4h.ansci.cornell.edu
Issued by R3
About this certificate
This digital certificate with serial number 03:51:f2:14:ba:5a:12:ff:77:86:be:da:3d:4c:66:0d:1c:d8 was issued on by Let's Encrypt.
With 70 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=4h.ansci.cornell.edu
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:51:f2:14:ba:5a:12:ff:77:86:be:da:3d:4c:66:0d:1c:d8Serial Number (int): 289221510316458476294402836346545258699992
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 9a:fd:9c:5c:25:27:f7:3d:a7:63:fa:00:6a:0c:82:e1:98:41:d4:9a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 81:64:bf:aa:48:a3:8f:e0:cf:5e:b5:a3:03:42:a0:42:7e:98:40:1e
Fingerprint (sha256): 1e:8c:df:cf:e2:b2:80:06:0b:f5:eb:b5:61:22:09:4c:49:6d:62:fd:4a:2c:4f:f7:cc:63:e3:85:3b:85:97:f5
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate 4h.ansci.cornell.edu
70
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 4h.ansci.cornell.edu
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
4h.ansci.cornell.edu
aadcawarenessacademy.com
agents.fridayhealthplans.com
astralpower.com
beyondbreakthrough.caltech.edu
breeding.rutgers.edu
clinicaltrials.targetovariancancer.org.uk
colektor.gsm.cornell.edu
community.levelaccess.com
confiscated.sites.ps-pantheon.com
countweb.med.harvard.edu
dental.elitelearning.com
dev-mtc-www.metrotech.edu
dev.bendigo.vic.gov.au
dev.mville.edu
dev.portal.dexis.com
dev.raflearning.org
developer-test-roadsideapi.allstate.com
developerportal.northeastern.edu
digitalscholarship.lsa.umich.edu
domaintest.cals.cornell.edu
domaintest.cce.cornell.edu
domino.gsm.cornell.edu
funeral.elitelearning.com
goverment.krtv.com
h20.stanford.edu
healthy-aging.advanceweb.com
id.multidev.gsm.cornell.edu
info.francistuttle.edu
layer.gsm.cornell.edu
live.pantheon.theactivetimes.com
lucky.gsm.cornell.edu
menaconstruction.meed.com
messaging-dev.stanford.edu
mnr.umbro.com
multidev.gsm.cornell.edu
newstudentguide-staging.sfsu.edu
nwkevents.accessintel.com
old.atr.org
origin-www.nobelbiocare.com
ot.elitelearning.com
ottomanhistorians.fas.harvard.edu
pantheon01.slac.stanford.edu
pantheon02.slac.stanford.edu
pantheon04.slac.stanford.edu
player.krtv.com
preprod.entomology.cals.cornell.edu
preprod.foodsafety.foodscience.cornell.edu
preprod.nyfoodsafety.cals.cornell.edu
preprod.producesafetyalliance.cornell.edu
redesign.umbro.com
redirects.cbfs.dnr.cornell.edu
search.nscee.edu
services.natera.com
smaxwin.advanceweb.com
sustainable-farming.rutgers.edu
test.environment.cornell.edu
test.rbwm.gov.uk
testparks.indy.gov
vonza.gbci.org
vonza383.gbci.org
vonzaplay.gbci.org
www-stage.cs.sunysb.edu
www.catalyst.harvard.edu
www.china.umd.edu
www.orientation.smhs.gwu.edu
www.ottomanhistorians.fas.harvard.edu
www.raflearning.org
www.test1.csiamerica.com
wwwnews.ucf.edu
aadcawarenessacademy.com
agents.fridayhealthplans.com
astralpower.com
beyondbreakthrough.caltech.edu
breeding.rutgers.edu
clinicaltrials.targetovariancancer.org.uk
colektor.gsm.cornell.edu
community.levelaccess.com
confiscated.sites.ps-pantheon.com
countweb.med.harvard.edu
dental.elitelearning.com
dev-mtc-www.metrotech.edu
dev.bendigo.vic.gov.au
