oni.co.nz
Issued by R3
About this certificate
This digital certificate with serial number 03:bd:cc:9a:cb:1f:90:7c:63:d7:6b:90:86:25:74:69:d0:d8 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=oni.co.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:bd:cc:9a:cb:1f:90:7c:63:d7:6b:90:86:25:74:69:d0:d8Serial Number (int): 325922191388024385534911948701936533491928
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 66:f4:7c:28:a5:ad:97:80:5f:a6:47:35:f9:d3:8f:ca:ed:1f:a2:e4
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 68:93:a9:23:3d:13:37:ae:2a:79:f9:7c:b3:4d:a0:a3:3b:77:45:15
Fingerprint (sha256): 2c:2f:be:be:24:82:84:1d:66:41:60:b8:d5:5e:11:1e:82:24:d8:88:af:12:d4:4d:18:e7:61:a9:9b:0b:bb:b5
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate oni.co.nz
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for oni.co.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
oni.co.nz
Other certificates including the domain name oni.co.nz
(limited to 100 certificates)
oni.co.nz
www.message.watch
www.oni.co.nz
creativelasersystems.in
speakuprzn.ru
www.oni.co.nz
www.oni.co.nz
oni.co.nz
oni.co.nz
oni.co.nz
oni.co.nz
console.work.cdlbox.app
www.flatz.app
www.oni.co.nz
www.oni.co.nz
www.oni.co.nz
oni.co.nz
www.oni.co.nz
www.oni.co.nz
hubertspringer.pl
www.oni.co.nz
oni.co.nz
www.oni.co.nz
test-portal.oni.co.nz
oni.co.nz
www.oni.co.nz
forojuanfe.appsiste.co
oni.co.nz
brain.bimedoc.com
oni.co.nz
www.oni.co.nz
www.oni.co.nz
aquariusbeauty.co.uk
oni.co.nz
www.associationsaintraphaelantony.com
oni.co.nz
www.oni.co.nz
oni.co.nz
creativelasersystems.in
oni.co.nz
oni.co.nz
oni.co.nz
fcbeauty.s-match.jp
oni.co.nz
www.oni.co.nz
www.ooowl.jp
hubertspringer.pl
oni.co.nz
oni.co.nz
wallet.verified.network
oni.co.nz
www.oni.co.nz
oni.co.nz
www.oni.co.nz
www.oni.co.nz
www.oni.co.nz
aquariusbeauty.co.uk
oni.co.nz
oni.co.nz
www.oni.co.nz
jasig.org
www.oni.co.nz
oni.co.nz
www.oni.co.nz
oni.co.nz
www.oni.co.nz
site.featsapp.com
oni.co.nz
app.feriadeteatro.com
www.oni.co.nz
speakuprzn.ru
www.message.watch
www.oni.co.nz
creativelasersystems.in
speakuprzn.ru
www.oni.co.nz
www.oni.co.nz
oni.co.nz
oni.co.nz
oni.co.nz
oni.co.nz
console.work.cdlbox.app
www.flatz.app
www.oni.co.nz
www.oni.co.nz
www.oni.co.nz
oni.co.nz
www.oni.co.nz
www.oni.co.nz
hubertspringer.pl
www.oni.co.nz
oni.co.nz
www.oni.co.nz
test-portal.oni.co.nz
oni.co.nz
www.oni.co.nz
forojuanfe.appsiste.co
oni.co.nz
brain.bimedoc.com
oni.co.nz
www.oni.co.nz
www.oni.co.nz
aquariusbeauty.co.uk
oni.co.nz
www.associationsaintraphaelantony.com
oni.co.nz
www.oni.co.nz
oni.co.nz
creativelasersystems.in
oni.co.nz
oni.co.nz
oni.co.nz
fcbeauty.s-match.jp
oni.co.nz
www.oni.co.nz
www.ooowl.jp
hubertspringer.pl
oni.co.nz
oni.co.nz
wallet.verified.network
oni.co.nz
www.oni.co.nz
oni.co.nz
www.oni.co.nz
www.oni.co.nz
www.oni.co.nz
aquariusbeauty.co.uk
oni.co.nz
oni.co.nz
www.oni.co.nz
