halfmarathonclub.org
Issued by R3
About this certificate
This digital certificate with serial number 04:a0:e1:20:19:8d:cd:4f:20:92:6f:36:07:5e:32:64:de:9e was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=halfmarathonclub.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:a0:e1:20:19:8d:cd:4f:20:92:6f:36:07:5e:32:64:de:9eSerial Number (int): 403193565405237171018296127945101883530910
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 04:e2:89:b4:0a:4e:39:a7:19:43:6b:0f:ed:ff:77:62:61:dd:f2:c5
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): cb:60:c3:37:98:e0:11:17:5c:df:71:99:65:f8:d9:c7:df:e7:9c:30
Fingerprint (sha256): 10:37:62:8a:de:90:dc:21:36:5d:6f:60:54:fe:a6:6f:85:55:48:e9:37:27:70:62:ff:45:5c:d1:22:c9:7f:bd
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate halfmarathonclub.org
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for halfmarathonclub.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
agilityspeedtraining.com.juicepen.com
auctionsn.com.monstermagnets.com
halfmarathonclub.org
housesforsaleorlease.com.sprayflu.com
mathlogic.com
needtorise.com
newyorkchillerparts.com
okfuskeecounty.com
omeganaut.com
auctionsn.com.monstermagnets.com
halfmarathonclub.org
housesforsaleorlease.com.sprayflu.com
mathlogic.com
needtorise.com
newyorkchillerparts.com
okfuskeecounty.com
omeganaut.com
Other certificates including the domain name halfmarathonclub.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for halfmarathonclub.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFxDCCBKygAwIBAgISBKDhIBmNzU8gkm82B14yZN6eMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTExNTAwNTFaFw0yNDAzMTAxNTAwNTBaMB8xHTAbBgNVBAMT FGhhbGZtYXJhdGhvbmNsdWIub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEA257+mFuSlCcuXfJTCqjE0fyL/ZCpa3cM3oMRwO6UUCgsvSi7OaV/S781 VoSfOHKz28lhxRdMJULONM9G/bH1HL6lrHFZ1WChUdPLjlxfDzh+WpJ+/lZ+sevq +lEGyT9bVbcOZRVJH2AaZqXlTV1TPFoyYE5fQy+gNdw/mOmGHBHOilq4wJz4vJs5 vANxl2Jkvpo4YL1RWWtWYeUlGX6fCc9ux6wrCjzIhPviZdgNpKv0Mm6yT2Fq6Amu k98UrStVp5gAmPGvUOrLYX4yBgBhPrYHeR1oQsEDW9/D/e6kt48rF5CnzNLkLYXF NT8aBj6wqHZqpPNNtvddGRXYSjwrEQIDAQABo4IC5TCCAuEwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBQE4om0Ck45pxlDaw/t/3diYd3yxTAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzCB7AYDVR0RBIHkMIHhgiVhZ2lsaXR5c3BlZWR0cmFpbmluZy5jb20u anVpY2VwZW4uY29tgiBhdWN0aW9uc24uY29tLm1vbnN0ZXJtYWduZXRzLmNvbYIU aGFsZm1hcmF0aG9uY2x1Yi5vcmeCJWhvdXNlc2ZvcnNhbGVvcmxlYXNlLmNvbS5z cHJheWZsdS5jb22CDW1hdGhsb2dpYy5jb22CDm5lZWR0b3Jpc2UuY29tghduZXd5 b3JrY2hpbGxlcnBhcnRzLmNvbYISb2tmdXNrZWVjb3VudHkuY29tgg1vbWVnYW5h dXQuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB 8wDxAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGMWZwYngAA BAMASDBGAiEApHSQcOXkruULCa1HqJmL7PFjxcV/7iqQRHoY9zWpeygCIQDHhVwA fy4pPSkp9lqVDwPVPDEiVdQIkTJBcwEJHcqQUgB2AHb/iD8KtvuVUcJhzPWHujS0 pM27KdxoQgqf5mdMWjp0AAABjFmcGOkAAAQDAEcwRQIhAJQ8ktSGrJKuOefcwNO8 Y4QBC0ASc8JWjCkZra+LM/bAAiACj/BpZReIviZIbwmo0s86sNHHlqy0z3LEOGET Sr/2+zANBgkqhkiG9w0BAQsFAAOCAQEAlYwpcuVu6QODd0Zu6F6agh9M6tSYqYdM x2UyxmlBj37X00pL/UouLioEkSPVwOqS0NBUaM3Y82wCH+Vh438hCE5titRk6J9z hyrwQ5greVDdlpAVq2KmZA5q/WErgtE6VHT4m1zR7SC3pUDFmLQAhzR/D8/0L4m1 EiiPD0wSkutV+vSdDfpnUNqWzF8ryK6FQM7CavvIJamShXg1TCFKeFkVXULAJfQX 0cjQvgquN/LlBE4tmqN/bioWkHLFgQKi0CT9aR/zo2IYhaKzCSXtTDriVXS8Lvwc AVOboWyFGvwLVa1ZhX32YbKOFqr0rHc/pEfdVSeTTT74/XET2zbhYw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA257+mFuSlCcuXfJTCqjE 0fyL/ZCpa3cM3oMRwO6UUCgsvSi7OaV/S781VoSfOHKz28lhxRdMJULONM9G/bH1 HL6lrHFZ1WChUdPLjlxfDzh+WpJ+/lZ+sevq+lEGyT9bVbcOZRVJH2AaZqXlTV1T PFoyYE5fQy+gNdw/mOmGHBHOilq4wJz4vJs5vANxl2Jkvpo4YL1RWWtWYeUlGX6f Cc9ux6wrCjzIhPviZdgNpKv0Mm6yT2Fq6Amuk98UrStVp5gAmPGvUOrLYX4yBgBh PrYHeR1oQsEDW9/D/e6kt48rF5CnzNLkLYXFNT8aBj6wqHZqpPNNtvddGRXYSjwr EQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 403193565405237171018296127945101883530910 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-11 15:00:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-10 15:00:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'halfmarathonclub.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27724591903703208832249815979322899681846953219118681425896128456434436926244252536357959130156626547526169561056562898226571554909363155675588264861917386768323245095232217313137180240851300150070633372551242616716089877502029577108935162653934964691486889111480630958319272882566942524324440368060589312547193830051994937006667633809562427171684025073931271429640688347718978708388851387334006248779427842950717612019069830865447107951723081540622372296547214735013534485836755029142354172296461447855606875056252950790141609053059242314258586124636243767317100657008855583472655360089250383885739289724349495126801 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 04e289b40a4e39a719436b0fedff776261ddf2c5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (228 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agilityspeedtraining.com.juicepen.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'auctionsn.com.monstermagnets.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'halfmarathonclub.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'housesforsaleorlease.com.sprayflu.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mathlogic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'needtorise.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newyorkchillerparts.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'okfuskeecounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'omeganaut.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c599c189e0000040300483046022100a4749070e5e4aee50b09ad47a8998becf163c5c57fee2a90447a18f735a97b28022100c7855c007f2e293d2929f65a950f03d53c312255d4089132417301091dca905200760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c599c18e90000040300473045022100943c92d486ac92ae39e7dcc0d3bc6384010b401273c2568c2919adaf8b33f6c00220028ff069651788be26486f09a8d2cf3ab0d1c796acb4cf72c43861134abff6fb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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