ZayQhZ9JaS3zOsqju0Tk2V653XM1XP4cXg1d EBGGoImSXTbUd/wua9KUsIgC32GyBTk8X8XWPXzJ8rr3ao0XjnuOTjrz+2vYlGtm /X7RS1h9PSKgbd4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1e4dwW17H1f9LRwtgY9n WAa6jgTHo77iquTvPxhwu6s7Nc/YJ08cO+jhgkE9WJy93hU5kCY9xO3AacnpAd7E Ie/LkwbwAKi8zcGKAdqXE+1lKkMU1stEsnT6+QMuduz7okhbQ1vMzfjiCv/YxCYw plYvNXeibkt/4tSZW8yW2oZiGRsYheNHuxtQmotNm566ekkbmHxOL46CYsI385jk kZgoPhtAm1W9n0YS1kj0p2te9uj8qqYTZtY5LqMhf9FGt3kAo6yZ4kJrezsjrJ8x mcG0vwIEkCblC+QPn92QetisRI7kx82ruBAWwNZvXmfRh/BSgB0Vaya5/pv2osQ1 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 386455036109620903315960642990924035144390 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-08 03:06:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-07 03:06:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.colegioparroquialsantafaz.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27006178448409984217934846857782369127726400293691318387579652592432667447727131915123616433578740515638723414363948672252966723432711402750997177799637954077584987526730075611838503055149958994705514976198339306493049582425899099247387794017842883609368024743561643069203692095163331479484725335981932874273164630218847951763222296213421740411411399425286652120775770940002511195254653429283615568836905750429830341456568513525727894025460235362695378208035411278056187081525960166632958655432349308834912759102039570934663331682059385826512149540616386526850914031886812763054515504682409330474391590092106937677281 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f431002da4b75934125ab15e267f1d223771f880 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (378 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'colegiolaanunciacion-edu-ni.sydaisa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'colegiolaanunciacion.edu.ni' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'colegioparroquialsantafaz-org.sydaisa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'colegioparroquialsantafaz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.colegiolaanunciacion.edu.ni' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.colegioparroquialsantafaz.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.colegiolaanunciacion-edu-ni.sydaisa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.colegiolaanunciacion.edu.ni' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.colegioparroquialsantafaz-org.sydaisa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.colegioparroquialsantafaz.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c479a91460000040300463044022013c008d2bbf20c07b8aa815dae53babd779430d0c1b4a890dfb991f8f428ea0802204e44683cfa8702d7760d82e3e1826fa9aa7a1b5fbe6aade1d3bb497a08c44f78007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018c479a92370000040300473045022100bb925fcfa1cd786662c3afc0bacfe82333bd31e6aa40dd012655ea5875eb232d02203e810989a7a7a674af7162a3bde0043bcb1eae78632cceb29c59d1d964268ffe . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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