www.theundercurrent.com.au
Issued by R3
About this certificate
This digital certificate with serial number 03:85:bb:ef:cb:84:a5:be:e4:14:e6:3c:f0:70:f4:92:69:1d was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.theundercurrent.com.au
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:85:bb:ef:cb:84:a5:be:e4:14:e6:3c:f0:70:f4:92:69:1dSerial Number (int): 306844223317765087465320072719689418172701
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a1:a5:2b:c0:6c:e6:ef:ec:e1:f9:38:3a:04:0e:a2:8f:00:ed:61:73
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d8:92:c7:19:27:68:fe:7c:16:48:9d:f7:45:85:48:55:2a:09:d0:8a
Fingerprint (sha256): 2a:9c:90:9d:75:04:7f:ff:7d:8b:f8:27:b8:82:1f:16:b4:28:78:8a:67:63:35:d1:3c:86:51:b6:19:cc:15:dd
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.theundercurrent.com.au
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.theundercurrent.com.au
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
Other certificates including the domain name theundercurrent.com.au
(limited to 100 certificates)
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
www.theundercurrent.com.au
Certificate
The complete raw certificate details for www.theundercurrent.com.au in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFFzCCA/+gAwIBAgISA4W778uEpb7kFOY88HD0kmkdMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA4MjgyMzQ4MjZaFw0yMzExMjYyMzQ4MjVaMCUxIzAhBgNVBAMT Gnd3dy50aGV1bmRlcmN1cnJlbnQuY29tLmF1MIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEA3YsncgpJy6VaqPDK/IOq3UCeR6J5yGfRg09XEmWqoI9SvsVS +Nk3puJft7tlo2jRTo5vek6Gp2L9Bp+89tBMbS9Rb1qDlUjXJzmj/JEXpfukrkbB gAgFA8ETw2jfPPzxleo/Q2EbyWGHAuI0FDyutARldU0SDvJrWBkf8hm7NlWmzoUa Xnbvt45IMW19HusedljdgqzSz17G2CDNw3uIwveD53ezhJiRrgyONKAIN+QzlZv9 b2yeZitXKoi2PAkEq1PYzgjGdWwqPohKZkzmkCJG5DzR7gbaCtSTJ49DB7117Oo3 vGpF3ffE1f20tXqsQVBlOoH00bRFKzBFaI5uvQIDAQABo4ICMjCCAi4wDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBShpSvAbObv7OH5ODoEDqKPAO1hczAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzA9BgNVHREENjA0ghZ0aGV1bmRlcmN1cnJlbnQuY29tLmF1 ghp3d3cudGhldW5kZXJjdXJyZW50LmNvbS5hdTATBgNVHSAEDDAKMAgGBmeBDAEC ATCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB0ALc++yTfnE26dfI5xbpY9Gxd/ELP ep81xJ4dCYEl7bSZAAABij7DYkgAAAQDAEUwQwIfbYKNRB1VM9KQitP0m5xUerts l1AbjU+NJ94bjvOLTQIgSnnoYusvVkF9kKrLJGIc6za6C0yHnPAFAjbXy9JeMjcA dgCt9776fP8QyIudPZwePhhqtGcpXc+xDCTKhYY069yCigAAAYo+w2KqAAAEAwBH MEUCIGwAX3dLu5KHXFienyagUgTbGI9DvY/DOhkBHu7CL+ToAiEA/8hjiwczGhVK wuIdNPa/A8krsP5QSTs60AzOEtfG40UwDQYJKoZIhvcNAQELBQADggEBAExZepgP zk87Sno6q+i1rpIJAPS+ISAUkaLWTLwibpwk1k9nkUM+sB7hEWwDcfuhCJcDmc3f qXCUG2bG77wdKE3DYt8ELvjl452cm+vYIo/uO0+k9kwSDoff4I7WL7xStYOO9ws7 P9/uR38cxnCKAEEO5VUM7KMwmzD9QxbHDabkWOcOn8Kn3XbsDX3u9CXl+fjIzrH5 CVdMEdiPCrMFBtPxIXQvN/PjHAVfC45pAeNO6oFUe0sZBsHrjlb8mkwsooHu11+P h5UFfUegG8psUN0HaDuLE7u5ORv1KNu8uMt26ZmS/H3q92r6aLBINHi7tS9sQ6hK Dcu4sOm5b0SGzlA= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3YsncgpJy6VaqPDK/IOq 3UCeR6J5yGfRg09XEmWqoI9SvsVS+Nk3puJft7tlo2jRTo5vek6Gp2L9Bp+89tBM bS9Rb1qDlUjXJzmj/JEXpfukrkbBgAgFA8ETw2jfPPzxleo/Q2EbyWGHAuI0FDyu tARldU0SDvJrWBkf8hm7NlWmzoUaXnbvt45IMW19HusedljdgqzSz17G2CDNw3uI wveD53ezhJiRrgyONKAIN+QzlZv9b2yeZitXKoi2PAkEq1PYzgjGdWwqPohKZkzm kCJG5DzR7gbaCtSTJ49DB7117Oo3vGpF3ffE1f20tXqsQVBlOoH00bRFKzBFaI5u vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 306844223317765087465320072719689418172701 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-28 23:48:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-26 23:48:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.theundercurrent.com.au' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27967284833734288608188552708915275857112562994782001938091960273551466802288377646959694814817771578521309149051190993614652168113478824282856046181788494495986962183386947111660428664428002160256011693044248440063155451971720930611869321414368944976632174725696120202340157796184632424134978667472177257935866156342879665355225223465224714613483377189079107135906249087211215937424103816336216417521190248060383559531500964734642942145895735319725027622181793826161601382949123218385354022765516306636083288221432357865151810873640420998700449799109785454578258782788363384500756039667409297219444815074912270970557 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a1a52bc06ce6efece1f9383a040ea28f00ed6173 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'theundercurrent.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.theundercurrent.com.au' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007400b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a3ec362480000040300453043021f6d828d441d5533d2908ad3f49b9c547abb6c97501b8d4f8d27de1b8ef38b4d02204a79e862eb2f56417d90aacb24621ceb36ba0b4c879cf0050236d7cbd25e3237007600adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018a3ec362aa000004030047304502206c005f774bbb92875c589e9f26a05204db188f43bd8fc33a19011eeec22fe4e8022100ffc8638b07331a154ac2e21d34f6bf03c92bb0fe50493b3ad00cce12d7c6e345 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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