halfmarathonclub.org

Issued by R3

About this certificate

This digital certificate with serial number 04:a0:e1:20:19:8d:cd:4f:20:92:6f:36:07:5e:32:64:de:9e was issued on by Let's Encrypt.

With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=halfmarathonclub.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:a0:e1:20:19:8d:cd:4f:20:92:6f:36:07:5e:32:64:de:9e
Serial Number (int): 403193565405237171018296127945101883530910
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 04:e2:89:b4:0a:4e:39:a7:19:43:6b:0f:ed:ff:77:62:61:dd:f2:c5
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): cb:60:c3:37:98:e0:11:17:5c:df:71:99:65:f8:d9:c7:df:e7:9c:30
Fingerprint (sha256): 10:37:62:8a:de:90:dc:21:36:5d:6f:60:54:fe:a6:6f:85:55:48:e9:37:27:70:62:ff:45:5c:d1:22:c9:7f:bd

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate halfmarathonclub.org

9

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for halfmarathonclub.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

agilityspeedtraining.com.juicepen.com
auctionsn.com.monstermagnets.com
halfmarathonclub.org
housesforsaleorlease.com.sprayflu.com
mathlogic.com
needtorise.com
newyorkchillerparts.com
okfuskeecounty.com
omeganaut.com

Other certificates including the domain name halfmarathonclub.org

(limited to 100 certificates)
halfmarathonclub.org
halfmarathonclub.org
halfmarathonclub.org
theovercomers.ca
soil.ca
halfmarathonclub.org
timwiens.ca
arbitrage.cloud
satools.co.za
halfmarathonclub.org
halfmarathonclub.org
sculpit.space

