www.tifton.net
Issued by R3
About this certificate
This digital certificate with serial number 03:7a:9a:3d:37:ca:ea:8a:3c:f3:c8:9b:73:78:35:39:fe:a0 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.tifton.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:7a:9a:3d:37:ca:ea:8a:3c:f3:c8:9b:73:78:35:39:fe:a0Serial Number (int): 303056325532703683791939501394214606470816
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b7:ab:87:2e:38:24:e7:03:45:a6:13:59:24:32:39:60:43:91:be:7f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): a1:cb:3e:9e:73:8c:13:7d:b0:79:ae:44:39:5f:a6:f5:0f:87:25:8c
Fingerprint (sha256): 0f:10:cd:20:7f:78:fe:f5:6b:e5:85:c1:45:1d:e0:cb:ad:e1:5c:b1:df:fe:dd:a9:20:78:77:94:c7:54:81:f1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.tifton.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.tifton.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tifton.net
www.tifton.net
www.tifton.net
Other certificates including the domain name tifton.net
(limited to 100 certificates)
webmail.tifton.net
*.tifton.net
*.tifton.net
www.tifton.net
sslvpn.tifton.net
webmail.tifton.net
portal.tifton.net
mobile.tifton.net
*.tifton.net
lockdown.tifton.net
*.tifton.net
*.tifton.net
*.tifton.net
*.tifton.net
mobile.tifton.net
ess.tifton.net
mobile.tifton.net
*.tifton.net
mobile.tifton.net
sslvpn.tifton.net
www.tifton.net
*.tifton.net
*.tifton.net
webmail.tifton.net
colossus.tifton.net
www.tifton.net
colossus.tifton.net
www.tifton.net
colossus.tifton.net
inovah.tifton.net
*.tifton.net
webmail.tifton.net
portal.tifton.net
sslvpn.tifton.net
portal.tifton.net
ess.tifton.net
www.tifton.net
*.tifton.net
www.tifton.net
sslvpn.tifton.net
portal.tifton.net
webmail.tifton.net
webmail.tifton.net
sslvpn.tifton.net
webmail.tifton.net
tifton.net
sslvpn.tifton.net
sslvpn.tifton.net
sslvpn.tifton.net
sslvpn.tifton.net
www.tifton.net
*.tifton.net
www.tifton.net
www.tifton.net
www.tifton.net
www.tifton.net
webmail.tifton.net
*.tifton.net
webmail.tifton.net
webmail.tifton.net
tifton.net
*.tifton.net
portal.tifton.net
*.tifton.net
*.tifton.net
www.tifton.net
sslvpn.tifton.net
webmail.tifton.net
portal.tifton.net
mobile.tifton.net
*.tifton.net
lockdown.tifton.net
*.tifton.net
*.tifton.net
*.tifton.net
*.tifton.net
mobile.tifton.net
ess.tifton.net
mobile.tifton.net
*.tifton.net
mobile.tifton.net
sslvpn.tifton.net
www.tifton.net
*.tifton.net
*.tifton.net
webmail.tifton.net
colossus.tifton.net
www.tifton.net
colossus.tifton.net
www.tifton.net
colossus.tifton.net
inovah.tifton.net
*.tifton.net
webmail.tifton.net
portal.tifton.net
sslvpn.tifton.net
portal.tifton.net
ess.tifton.net
www.tifton.net
*.tifton.net
www.tifton.net
sslvpn.tifton.net
portal.tifton.net
webmail.tifton.net
webmail.tifton.net
sslvpn.tifton.net
webmail.tifton.net
tifton.net
sslvpn.tifton.net
sslvpn.tifton.net
sslvpn.tifton.net
sslvpn.tifton.net
www.tifton.net
*.tifton.net
www.tifton.net
www.tifton.net
www.tifton.net
www.tifton.net
webmail.tifton.net
*.tifton.net
webmail.tifton.net
webmail.tifton.net
tifton.net
*.tifton.net
portal.tifton.net
Certificate
