status.iota.org

Issued by R3

About this certificate

This digital certificate with serial number 03:16:b4:30:e2:0d:dd:fa:62:e1:b1:74:60:5b:76:43:5c:24 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=status.iota.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:16:b4:30:e2:0d:dd:fa:62:e1:b1:74:60:5b:76:43:5c:24
Serial Number (int): 269062584721955116088458387413045700942884
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: b3:a9:ee:dc:49:29:6d:1a:e4:2d:f6:18:eb:2a:f8:4e:0a:5b:bb:5b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 9b:71:95:90:e8:f3:db:26:77:51:c2:c1:02:98:94:70:4a:f3:a0:c8
Fingerprint (sha256): 1e:f8:5f:f6:dd:d5:d4:0d:39:87:c1:24:61:6e:30:b8:95:e8:64:1b:0c:bd:3a:49:1f:ae:1a:cd:be:a4:cc:22

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate status.iota.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for status.iota.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

status.iota.org

Other certificates including the domain name iota.org

(limited to 100 certificates)
powbox.testnet.iota.org
transparency.iota.org
iota.org
nodes.testnet.iota.org
transparency.iota.org
datum.iota.org
app.loginfo.ca
assets.iota.org
nodes.devnet.iota.org
insights.iota.org
tradedemo.iota.org
roadmap.iota.org
kyc.iota.org
sni164330.cloudflaressl.com
sni164330.cloudflaressl.com
dev.iota.org
iota.org
dev.iota.org
client.chatterslaundry.co.nz
kyc.iota.org
sni164330.cloudflaressl.com
standupbot.iota.org
sni164330.cloudflaressl.com
trinity-beta-ios.iota.org
industry.iota.org
utils-api.iota.org
utils-api.iota.org
ecosystem.iota.org
ppa.taneko.net
test.risk-focus.com
sni164330.cloudflaressl.com
blog.iota.org
data.iota.org
nodes.spamnet.iota.org
nodes.canary.spamnet.iota.org
nodes.stable.spamnet.iota.org
ipfs.iota.org
data.iota.org
sni164330.cloudflaressl.com
ssl470338.cloudflaressl.com
transparency.iota.org
ecosystem.iota.org
trinity-beta-ios.iota.org
faucet.devnet.iota.org
mfpvolunteer.com
vault.secops.fra.ext.iota.org
sni164330.cloudflaressl.com
vault.secops.fra.ext.iota.org
discord.iota.org
docs-api.iota.org
ssl470339.cloudflaressl.com
trinity-alpha.iota.org
roadmap.iota.org
nodes.spamnet.iota.org
nodes.stable.spamnet.iota.org
sni164330.cloudflaressl.com
nodes.iota.org
altnodes.devnet.iota.org
utils.iota.org
www.iota.org
dev.iota.org
dena.ai
docs.iota.org
trinity-alpha.iota.org
tumur.me
sni164330.cloudflaressl.com
newsletter-api.iota.org
status.iota.org
data.iota.org
faucet.devnet.iota.org
sni164330.cloudflaressl.com
ecosystem.iota.org
dev.iota.org
utils-api.iota.org
dev.iota.org
iota.org
docs.iota.org
trinity.iota.org
ipfs.iota.org
datum.iota.org
dashboards.spamnet.iota.org
sni164330.cloudflaressl.com
newsletter.iota.org
csworkindiauatpassword.creatorofone.in
nodes.devnet.iota.org
industry.iota.org
nodes.devnet.iota.org
faucet.testnet.iota.org
sni164330.cloudflaressl.com
nodes.spamnet.iota.org
talk.iota.org
eclass.iota.org
nodes.devnet.iota.org
docs-api.iota.org
sni164330.cloudflaressl.com
ssl470338.cloudflaressl.com
sni164330.cloudflaressl.com
eclass.iota.org
iota.org
datum.iota.org

Certificate

The complete raw certificate details for status.iota.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt/aej/iDAW2s8WN9sUdJ
IOBv+Y1aYc8CmaSEymuBxkDJZJcYLK9dvHOieHdIS55GJ0j7B7UvtP8+4Vdd8vLm
oGd/lkS5USCDTnQdCpn5NoWGDaPJbBNrMB8BH2NT/tKM0zkodfH0OAuPIm2Jy9li
lZDKqKNHEl1/q4buXDTqq29vqnXPKmOZag5NA5Y2IdPWc5/5xb5OTV6l8xIKOXES
G97GABYNoS66zImzTIWsGBRWZPImg+pyA6sXlujHLY1HHWOYf8tf6D/HC7jQqbrN
iXygWwF57NdgB3Xj2aAnKP/2/KV4ZUzw7tQKYrkeCPSXuvl6rTfZ0dTx7F+pEYCM
QwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 269062584721955116088458387413045700942884
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-17 23:34:12 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-15 23:34:11 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'status.iota.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23223222359758415926198303613661370524272479116257816871263588583020669101469853229548971979082828819143115041262353942743253219268290054937538151359942851729911618775278823137676805423016572462667045599673202149614396324477938935327212863781228429052734525038268734282059631499463953412155422106087260580336286682195558315403147891053732308958408661891684709524529243992725299360053874739562497192103033949878437510825368746266961931247978839967351842349219102056025800816329243343402209734483721967219505224872689009470571320674969834663910948564312850397520069339675124828864122119506262550850397771042336370887747
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							b3a9eedc49296d1ae42df618eb2af84e0a5bbb5b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'status.iota.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b4034515f0000040300473045022100ec576cb02492a6e63f2b53f88cf002c447438924ffb7686abee520e34a78ce3602207e147afc9a1e122b0f0816c1969a5ac310cfa54ec36b2e5c36541ec34eab0ff50076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b4034517f00000403004730450220342ddd530291555703a11fdacdb5eef34540a99cfeddc04e9d8f9b7907121cc5022100aa913cd48807dd0f060a95059e718fd672017c5419fb39b4ff9c6112169ace1a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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