dev.mville.edu
dev.portal.dexis.com
dev.raflearning.org
developer-test-roadsideapi.allstate.com
developerportal.northeastern.edu
digitalscholarship.lsa.umich.edu
domaintest.cals.cornell.edu
domaintest.cce.cornell.edu
domino.gsm.cornell.edu
funeral.elitelearning.com
goverment.krtv.com
h20.stanford.edu
healthy-aging.advanceweb.com
id.multidev.gsm.cornell.edu
info.francistuttle.edu
layer.gsm.cornell.edu
live.pantheon.theactivetimes.com
lucky.gsm.cornell.edu
menaconstruction.meed.com
messaging-dev.stanford.edu
mnr.umbro.com
multidev.gsm.cornell.edu
newstudentguide-staging.sfsu.edu
nwkevents.accessintel.com
old.atr.org
origin-www.nobelbiocare.com
ot.elitelearning.com
ottomanhistorians.fas.harvard.edu
pantheon01.slac.stanford.edu
pantheon02.slac.stanford.edu
pantheon04.slac.stanford.edu
player.krtv.com
preprod.entomology.cals.cornell.edu
preprod.foodsafety.foodscience.cornell.edu
preprod.nyfoodsafety.cals.cornell.edu
preprod.producesafetyalliance.cornell.edu
redesign.umbro.com
redirects.cbfs.dnr.cornell.edu
search.nscee.edu
services.natera.com
smaxwin.advanceweb.com
sustainable-farming.rutgers.edu
test.environment.cornell.edu
test.rbwm.gov.uk
testparks.indy.gov
vonza.gbci.org
vonza383.gbci.org
vonzaplay.gbci.org
www-stage.cs.sunysb.edu
www.catalyst.harvard.edu
www.china.umd.edu
www.orientation.smhs.gwu.edu
www.ottomanhistorians.fas.harvard.edu
www.raflearning.org
www.test1.csiamerica.com
wwwnews.ucf.edu
Other certificates including the domain name cornell.edu
(limited to 100 certificates)
usda-int.library.cornell.edu
island.cnf.cornell.edu
dbme.dyson.cornell.edu
www.llmoverview.law.cornell.edu
dfbs.cornell.edu
engr-cms-multi-ssl.cit.cornell.edu
staticweb.ssit.scl.cornell.edu
atstaticapps.cit.cornell.edu
ubsc.cornell.edu
newstudents.cornell.edu
test-web-lws.edu.help
www.nys4h.cce.cornell.edu
5769623379116032-fe2.pantheonsite.io
carpepm.almonds.com
5693048138760192-fe2.pantheonsite.io
*.givegab.com
dns-vetting1c.map.fastly.net
5686812383117312-fe3.pantheonsite.io
allianceforscience.cornell.edu
scholarship.sha.cornell.edu
vertere.ehs.cornell.edu
llmoverview.law.cornell.edu
5764748591235072-fe2.pantheonsite.io
5747286126624768-fe3.pantheonsite.io
manage.esign.cornell.edu
fs-lb-1.fs.cornell.edu
it.uahs.arizona.edu
www.pryde.bctr.cornell.edu
cluster3.technolutions.net
lingual.phonetics.cornell.edu
apl.cs.cornell.edu
annualreport.cals.cornell.edu
crane.chem.cornell.edu
badwall.cac.cornell.edu
resumebook.acsu.cornell.edu
scabusa.ag.cornell.edu
5727217287954432-fe1.pantheonsite.io
3cpg.cornell.edu
ucdc.edu
cluster3.technolutions.net
classcouncil.cornell.edu
5693048138760192-fe2.pantheonsite.io
5202656289095680-fe4.pantheonsite.io
kanbur.aem.cornell.edu
cals.cornell.edu
5691420614590464-fe3.pantheonsite.io
aws-110-042.internal.library.cornell.edu
5709068098338816-fe3.pantheonsite.io
5636647567753216-fe1.pantheonsite.io
hdil.human.cornell.edu
nartc.fcm.arizona.edu
sf-lib-lms-018.serverfarm.cornell.edu
legacy.ece.cornell.edu
verne.soc.cornell.edu
blog.johnson.cornell.edu
5730774057746432-fe4.pantheonsite.io
5654672874405888-fe3.pantheonsite.io
avedon.med.cornell.edu
calendar.sdzsafaripark.org
