nopga.org

Issued by R3

About this certificate

This digital certificate with serial number 03:a6:08:f4:a7:31:5c:93:c6:92:16:76:2e:e6:94:cc:42:58 was issued on by Let's Encrypt.

With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=nopga.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:a6:08:f4:a7:31:5c:93:c6:92:16:76:2e:e6:94:cc:42:58
Serial Number (int): 317835634839629521743466842452579368845912
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: a7:5a:65:70:72:67:17:38:bf:29:e6:e1:19:e4:28:8d:eb:97:53:5a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): c8:5c:aa:d5:c9:0a:9c:b0:97:0c:04:3a:3b:33:25:4d:d8:dd:76:40
Fingerprint (sha256): 27:d6:0e:3c:28:4a:4b:57:ee:a7:b6:f5:82:f2:d3:bb:19:46:de:2b:41:6e:21:86:45:a2:4b:7f:74:3a:90:e8

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate nopga.org

6

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for nopga.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

billboardadvertisingtruck.co.checkfrom.com
digitometry.com.presentation.statenationals.us.thecanadianschoolhouse.org
nopga.org
start.thecyndicate.com.thecyndicate.com
thealliancealert.com.toptenheadlines.com
www.nusugarunsugar.com

Other certificates including the domain name nopga.org

(limited to 100 certificates)
papisgirls.ca
nopga.org
nopga.org
arbitrageur.ca
nopga.org
okeydokeykaraoke.ca
nopga.org
nopga.org
nopga.org

