ask.library.duq.edu

Issued by R3

About this certificate

This digital certificate with serial number 04:0d:88:b2:d0:cc:31:9a:3b:66:63:a2:6f:d4:92:68:aa:25 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ask.library.duq.edu

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:0d:88:b2:d0:cc:31:9a:3b:66:63:a2:6f:d4:92:68:aa:25
Serial Number (int): 353054517968199848302575473515202219649573
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 86:34:0f:a9:1e:4b:54:74:c9:13:5a:02:c8:b1:22:be:c2:8f:8e:17
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 46:62:9f:e2:81:02:9f:5d:59:36:7d:ed:45:c0:2f:3f:87:76:87:4a
Fingerprint (sha256): 13:38:30:2b:85:b8:18:d4:58:2b:2b:8b:e7:a5:e4:a3:9d:b6:17:1f:89:b3:ea:2e:ea:1f:c0:ae:6e:0c:60:ce

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate ask.library.duq.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ask.library.duq.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ask.library.duq.edu

Other certificates including the domain name duq.edu

(limited to 100 certificates)
wpm.ccmp.eu
sfunder5cert.net
ddc.duq.edu
law.duq.edu
scalefunder.net
ask.library.duq.edu
sfunder5cert.net
dsc.duq.edu
sfunder29cert.net
sso.duq.edu
www.dupress.duq.edu
mosaic.duq.edu
sfunder5cert.net
archives-staff.library.duq.edu
*.msl.duq.edu
scalefunder.net
scalefunder.net
www.dupress.duq.edu
www.dupress.duq.edu
5714315743068160-fe4.pantheonsite.io
www.mathcs.duq.edu
www.sbdc.duq.edu
digital.library.duq.edu
onlinenursing.duq.edu
calendar.library.duq.edu
5714315743068160-fe4.pantheonsite.io
5714315743068160-fe4.pantheonsite.io
duqcrim.com
5714315743068160-fe4.pantheonsite.io
calendar.library.duq.edu
sites.law.duq.edu
sfunder5cert.net
wpm.ccmp.eu
dsc.duq.edu
ddc.duq.edu
scalefunder.net
scalefunder.net
dupress.duq.edu
scalefunder.net
*.duq.edu
ask.library.duq.edu
wpm.ccmp.eu
5714315743068160-fe4.pantheonsite.io
wpm.ccmp.eu
jurismagazine.duqlawblogs.org
quarantine.duq.edu
applications.duq.edu
www.jma.duq.edu
*.authenticate.library.duq.edu
sfunder1cert.net
*.cr.duq.edu
edtech.msltest.duq.edu
dupress.duq.edu
*.duq.edu
5714315743068160-fe4.pantheonsite.io
ddc.duq.edu
winapps.duq.edu
sfunder15cert.net
wpm.ccmp.eu
scalefunder.net
ask.library.duq.edu
calendar.library.duq.edu
calendar.library.duq.edu
5714315743068160-fe4.pantheonsite.io
jma.msl.duq.edu
dayofgiving.duq.edu
archives-staff.library.duq.edu
archives-staff.library.duq.edu
apply.duq.edu
www.dupress.duq.edu
wpm.ccmp.eu
edtech.msl.duq.edu
scalefunder.net
www.dupress.duq.edu
5714315743068160-fe4.pantheonsite.io
www.dupress.duq.edu
dsc.duq.edu
scalefunder.net
dsc.duq.edu
guides.library.duq.edu
5714315743068160-fe4.pantheonsite.io
scalefunder.net
applications.duq.edu
sedfmweb.cr.duq.edu
sfunder5cert.net
sfunder1cert.net
*.duq.edu
wpm.ccmp.eu
5714315743068160-fe4.pantheonsite.io
view.mail.online.duq.edu
wpm.ccmp.eu
*.duq.edu
5714315743068160-fe4.pantheonsite.io
discover.duq.edu
guides.library.duq.edu
cpass-pub.cr.duq.edu
dupress.duq.edu
mosaic.duq.edu
5714315743068160-fe4.pantheonsite.io
gtm.duq.edu

Certificate

The complete raw certificate details for ask.library.duq.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmE5UiNZ9U1CrhINyAyrG
+odD0D/z6e3dGWzIQM1gncDdhXLritbxvsGWLnyvcdYozTK1SJxVilf3KoMUUCJr
jpzuWGcifW7hnc3c6k7uxa0PxZeptiFjbPxTddnWyIhJn2hi4yQXnjIln+SXezwQ
Fa3gudIddTnfzmeOpjOsEVZAEwiz73Nda89finxS4z564yVDZNAqjUOF8ZNgtZAx
0fVs3XIs6CnGAQ85eUjFlPbxALeZ/dkOm263xVkVYwsKEmmP8yyPLAIJIw3QF4SG
FE5oNnFWgw4j+hFaqWRaDdHP8wXS6HKSTD0wWe2iZI1K8wY1Ejl4fKuwlR1AZCbr
UQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 353054517968199848302575473515202219649573
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-10 12:03:13 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-08 12:03:12 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ask.library.duq.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19226848422474548019859889948438048637878249134111967096275429057422604910484309070164152184501974945542405452919620509005078519826224604816450580472524169431769063576322153333752349432676510285245432803266849833691831250883294448356712188901510785474434553051402097242679545694590229888141899297209282374708753042328944239476515173809184481889733545089041844300012923391628494514294112924267757551526796277573319581331983364319656355389397152685305425979943640980655520884474387813368283157760678607160800770277172026462457983897808279690874604389507871795666830709619097886865093609268964777909511318092156271782737
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							86340fa91e4b5474c9135a02c8b122bec28f8e17
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ask.library.duq.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b19af32d80000040300483046022100b33768fcd9f9e4ffaf3e218fa146ec0a431a1018d02f1c962aa0c7cd0e0f41e902210099b68a1ef8eedb4bc2af0ea7d8b0cfede2062c527a84012df1f8126e5a8d0e060076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b19af32c9000004030047304502203026650cd855a138bd6e4f8a906a2282f4d89adf42285577e8f12c63de10bede02210082bca4ac2a6f47f1d52b7dc3babf144c52c6eefc7648f82ef9fef9119c8274ce
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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