5763210187636736-fe2.pantheonsite.io
engineering.cornell.edu
s001.med.cornell.edu
puppet.coecis.cornell.edu
sullivan.cce.cornell.edu
coffeabase.org
5707324073181184-fe2.pantheonsite.io
5700866052980736-fe2.pantheonsite.io
bearinmind.eclipsco.org
gunalert02.ornith.cornell.edu
3fadmin.govdelivery.com
d2.shared.global.fastly.net
tier.dyson.cornell.edu
newfit.cit.cornell.edu
5658962204557312-fe4.pantheonsite.io
5736907271045120-fe1.pantheonsite.io
library.cornell.edu
pryde.bctr.cornell.edu
lassp.cornell.edu
newsletter.research.cornell.edu
5686536431468544-fe1.pantheonsite.io
streetfilms.org
5763210187636736-fe2.pantheonsite.io
5659822271758336-fe3.pantheonsite.io
5654961308303360-fe2.pantheonsite.io
charon.ece.cornell.edu
www.cmm.cornell.edu
delib-cal.qatar-weill.cornell.edu
urmc.cs.cornell.edu
calscomlabs-multi-ssl.cit.cornell.edu
webeditor.dyson.cornell.edu
5769623379116032-fe2.pantheonsite.io
dns-vetting1g.map.fastly.net
5736907271045120-fe1.pantheonsite.io
5740240702537728-fe2.pantheonsite.io
hotelie.sha.cornell.edu
courses1.cit.cornell.edu
5637369860456448-fe1.pantheonsite.io
www.systems.cs.cornell.edu
forms-dev.serverfarm.cornell.edu
werdle.via.cornell.edu
island.cnf.cornell.edu
dbme.dyson.cornell.edu
www.llmoverview.law.cornell.edu
dfbs.cornell.edu
engr-cms-multi-ssl.cit.cornell.edu
staticweb.ssit.scl.cornell.edu
atstaticapps.cit.cornell.edu
ubsc.cornell.edu
newstudents.cornell.edu
test-web-lws.edu.help
www.nys4h.cce.cornell.edu
5769623379116032-fe2.pantheonsite.io
carpepm.almonds.com
5693048138760192-fe2.pantheonsite.io
*.givegab.com
dns-vetting1c.map.fastly.net
5686812383117312-fe3.pantheonsite.io
allianceforscience.cornell.edu
scholarship.sha.cornell.edu
vertere.ehs.cornell.edu
llmoverview.law.cornell.edu
5764748591235072-fe2.pantheonsite.io
5747286126624768-fe3.pantheonsite.io
manage.esign.cornell.edu
fs-lb-1.fs.cornell.edu
it.uahs.arizona.edu
www.pryde.bctr.cornell.edu
cluster3.technolutions.net
lingual.phonetics.cornell.edu
apl.cs.cornell.edu
annualreport.cals.cornell.edu
crane.chem.cornell.edu
badwall.cac.cornell.edu
resumebook.acsu.cornell.edu
scabusa.ag.cornell.edu
5727217287954432-fe1.pantheonsite.io
3cpg.cornell.edu
ucdc.edu
cluster3.technolutions.net
classcouncil.cornell.edu
5693048138760192-fe2.pantheonsite.io
5202656289095680-fe4.pantheonsite.io
kanbur.aem.cornell.edu
cals.cornell.edu
5691420614590464-fe3.pantheonsite.io
aws-110-042.internal.library.cornell.edu
5709068098338816-fe3.pantheonsite.io
5636647567753216-fe1.pantheonsite.io
hdil.human.cornell.edu
nartc.fcm.arizona.edu
sf-lib-lms-018.serverfarm.cornell.edu
legacy.ece.cornell.edu
verne.soc.cornell.edu
blog.johnson.cornell.edu
5730774057746432-fe4.pantheonsite.io
5654672874405888-fe3.pantheonsite.io
avedon.med.cornell.edu
calendar.sdzsafaripark.org
5763210187636736-fe2.pantheonsite.io
engineering.cornell.edu
s001.med.cornell.edu
puppet.coecis.cornell.edu
sullivan.cce.cornell.edu
coffeabase.org
5707324073181184-fe2.pantheonsite.io
5700866052980736-fe2.pantheonsite.io
bearinmind.eclipsco.org
gunalert02.ornith.cornell.edu
3fadmin.govdelivery.com
d2.shared.global.fastly.net
tier.dyson.cornell.edu
newfit.cit.cornell.edu