Certificate

The complete raw certificate details for nopga.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFxDCCBKygAwIBAgISA6YI9KcxXJPGkhZ2LuaUzEJYMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzA5MjUxNDQxNTVaFw0yMzEyMjQxNDQxNTRaMBQxEjAQBgNVBAMT
CW5vcGdhLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANS48219
DvQGaxfQ8G1dBdTMy1JE4/zg5JrrtPCBRidlCl+vvqKfM7fsjJFAMywZ4rAl693S
tbO7TDgLVSf83M4rp73jIuWwnVxDqXqcgpYssFSmFctCUFoElvSzJXHjgIISNoaZ
EcJnC9ZizmGs5eCnKc1JQE6YwNYBrRMFiJfL6MvqfyKuEqbi3ycsPFq4c83MPmJE
Al3fSAXpXMYEBowNJ2dFZ2oS55oSwzFoLln/vuPGsokVsi9K/6W6Ks21wJkfqkKr
DymUfIPHzgiyhKZuJk5IQL+5cEtzn3fyGwoO3uhaOyOxjD49h7wSGIV+issg/ZuU
K7cGk+lQFwab4TUCAwEAAaOCAvAwggLsMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE
FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU
p1plcHJnFzi/KebhGeQojeuXU1owHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v
nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s
ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wgfgG
A1UdEQSB8DCB7YIqYmlsbGJvYXJkYWR2ZXJ0aXNpbmd0cnVjay5jby5jaGVja2Zy
b20uY29tgklkaWdpdG9tZXRyeS5jb20ucHJlc2VudGF0aW9uLnN0YXRlbmF0aW9u
YWxzLnVzLnRoZWNhbmFkaWFuc2Nob29saG91c2Uub3Jngglub3BnYS5vcmeCJ3N0
YXJ0LnRoZWN5bmRpY2F0ZS5jb20udGhlY3luZGljYXRlLmNvbYIodGhlYWxsaWFu
Y2VhbGVydC5jb20udG9wdGVuaGVhZGxpbmVzLmNvbYIWd3d3Lm51c3VnYXJ1bnN1
Z2FyLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUE
gfIA8AB1ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABis0BGCwA
AAQDAEYwRAIgWAPNjDs47kruvrzvoXsx+Z0kZZAYuU+cznda7s6hnLwCIFmY+gZ4
Amv1YiEJsMyzXd+xgF+986c3GewVo4qVgk21AHcAejKMVNi3LbYg6jjgUh7phBZw
MhOFTTvSK8E6V6NS61IAAAGKzQEYQwAABAMASDBGAiEA7vn/iYl6PBEj+X8O9baR
ppvJuVbNVfMmapEOhfYyAkcCIQCPsWzeRQOjO+8/EIdXvjf+phK+fahsULQCKLbq
nQsG4zANBgkqhkiG9w0BAQsFAAOCAQEAiLpxDdqof/5heXW8Fd3dQBF1Z0oMRj8p
A3xHiVZVfbG0V5ZGT9M7PEdRhB+NQyTjHlxEIIn1ZKvw45ywtev4FN+2Mfk/oDaG
YIkH2JxvkaPylU9g3chQSKlLdddAokFdPRTFzX7lnNEBf0cq2xwpTj9GdPo4ClOW
Pyp/GVlDogLZxMnHddD8kRZozf2CnzfAeIPqJtjxICjx2Yj08v7HLSb4jgQKnmAU
hHdAxYG3c0L8Fwyu8S026YqlmgzQt5enL6bTjO6hG2gU5tEhNGHVMD0dNDH82wnK
hzjbz9cDIT4IkhUj90k7YrRC+D9uLJgQUH6Rzvp2+PxYsbewJfrN0Q==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1LjzbX0O9AZrF9DwbV0F
1MzLUkTj/ODkmuu08IFGJ2UKX6++op8zt+yMkUAzLBnisCXr3dK1s7tMOAtVJ/zc
ziunveMi5bCdXEOpepyCliywVKYVy0JQWgSW9LMlceOAghI2hpkRwmcL1mLOYazl
4KcpzUlATpjA1gGtEwWIl8voy+p/Iq4SpuLfJyw8Wrhzzcw+YkQCXd9IBelcxgQG
jA0nZ0VnahLnmhLDMWguWf++48ayiRWyL0r/pboqzbXAmR+qQqsPKZR8g8fOCLKE
pm4mTkhAv7lwS3Ofd/IbCg7e6Fo7I7GMPj2HvBIYhX6KyyD9m5QrtwaT6VAXBpvh
NQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 317835634839629521743466842452579368845912
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-25 14:41:55 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-24 14:41:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nopga.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26853723335544055548083415583237468827870650409008186053136929887868761315155510166481972612790979366504557116520401157651211407300919284500831681000200181990054713857127820600815840711636503369669953902100929935125039494435597095538488121148721192149869387737544461810469856500989355575293322417472586549828455078916409040654153017088261404759295780847121748325778802232402528362028296686483128853861432448016477717674042517167091976426977251380285740676813118313050222399966013095134122449145522423167257852568932367626679927947821474016374227860546086431718697097640234422788439712683075016416429776396577924702517
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a75a657072671738bf29e6e119e4288deb97535a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'billboardadvertisingtruck.co.checkfrom.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'digitometry.com.presentation.statenationals.us.thecanadianschoolhouse.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nopga.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'start.thecyndicate.com.thecyndicate.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thealliancealert.com.toptenheadlines.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nusugarunsugar.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018acd01182c000004030046304402205803cd8c3b38ee4aeebebcefa17b31f99d24659018b94f9cce775aeecea19cbc02205998fa0678026bf5622109b0ccb35ddfb1805fbdf3a73719ec15a38a95824db50077007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018acd0118430000040300483046022100eef9ff89897a3c1123f97f0ef5b691a69bc9b956cd55f3266a910e85f63202470221008fb16cde4503a33bef3f108757be37fea612be7da86c50b40228b6ea9d0b06e3
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0088ba710ddaa87ffe617975bc15dddd401175674a0c463f29037c478956557db1b45796464fd33b3c4751841f8d4324e31e5c442089f564abf0e39cb0b5ebf814dfb631f93fa03686608907d89c6f91a3f2954f60ddc85048a94b75d740a2415d3d14c5cd7ee59cd1017f472adb1c294e3f4674fa380a53963f2a7f195943a202d9c4c9c775d0fc911668cdfd829f37c07883ea26d8f12028f1d988f4f2fec72d26f88e040a9e6014847740c581b77342fc170caef12d36e98aa59a0cd0b797a72fa6d38ceea11b6814e6d1213461d5303d1d3431fcdb09ca8738dbcfd703213e08921523f7493b62b442f83f6e2c9810507e91cefa76f8fc58b1b7b025facdd1