The complete raw certificate details for www.tifton.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgISA3qaPTfK6oo888ibc3g1Of6gMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjMyMTQ2MDhaFw0yNDAyMjEyMTQ2MDdaMBkxFzAVBgNVBAMT Dnd3dy50aWZ0b24ubmV0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA tuqb0oJegHSNurGpBzcnmpEZ04/ulnU+ONge7UG7fhkuYfxH7fuT4x4XvXuOzjca doVpkw1yNErVFSW86wA8tqi30+abn0KD6hran8nuGGyOH/LblWdEErPICmW5Il0G SlJbNbmen+linsPUKpinzzxgW6AofC1V4ig7WXD4x2bULFRZ2q1nDp1bblHQxe7r MLmHlt/J2jK2lS+vcBEGg2uZBwxbLp/tFlRC9I4N2/nPR4BOR9nCauocQtOirkBn W/4nCQPGQLrKEhSvscWIA502qnWdPgzx0vE0tdH/iw3GQ6KfPeMkGrkZjcM1yUSD f2suDdqTvEHO2tIBa8PbXwIDAQABo4ICHTCCAhkwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBS3q4cuOCTnA0WmE1kkMjlgQ5G+fzAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzAlBgNVHREEHjAcggp0aWZ0b24ubmV0gg53d3cudGlmdG9uLm5ldDATBgNVHSAE DDAKMAgGBmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB3AEiw42vapkc0 D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABi/5cruMAAAQDAEgwRgIhAM3XsfHZ 5qu1KYzYwsW8ShxsNql+350d11oYvi3QqjKZAiEAj4f5wR0qs4ialhSaXJAMkBTz 4T49wih0wBTOJHOryE8AdgA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frU FwAAAYv+XLDNAAAEAwBHMEUCIF+mlQnLMuNA+vjyRVp8u9EIGHVJuJfLGjGlv6JW UDgHAiEA9mXldxI2orXO5xtJO2R7l8Jnl2tzKwZ19lQFnZa1ntYwDQYJKoZIhvcN AQELBQADggEBABozeF5Vx/ZoAXy02cvMhCcQ2gHLtTv/opcIOfbv4DGJGvooWGYX oe5adpG0nzpJPOmpuWlra1eDyIWFVmzYSziSxSMjycawncQYPdvRrRsExCvui2yS 5gCrB8zQpjiUWabXt/52mugV81pTUeo1xeuxkRajdCU9r180p2wtpkFE+qZbKJ4e /4wW84dZ+bjdzV3Xs4Z5T8Ol4n0uxHjVCDnDI8ukwRQQSItMo4sX7TmXi04+AF6j by1klFtPwonJB0hgBvzvboi77NYp2i7PqgcBaNMYR9VWiYc1hDRaXCiO2qGXkJtP /qtFwFwPazfGsvhs4XXVZprgNNao4xY9opM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtuqb0oJegHSNurGpBzcn mpEZ04/ulnU+ONge7UG7fhkuYfxH7fuT4x4XvXuOzjcadoVpkw1yNErVFSW86wA8 tqi30+abn0KD6hran8nuGGyOH/LblWdEErPICmW5Il0GSlJbNbmen+linsPUKpin zzxgW6AofC1V4ig7WXD4x2bULFRZ2q1nDp1bblHQxe7rMLmHlt/J2jK2lS+vcBEG g2uZBwxbLp/tFlRC9I4N2/nPR4BOR9nCauocQtOirkBnW/4nCQPGQLrKEhSvscWI A502qnWdPgzx0vE0tdH/iw3GQ6KfPeMkGrkZjcM1yUSDf2suDdqTvEHO2tIBa8Pb XwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 303056325532703683791939501394214606470816 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-23 21:46:08 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-21 21:46:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.tifton.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23091061356177692479152564271276451897645987451980300408886395139614900281249289987290310231223672790171028710932923392346027062164474025214787000887941333884036717732385344956449922998930816698108157046014584911470350609604349405872889048357219747107409877118784647119528594762021288516510449246147222494468053356455048872955756613851172960587414445169138499645577629541395320898318951813707115646544123346569305976185533342256919545832283487784808130675476078069258701174180181516762537188467817777633480881091808973805439648760716320815443777957039623085983357032507085205767655370703387360158115562583571019586399 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b7ab872e3824e70345a61359243239604391be7f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tifton.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tifton.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bfe5caee30000040300483046022100cdd7b1f1d9e6abb5298cd8c2c5bc4a1c6c36a97edf9d1dd75a18be2dd0aa32990221008f87f9c11d2ab3889a96149a5c900c9014f3e13e3dc22874c014ce2473abc84f0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bfe5cb0cd000004030047304502205fa69509cb32e340faf8f2455a7cbbd108187549b897cb1a31a5bfa256503807022100f665e5771236a2b5cee71b493b647b97c267976b732b0675f654059d96b59ed6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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