5658962204557312-fe4.pantheonsite.io
5736907271045120-fe1.pantheonsite.io
library.cornell.edu
pryde.bctr.cornell.edu
lassp.cornell.edu
newsletter.research.cornell.edu
5686536431468544-fe1.pantheonsite.io
streetfilms.org
5763210187636736-fe2.pantheonsite.io
5659822271758336-fe3.pantheonsite.io
5654961308303360-fe2.pantheonsite.io
charon.ece.cornell.edu
www.cmm.cornell.edu
delib-cal.qatar-weill.cornell.edu
urmc.cs.cornell.edu
calscomlabs-multi-ssl.cit.cornell.edu
webeditor.dyson.cornell.edu
5769623379116032-fe2.pantheonsite.io
dns-vetting1g.map.fastly.net
5736907271045120-fe1.pantheonsite.io
5740240702537728-fe2.pantheonsite.io
hotelie.sha.cornell.edu
courses1.cit.cornell.edu
5637369860456448-fe1.pantheonsite.io
www.systems.cs.cornell.edu
forms-dev.serverfarm.cornell.edu
werdle.via.cornell.edu
Certificate
The complete raw certificate details for 4h.ansci.cornell.edu in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIMKjCCCxKgAwIBAgISA1HyFLpaEv93hr7aPUxmDRzYMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTgwNTU1MzZaFw0yNDA0MTcwNTU1MzVaMB8xHTAbBgNVBAMT FDRoLmFuc2NpLmNvcm5lbGwuZWR1MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAwHSnemv0wZzcXAgMkBQXztwjNHFrHpIs5axrzzrdlw7T+GZAQLPiUvSZ mF3ScRQ1Ni77M7wvvj8WKgEm6kmkIGsqEr1NwVO/9M+bfL4ePy1ywV87Wx7ZOVVK 4JWJMqctOtWZynJz3jX67Nda0+9B++4/N4TAaLpUnxu83mMaTL+l/8yYin0iItxx Z3YRMvL8oMO9BWqFighCSszfIpRufGHjpEeodJZe7aLi7DcePvwyXZWi/al1YQeC dFkrpkcgk8myhP/APzQjk3bdKAlwKQDdvQR4Y3b+bMJVibDWVrVqjLz+ybpaAJiO jKOmp9NDC6LZPJujVsE+mvYR8y2ZVQIDAQABo4IJSzCCCUcwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBSa/ZxcJSf3Padj+gBqDILhmEHUmjAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzCCB1EGA1UdEQSCB0gwggdEghQ0aC5hbnNjaS5jb3JuZWxsLmVkdYIY YWFkY2F3YXJlbmVzc2FjYWRlbXkuY29tghxhZ2VudHMuZnJpZGF5aGVhbHRocGxh bnMuY29tgg9hc3RyYWxwb3dlci5jb22CHmJleW9uZGJyZWFrdGhyb3VnaC5jYWx0 ZWNoLmVkdYIUYnJlZWRpbmcucnV0Z2Vycy5lZHWCKWNsaW5pY2FsdHJpYWxzLnRh cmdldG92YXJpYW5jYW5jZXIub3JnLnVrghhjb2xla3Rvci5nc20uY29ybmVsbC5l ZHWCGWNvbW11bml0eS5sZXZlbGFjY2Vzcy5jb22CIWNvbmZpc2NhdGVkLnNpdGVz LnBzLXBhbnRoZW9uLmNvbYIYY291bnR3ZWIubWVkLmhhcnZhcmQuZWR1ghhkZW50 YWwuZWxpdGVsZWFybmluZy5jb22CGWRldi1tdGMtd3d3Lm1ldHJvdGVjaC5lZHWC FmRldi5iZW5kaWdvLnZpYy5nb3YuYXWCDmRldi5tdmlsbGUuZWR1ghRkZXYucG9y dGFsLmRleGlzLmNvbYITZGV2LnJhZmxlYXJuaW5nLm9yZ4InZGV2ZWxvcGVyLXRl c3Qtcm9hZHNpZGVhcGkuYWxsc3RhdGUuY29tgiBkZXZlbG9wZXJwb3J0YWwubm9y dGhlYXN0ZXJuLmVkdYIgZGlnaXRhbHNjaG9sYXJzaGlwLmxzYS51bWljaC5lZHWC G2RvbWFpbnRlc3QuY2Fscy5jb3JuZWxsLmVkdYIaZG9tYWludGVzdC5jY2UuY29y bmVsbC5lZHWCFmRvbWluby5nc20uY29ybmVsbC5lZHWCGWZ1bmVyYWwuZWxpdGVs ZWFybmluZy5jb22CEmdvdmVybWVudC5rcnR2LmNvbYIQaDIwLnN0YW5mb3JkLmVk dYIcaGVhbHRoeS1hZ2luZy5hZHZhbmNld2ViLmNvbYIbaWQubXVsdGlkZXYuZ3Nt LmNvcm5lbGwuZWR1ghZpbmZvLmZyYW5jaXN0dXR0bGUuZWR1ghVsYXllci5nc20u Y29ybmVsbC5lZHWCIGxpdmUucGFudGhlb24udGhlYWN0aXZldGltZXMuY29tghVs dWNreS5nc20uY29ybmVsbC5lZHWCGW1lbmFjb25zdHJ1Y3Rpb24ubWVlZC5jb22C Gm1lc3NhZ2luZy1kZXYuc3RhbmZvcmQuZWR1gg1tbnIudW1icm8uY29tghhtdWx0 aWRldi5nc20uY29ybmVsbC5lZHWCIG5ld3N0dWRlbnRndWlkZS1zdGFnaW5nLnNm c3UuZWR1ghlud2tldmVudHMuYWNjZXNzaW50ZWwuY29tggtvbGQuYXRyLm9yZ4Ib b3JpZ2luLXd3dy5ub2JlbGJpb2NhcmUuY29tghRvdC5lbGl0ZWxlYXJuaW5nLmNv