amis92.org
Issued by R3
About this certificate
This digital certificate with serial number 04:1f:be:21:5d:8b:f9:ec:38:6f:99:7d:53:ba:17:45:46:03 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=amis92.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:1f:be:21:5d:8b:f9:ec:38:6f:99:7d:53:ba:17:45:46:03Serial Number (int): 359250623663939699688561883736742776096259
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 98:43:96:2f:26:31:d6:d9:57:9e:97:76:87:10:95:11:08:61:cb:16
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): b5:bd:24:0a:83:3c:e0:c1:8f:1c:be:f6:dd:2f:9a:ec:fb:ae:ee:79
Fingerprint (sha256): 10:fd:19:1f:f3:7d:2f:5f:18:d9:13:fc:20:68:c1:4e:9c:e8:49:a1:b0:bd:5c:68:83:7f:a6:c6:4c:aa:26:fb
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate amis92.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for amis92.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
amis92.org
www.amis92.org
www.amis92.org
Other certificates including the domain name amis92.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for amis92.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8DCCA9igAwIBAgISBB++IV2L+ew4b5l9U7oXRUYDMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMjMwMDU0MTZaFw0yNDAzMjIwMDU0MTVaMBUxEzARBgNVBAMT CmFtaXM5Mi5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZBuYz Z3qz0W+GUH2quMHFZ1MNIeCe5GqzPk6WOWl37VgEYKLZf7tnyuc7fmzn0FZo2kIB PxJGypqwGnMCWhY2JYpedEeY/bqGN/a6YECrLNrrTHiK+05i8LEk6fhoqYoP0YGF thPjvOFqxyVJkqLO+0SslBHOgPVaTGwQd+Yeax4HPHnUYc2xKaVJV4yTfLwgSHdM GjuDIz5glsPDQePW91rzFKnVxtuPqTNFhkamTzvc1t6j00ZmQ3AfxGQ57ti8rSLG rWio/YevcMU/y3SzcjibJ3XEtLr9CFdHhkBR+bfrSKqnUrysSRylVl6tv7n5PEOH uJKiGU/9rzsmPiMXAgMBAAGjggIbMIICFzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FJhDli8mMdbZV56XdocQlREIYcsWMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCUG A1UdEQQeMByCCmFtaXM5Mi5vcmeCDnd3dy5hbWlzOTIub3JnMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAO1N3dT4tuYBOizBb Bv5AO2fYT8P0x70ADS1yb+H61BcAAAGMlGFZNwAABAMARzBFAiB85zw8BhKcK4sz oSymZ/YhqiAuesZV6fi8CWNSTgLJOgIhAJq0B9PrTkoPV7q2AwfQT6sKwDcTChZx htWy9RPw8s9pAHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGM lGFZSAAABAMARjBEAiAIskdpCXAu++hKSX7xTBLg/PkxkZcsSz9JHVQLyna/4AIg Tvyq+6kDELCaixQO7Svh86ovp8ZSq2yTT+C+RaVpRZAwDQYJKoZIhvcNAQELBQAD ggEBALR80NcNmMDex5pR3NYIsmG+Qhfmkh+673Q98KVdDBXOcGAG59ro4zSu6iEk x880h2o+Ccr3Ldr+32wU1tR9EmQFGRMHcCPUE4U7qX3QDrAE9swwH/WdfPw0xjwu 09YjsNWHp/DBw+zpkayFyijM+J8Jz+ioiMbSgHWIVw+GaULWISXa5juAZE6CYI2f u8mhuT0PFP6iZfyiN59Zjdn/8Phi/W/bc5m2EZn8aON4PU1V3bHpTXWg9rSItWkr NKu2eRmVH94okaJDyaQDC9tVqOM4aBzU46MBwRP90J2cUclCYzra9MofBMnZIuBz FZd5zrzCgOSApFAl3ocrEr9yEFs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2QbmM2d6s9FvhlB9qrjB xWdTDSHgnuRqsz5Oljlpd+1YBGCi2X+7Z8rnO35s59BWaNpCAT8SRsqasBpzAloW NiWKXnRHmP26hjf2umBAqyza60x4ivtOYvCxJOn4aKmKD9GBhbYT47zhasclSZKi zvtErJQRzoD1WkxsEHfmHmseBzx51GHNsSmlSVeMk3y8IEh3TBo7gyM+YJbDw0Hj 1vda8xSp1cbbj6kzRYZGpk873Nbeo9NGZkNwH8RkOe7YvK0ixq1oqP2Hr3DFP8t0 s3I4myd1xLS6/QhXR4ZAUfm360iqp1K8rEkcpVZerb+5+TxDh7iSohlP/a87Jj4j FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 359250623663939699688561883736742776096259 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-23 00:54:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-22 00:54:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'amis92.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27397114310736126907357627890123196551460700181553021675870810758100622265795022200277253813205910437164912652220662793086819472152689726847292206123654307607750010211376984282988268743075236943263870765487742426446908236472718718490493833629434805911988818364822634347417129432024481481682137909020985173970181647054765713612748404074306407939876894801470184668636457643008744065142234470263207992365165733347507995190356490727515205197136978835273165981777424462618588360489377521661221449189483389105905713231608385083921566355006705728232240669543598860649283420323740361934320367064655053507944810326824287347479 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9843962f2631d6d9579e9776871095110861cb16 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amis92.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.amis92.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c94615937000004030047304502207ce73c3c06129c2b8b33a12ca667f621aa202e7ac655e9f8bc0963524e02c93a0221009ab407d3eb4e4a0f57bab60307d04fab0ac037130a167186d5b2f513f0f2cf6900750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c946159480000040300463044022008b2476909702efbe84a497ef14c12e0fcf93191972c4b3f491d540bca76bfe002204efcaafba90310b09a8b140eed2be1f3aa2fa7c652ab6c934fe0be45a5694590 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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