www.muscatinecountyiowa.gov

Issued by R10

About this certificate

This digital certificate with serial number 04:23:0a:fa:42:b9:2c:44:63:8e:0f:7b:1f:f9:cd:f1:37:9a was issued on by Let's Encrypt.

With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=www.muscatinecountyiowa.gov

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:23:0a:fa:42:b9:2c:44:63:8e:0f:7b:1f:f9:cd:f1:37:9a
Serial Number (int): 360373618276756259597021738361111729747866
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 94:dd:ff:71:0b:21:59:a2:06:24:3f:4e:99:7d:d0:4a:12:4f:22:d6
AuthorityKeyId: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (sha1): a9:05:7d:ea:00:c4:a2:e8:f7:20:29:90:1d:f3:de:1e:63:7e:00:6f
Fingerprint (sha256): 23:ed:fa:57:1c:98:a2:8d:be:83:70:03:c4:8a:94:eb:c3:c9:23:7e:06:53:96:87:df:35:1e:e8:5b:e7:bd:5b

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation information

OCSP Server: http://r10.o.lencr.org

Check the revocation status for certificate www.muscatinecountyiowa.gov

10

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.muscatinecountyiowa.gov

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

co.muscatine.ia.us
muscatinecounty.iowa.gov
muscatinecountyhistoricpreservation.org
muscatinecountyiowa.gov
muscatinecountysheriff.com
www.co.muscatine.ia.us
www.muscatinecounty.iowa.gov
www.muscatinecountyhistoricpreservation.org
www.muscatinecountyiowa.gov
www.muscatinecountysheriff.com

Other certificates including the domain name muscatinecountyiowa.gov

(limited to 100 certificates)
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov
www.muscatinecountyiowa.gov