bYIhb3R0b21hbmhpc3RvcmlhbnMuZmFzLmhhcnZhcmQuZWR1ghxwYW50aGVvbjAx LnNsYWMuc3RhbmZvcmQuZWR1ghxwYW50aGVvbjAyLnNsYWMuc3RhbmZvcmQuZWR1 ghxwYW50aGVvbjA0LnNsYWMuc3RhbmZvcmQuZWR1gg9wbGF5ZXIua3J0di5jb22C I3ByZXByb2QuZW50b21vbG9neS5jYWxzLmNvcm5lbGwuZWR1gipwcmVwcm9kLmZv b2RzYWZldHkuZm9vZHNjaWVuY2UuY29ybmVsbC5lZHWCJXByZXByb2Qubnlmb29k c2FmZXR5LmNhbHMuY29ybmVsbC5lZHWCKXByZXByb2QucHJvZHVjZXNhZmV0eWFs bGlhbmNlLmNvcm5lbGwuZWR1ghJyZWRlc2lnbi51bWJyby5jb22CHnJlZGlyZWN0 cy5jYmZzLmRuci5jb3JuZWxsLmVkdYIQc2VhcmNoLm5zY2VlLmVkdYITc2Vydmlj ZXMubmF0ZXJhLmNvbYIWc21heHdpbi5hZHZhbmNld2ViLmNvbYIfc3VzdGFpbmFi bGUtZmFybWluZy5ydXRnZXJzLmVkdYIcdGVzdC5lbnZpcm9ubWVudC5jb3JuZWxs LmVkdYIQdGVzdC5yYndtLmdvdi51a4ISdGVzdHBhcmtzLmluZHkuZ292gg52b256 YS5nYmNpLm9yZ4IRdm9uemEzODMuZ2JjaS5vcmeCEnZvbnphcGxheS5nYmNpLm9y Z4IXd3d3LXN0YWdlLmNzLnN1bnlzYi5lZHWCGHd3dy5jYXRhbHlzdC5oYXJ2YXJk LmVkdYIRd3d3LmNoaW5hLnVtZC5lZHWCHHd3dy5vcmllbnRhdGlvbi5zbWhzLmd3 dS5lZHWCJXd3dy5vdHRvbWFuaGlzdG9yaWFucy5mYXMuaGFydmFyZC5lZHWCE3d3 dy5yYWZsZWFybmluZy5vcmeCGHd3dy50ZXN0MS5jc2lhbWVyaWNhLmNvbYIPd3d3 bmV3cy51Y2YuZWR1MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIE AgSB9gSB8wDxAHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGN G1qRuQAABAMARzBFAiEA72sp4S8MHbiw60j2LwlAFC8K/RtiLQkMAZfDSQtFe1UC ICtjXIkR9w5cdYw2LGuq1InEmeMpTnAh98KKAXH34SBuAHcAouK/1h7eLy8HoNZO bTen3GVDsMa1LqLat4r4mm31F9gAAAGNG1qRwAAABAMASDBGAiEAi9gSvVUydpOW gnXSkxfrqr/WATSIgadqa1kT8DM1eLMCIQDEaVWvQNejZDRANk0rc2+x/oy2m776 bQN89TstgDFUqTANBgkqhkiG9w0BAQsFAAOCAQEAfkZWEHLxxgclNKbH0kh0115S fOBZKNbv4Fdj8MLDNyXIRirGkQjCcjYBWRMFhdNhlwDk1T7rHsOqxaAahlIKcB11 yby2rRQjJsiDb94RtIOH2ciV6vOEhgIMPZwZXuSuhdIDko/OubBtDHWK0ZvePgVZ nHLAwkot2koe0IhTVV1du2venSs/BE01nwAdWFl1KSubp9blCG9vlhgJ48+akBQV 9a+YDlNNZstE08qJ9KBE3Blvb8XEg6j54+t63ujyLhNeOvFrrGhxnA53rbaZ7m+n gbwB3vD+2xPz8ieni/Bg+9IipPRA/j3op1TU9qaA3j+znfuyrasgnRYSggn6qA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwHSnemv0wZzcXAgMkBQX ztwjNHFrHpIs5axrzzrdlw7T+GZAQLPiUvSZmF3ScRQ1Ni77M7wvvj8WKgEm6kmk IGsqEr1NwVO/9M+bfL4ePy1ywV87Wx7ZOVVK4JWJMqctOtWZynJz3jX67Nda0+9B ++4/N4TAaLpUnxu83mMaTL+l/8yYin0iItxxZ3YRMvL8oMO9BWqFighCSszfIpRu fGHjpEeodJZe7aLi7DcePvwyXZWi/al1YQeCdFkrpkcgk8myhP/APzQjk3bdKAlw KQDdvQR4Y3b+bMJVibDWVrVqjLz+ybpaAJiOjKOmp9NDC6LZPJujVsE+mvYR8y2Z VQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 289221510316458476294402836346545258699992 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-18 05:55:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-17 05:55:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '4h.ansci.cornell.edu' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24295278889261962340330570593076765092564594026629510040566849443941721212705222905469227342749655760761925628146467776896918161669177237506061638055976839317974540229085566909601290432792766688540743857041618507082302908209321494362376641574366690514136936988276436757394515726000349835912320682069511736058985263380188984941851626522348036976567257123937402752130277851931257557691396509910741392947845349707974538616547869499133806197294376341097227039876415788275764051935080580783290065738507278734728703160147978353048962982659390140744073959855669537306275821116832669307766091573181749448001568724078979553621 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9afd9c5c2527f73da763fa006a0c82e19841d49a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (1864 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '4h.ansci.