Certificate

The complete raw certificate details for halfmarathonclub.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFxDCCBKygAwIBAgISBKDhIBmNzU8gkm82B14yZN6eMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzEyMTExNTAwNTFaFw0yNDAzMTAxNTAwNTBaMB8xHTAbBgNVBAMT
FGhhbGZtYXJhdGhvbmNsdWIub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA257+mFuSlCcuXfJTCqjE0fyL/ZCpa3cM3oMRwO6UUCgsvSi7OaV/S781
VoSfOHKz28lhxRdMJULONM9G/bH1HL6lrHFZ1WChUdPLjlxfDzh+WpJ+/lZ+sevq
+lEGyT9bVbcOZRVJH2AaZqXlTV1TPFoyYE5fQy+gNdw/mOmGHBHOilq4wJz4vJs5
vANxl2Jkvpo4YL1RWWtWYeUlGX6fCc9ux6wrCjzIhPviZdgNpKv0Mm6yT2Fq6Amu
k98UrStVp5gAmPGvUOrLYX4yBgBhPrYHeR1oQsEDW9/D/e6kt48rF5CnzNLkLYXF
NT8aBj6wqHZqpPNNtvddGRXYSjwrEQIDAQABo4IC5TCCAuEwDgYDVR0PAQH/BAQD
AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA
MB0GA1UdDgQWBBQE4om0Ck45pxlDaw/t/3diYd3yxTAfBgNVHSMEGDAWgBQULrMX
t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0
dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu
Y3Iub3JnLzCB7AYDVR0RBIHkMIHhgiVhZ2lsaXR5c3BlZWR0cmFpbmluZy5jb20u
anVpY2VwZW4uY29tgiBhdWN0aW9uc24uY29tLm1vbnN0ZXJtYWduZXRzLmNvbYIU
aGFsZm1hcmF0aG9uY2x1Yi5vcmeCJWhvdXNlc2ZvcnNhbGVvcmxlYXNlLmNvbS5z
cHJheWZsdS5jb22CDW1hdGhsb2dpYy5jb22CDm5lZWR0b3Jpc2UuY29tghduZXd5
b3JrY2hpbGxlcnBhcnRzLmNvbYISb2tmdXNrZWVjb3VudHkuY29tgg1vbWVnYW5h
dXQuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB
8wDxAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGMWZwYngAA
BAMASDBGAiEApHSQcOXkruULCa1HqJmL7PFjxcV/7iqQRHoY9zWpeygCIQDHhVwA
fy4pPSkp9lqVDwPVPDEiVdQIkTJBcwEJHcqQUgB2AHb/iD8KtvuVUcJhzPWHujS0
pM27KdxoQgqf5mdMWjp0AAABjFmcGOkAAAQDAEcwRQIhAJQ8ktSGrJKuOefcwNO8
Y4QBC0ASc8JWjCkZra+LM/bAAiACj/BpZReIviZIbwmo0s86sNHHlqy0z3LEOGET
Sr/2+zANBgkqhkiG9w0BAQsFAAOCAQEAlYwpcuVu6QODd0Zu6F6agh9M6tSYqYdM
x2UyxmlBj37X00pL/UouLioEkSPVwOqS0NBUaM3Y82wCH+Vh438hCE5titRk6J9z
hyrwQ5greVDdlpAVq2KmZA5q/WErgtE6VHT4m1zR7SC3pUDFmLQAhzR/D8/0L4m1
EiiPD0wSkutV+vSdDfpnUNqWzF8ryK6FQM7CavvIJamShXg1TCFKeFkVXULAJfQX
0cjQvgquN/LlBE4tmqN/bioWkHLFgQKi0CT9aR/zo2IYhaKzCSXtTDriVXS8Lvwc
AVOboWyFGvwLVa1ZhX32YbKOFqr0rHc/pEfdVSeTTT74/XET2zbhYw==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA257+mFuSlCcuXfJTCqjE
0fyL/ZCpa3cM3oMRwO6UUCgsvSi7OaV/S781VoSfOHKz28lhxRdMJULONM9G/bH1
HL6lrHFZ1WChUdPLjlxfDzh+WpJ+/lZ+sevq+lEGyT9bVbcOZRVJH2AaZqXlTV1T
PFoyYE5fQy+gNdw/mOmGHBHOilq4wJz4vJs5vANxl2Jkvpo4YL1RWWtWYeUlGX6f
Cc9ux6wrCjzIhPviZdgNpKv0Mm6yT2Fq6Amuk98UrStVp5gAmPGvUOrLYX4yBgBh
PrYHeR1oQsEDW9/D/e6kt48rF5CnzNLkLYXFNT8aBj6wqHZqpPNNtvddGRXYSjwr
EQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 403193565405237171018296127945101883530910
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-11 15:00:51 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-10 15:00:50 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'halfmarathonclub.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27724591903703208832249815979322899681846953219118681425896128456434436926244252536357959130156626547526169561056562898226571554909363155675588264861917386768323245095232217313137180240851300150070633372551242616716089877502029577108935162653934964691486889111480630958319272882566942524324440368060589312547193830051994937006667633809562427171684025073931271429640688347718978708388851387334006248779427842950717612019069830865447107951723081540622372296547214735013534485836755029142354172296461447855606875056252950790141609053059242314258586124636243767317100657008855583472655360089250383885739289724349495126801
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							04e289b40a4e39a719436b0fedff776261ddf2c5
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (228 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agilityspeedtraining.com.juicepen.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'auctionsn.com.monstermagnets.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'halfmarathonclub.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'housesforsaleorlease.com.sprayflu.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mathlogic.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'needtorise.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newyorkchillerparts.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'okfuskeecounty.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'omeganaut.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c599c189e0000040300483046022100a4749070e5e4aee50b09ad47a8998becf163c5c57fee2a90447a18f735a97b28022100c7855c007f2e293d2929f65a950f03d53c312255d4089132417301091dca905200760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c599c18e90000040300473045022100943c92d486ac92ae39e7dcc0d3bc6384010b401273c2568c2919adaf8b33f6c00220028ff069651788be26486f09a8d2cf3ab0d1c796acb4cf72c43861134abff6fb
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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