Certificate

The complete raw certificate details for www.muscatinecountyiowa.gov in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGGjCCBQKgAwIBAgISBCMK+kK5LERjjg97H/nN8TeaMA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTAwHhcNMjQwNjE1MDIwMDAwWhcNMjQwOTEzMDE1OTU5WjAmMSQwIgYDVQQD
Ext3d3cubXVzY2F0aW5lY291bnR5aW93YS5nb3YwggEiMA0GCSqGSIb3DQEBAQUA
A4IBDwAwggEKAoIBAQCDCj2H9DAjXd/67vK5KqW2OJngga/BYAmSCmMovit8631a
g1Y9TGW2C5ZQmzxvsdo9rzJbDDceYhhcr2PxuoW0QDs32F6pwpW/H2vDyE8StQ+s
3b0dnQZPys5rpz48dCsjmalAQm8vh9soW/uYp7/PCVJOILVz+R34Cf5h3vIisqSc
ATFyc8tjT7rjMyH9bzqcXPGGlqJv1o4tixgIqWpann/0xwnQmyd6x13kVYq1t4Ei
2liPcd2SaP+SbolVr9b6VnANObx+CSIIaWsClII3sHdlC9bVIHZv/M0FW1kzr3NB
EtUZYQCsw2xSqmFumz7ERedUTmbsTD7T7pObs6KHAgMBAAGjggMzMIIDLzAOBgNV
HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud
EwEB/wQCMAAwHQYDVR0OBBYEFJTd/3ELIVmiBiQ/Tpl90EoSTyLWMB8GA1UdIwQY
MBaAFLu8w0el5LypxsOkcgwQjaI14cjoMFcGCCsGAQUFBwEBBEswSTAiBggrBgEF
BQcwAYYWaHR0cDovL3IxMC5vLmxlbmNyLm9yZzAjBggrBgEFBQcwAoYXaHR0cDov
L3IxMC5pLmxlbmNyLm9yZy8wggE5BgNVHREEggEwMIIBLIISY28ubXVzY2F0aW5l
LmlhLnVzghhtdXNjYXRpbmVjb3VudHkuaW93YS5nb3aCJ211c2NhdGluZWNvdW50
eWhpc3RvcmljcHJlc2VydmF0aW9uLm9yZ4IXbXVzY2F0aW5lY291bnR5aW93YS5n
b3aCGm11c2NhdGluZWNvdW50eXNoZXJpZmYuY29tghZ3d3cuY28ubXVzY2F0aW5l
LmlhLnVzghx3d3cubXVzY2F0aW5lY291bnR5Lmlvd2EuZ292git3d3cubXVzY2F0
aW5lY291bnR5aGlzdG9yaWNwcmVzZXJ2YXRpb24ub3Jnght3d3cubXVzY2F0aW5l
Y291bnR5aW93YS5nb3aCHnd3dy5tdXNjYXRpbmVjb3VudHlzaGVyaWZmLmNvbTAT
BgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1ABmY
EHEJ8NZSLjCA0p4/ZLuDbijM+Q9Sju7fzko/FrTKAAABkBnWaWQAAAQDAEYwRAIg
bxQPVWOFJOgITi134KgI2D4j8RbP2dfZe89QVptYUTkCIAYw/7ykVhSaVfDCWNnH
RqXnx8f3PSPEDHciHODPh+zsAHYAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8o
hez4ZG4AAAGQGdZpRAAABAMARzBFAiAF4KhCwjtkEKE0BeUJhnKfNxGfBc6mBK5d
9IZ8sirhTgIhAJQtpD9j3coFHxqp4X/NBDfj1elX+Zo0ssHENNLr0x9VMA0GCSqG
SIb3DQEBCwUAA4IBAQCvGS28Tzbjrk/nwty0XLAtN1Sa3M3ZzrW945KAC5VI1teJ
bD6RViSGuVSrKqCzpXRu4jiwMq80C+snZHabcQSEnnp+Sxdyp7ajEtsfVd+8XBKH
P6j8AgBomX5Oj0Jgs/g/JljEJoUzLxAlgjm4L+YS5lIyFuA2bj4JH0ADQdx04TdJ
62HdWZePsUfsU9b/VV4Z6Eg62WfXqRKvOOr5SXF3zvVF1mz2PPDEowhNCegoaxNa
/+hfRMxt9eZNVXWqTn+Ls0SHmmp5Dp50kmTc0/ozRiCF6u//jfvna9gw+L4GnK6F
8atKTRCqjwuI6mZjpYWpk5j8kZdMqNOlKmGMcNpU
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgwo9h/QwI13f+u7yuSql
tjiZ4IGvwWAJkgpjKL4rfOt9WoNWPUxltguWUJs8b7HaPa8yWww3HmIYXK9j8bqF
tEA7N9heqcKVvx9rw8hPErUPrN29HZ0GT8rOa6c+PHQrI5mpQEJvL4fbKFv7mKe/
zwlSTiC1c/kd+An+Yd7yIrKknAExcnPLY0+64zMh/W86nFzxhpaib9aOLYsYCKlq
Wp5/9McJ0Jsnesdd5FWKtbeBItpYj3Hdkmj/km6JVa/W+lZwDTm8fgkiCGlrApSC
N7B3ZQvW1SB2b/zNBVtZM69zQRLVGWEArMNsUqphbps+xEXnVE5m7Ew+0+6Tm7Oi
hwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 360373618276756259597021738361111729747866
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-15 02:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-13 01:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.muscatinecountyiowa.gov'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16542267658174877622835028846577087176344739751623664161761617127036430379102915879530190300989754022454121456584880408487870276777410741607596375425151253478416385570088850921517814955292978462059527315209850427057802204894628231616548049885824579918321626872845250627943234226343157665398283514250211542239660198085797150131941780437822080762073808672557767267691202199702948837507680784443918807959651164332113781290337727193030311285972087192023193944408927661534634425161215956538765416505798651991801165858226288733971354743553310389652701876563631182843416607476214006477778937489370223623189498761785034121863
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							94ddff710b2159a206243f4e997dd04a124f22d6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (304 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'co.muscatine.ia.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'muscatinecounty.iowa.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'muscatinecountyhistoricpreservation.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'muscatinecountyiowa.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'muscatinecountysheriff.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.co.muscatine.ia.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.muscatinecounty.iowa.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.muscatinecountyhistoricpreservation.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.muscatinecountyiowa.gov'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.muscatinecountysheriff.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000019019d66964000004030046304402206f140f55638524e8084e2d77e0a808d83e23f116cfd9d7d97bcf50569b58513902200630ffbca456149a55f0c258d9c746a5e7c7c7f73d23c40c77221ce0cf87ecec0076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000019019d669440000040300473045022005e0a842c23b6410a13405e50986729f37119f05cea604ae5df4867cb22ae14e022100942da43f63ddca051f1aa9e17fcd0437e3d5e957f99a34b2c1c434d2ebd31f55
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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