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aadcawarenessacademy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'agents.fridayhealthplans.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'astralpower.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'beyondbreakthrough.caltech.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'breeding.rutgers.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clinicaltrials.targetovariancancer.org.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'colektor.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'community.levelaccess.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'confiscated.sites.ps-pantheon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'countweb.med.harvard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dental.elitelearning.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev-mtc-www.metrotech.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.bendigo.vic.gov.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.mville.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.portal.dexis.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dev.raflearning.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'developer-test-roadsideapi.allstate.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'developerportal.northeastern.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digitalscholarship.lsa.umich.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domaintest.cals.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domaintest.cce.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'domino.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'funeral.elitelearning.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'goverment.krtv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'h20.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthy-aging.advanceweb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'id.multidev.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'info.francistuttle.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'layer.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live.pantheon.theactivetimes.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lucky.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'menaconstruction.meed.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'messaging-dev.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mnr.umbro.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'multidev.gsm.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newstudentguide-staging.sfsu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nwkevents.accessintel.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'old.atr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'origin-www.nobelbiocare.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ot.elitelearning.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ottomanhistorians.fas.harvard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pantheon01.slac.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pantheon02.slac.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pantheon04.slac.stanford.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'player.krtv.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.entomology.cals.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.foodsafety.foodscience.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.nyfoodsafety.cals.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'preprod.producesafetyalliance.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redesign.umbro.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'redirects.cbfs.dnr.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'search.nscee.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'services.natera.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'smaxwin.advanceweb.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sustainable-farming.rutgers.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.environment.cornell.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'test.rbwm.gov.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'testparks.indy.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vonza.gbci.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vonza383.gbci.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vonzaplay.gbci.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www-stage.cs.sunysb.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.catalyst.harvard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.china.umd.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.orientation.smhs.gwu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ottomanhistorians.fas.harvard.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.raflearning.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.test1.csiamerica.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwwnews.ucf.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d1b5a91b90000040300473045022100ef6b29e12f0c1db8b0eb48f62f0940142f0afd1b622d090c0197c3490b457b5502202b635c8911f70e5c758c362c6baad489c499e3294e7021f7c28a0171f7e1206e007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d1b5a91c000000403004830460221008bd812bd55327693968275d29317ebaabfd601348881a76a6b5913f0333578b3022100c46955af40d7a3643440364d2b736fb1fe8cb69bbefa6d037cf53b2d803154a9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007e46561072f1c6072534a6c7d24874d75e527ce05928d6efe05763f0c2c33725c8462ac69108c272360159130585d3619700e4d53eeb1ec3aac5a01a86520a701d75c9bcb6ad142326c8836fde11b48387d9c895eaf38486020c3d9c195ee4ae85d203928fceb9b06d0c758ad19bde3e05599c72c0c24a2dda4a1ed08853555d5dbb6bde9d2b3f044d359f001d585975292b9ba7d6e5086f6f961809e3cf9a901415f5af980e534d66cb44d3ca89f4a044dc196f6fc5c483a8f9e3eb7adee8f22e135e3af16bac68719c0e77adb699ee6fa781bc01def0fedb13f3f227a78bf060fbd222a4f440fe3de8a754d4f6a680de3fb39dfbb2adab209d16128209faa8