jasig.org
www.oni.co.nz
oni.co.nz
www.oni.co.nz
oni.co.nz
www.oni.co.nz
site.featsapp.com
oni.co.nz
app.feriadeteatro.com
www.oni.co.nz
speakuprzn.ru
Certificate
The complete raw certificate details for oni.co.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgISA73MmssfkHxj12uQhiV0adDYMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTYxODE1NDVaFw0yNDA3MTUxODE1NDRaMBQxEjAQBgNVBAMT CW9uaS5jby5uejCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJPtVMHi deJMl7fSYwscHUfACrMAmDF09Zg6WcdR7OUM2ld8rITYSp+gwnSCwQSUf1rXoTZb 0pYHRRJ4sIb7ABqXozevJzkuTk4ssgF1Cv2wZ0VMhBrtivDwwmVKiMkpZ+xC0njo HeyzJ2Tv/HQ7daYlJkK3d/SAq5Ul3ibGM8QDYddVzNqbIv+xbm/WjBFbKm7CoQb8 s0/YkmOEMLirAWV9JFHMBUdxiFkalsJFS8MKKYXiGXUANJmDzU1BiYXNwVWuqTks +oqUBe40zvr/DaioRqFNSeS9b7fSkFvijrf6Lrf7Xb9/Jy5l1IE3HYLdYekrBuHG 84PvvBrkyCJewZsCAwEAAaOCAgowggIGMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU ZvR8KKWtl4Bfpkc1+dOPyu0fouQwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wFAYD VR0RBA0wC4IJb25pLmNvLm56MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYB BAHWeQIEAgSB9ASB8QDvAHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznY hHMAAAGO6FYs1QAABAMARjBEAiA4UOMx6gYA++hrz9Hh8sgG0+0Ai27Yq7Pz5M4u IdTFQwIgacDiKyB9W4KfwJktXAlHDengNaBit8+7lgGVsxbJ5kQAdgDf4VbrqgWv tZwPhnGNqMAyTq5W2W6n9aVqAdHBO75SXAAAAY7oVi2ZAAAEAwBHMEUCIH4ndtmo iiu2VL93VeLZDszJKVi0TW4i6ocAwN8AnOK0AiEAo17Ebz34O3aUm3rDq7m4tW4X eyY5dtOTTCef2JdzDFMwDQYJKoZIhvcNAQELBQADggEBAGtbfIl7wZC/YenFyf+t 9O0AmjNL6xnrFvLwEm5XMOwlhmGuwo9X2P4eo9IzluHozyH3DoHhw9X+C0I8PGrp CJJxB+oxqZs50mPpbbbITTRReuky6F+lahAh2M8z7BhbF/NtBeW0ekD6o5e6GuhZ pngf2xOAuaOCkVv6dx0yO6B4u2yQYBp65agCXQnh/jLo/t7HX3StKK6VSCjK15rW qj4BrKf9qiPVC7jXw6k3UJjtoilgMU4PRHFW06EctMY85mBtjdky5R1H61DAS94U Eqzmel59G81ZRHDtsuZFvqeUq8JdAsTDRW+f2wAd5Gp09IWxBeHseqiSD23Ll7uo rPs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAk+1UweJ14kyXt9JjCxwd R8AKswCYMXT1mDpZx1Hs5QzaV3yshNhKn6DCdILBBJR/WtehNlvSlgdFEniwhvsA GpejN68nOS5OTiyyAXUK/bBnRUyEGu2K8PDCZUqIySln7ELSeOgd7LMnZO/8dDt1 piUmQrd39ICrlSXeJsYzxANh11XM2psi/7Fub9aMEVsqbsKhBvyzT9iSY4QwuKsB ZX0kUcwFR3GIWRqWwkVLwwopheIZdQA0mYPNTUGJhc3BVa6pOSz6ipQF7jTO+v8N qKhGoU1J5L1vt9KQW+KOt/out/tdv38nLmXUgTcdgt1h6SsG4cbzg++8GuTIIl7B mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 325922191388024385534911948701936533491928 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-16 18:15:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-15 18:15:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'oni.co.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18674063149111310752007489101580164127327184993663007783791880704182301698619187981726194360266114865680883692917435318586389757833588918509410859184610610816732934606070296869819343595261442463021983424198779927544513820221458520945696176389453669252048565366536436943059506118274815669103215498067149657682349624222685357218924486880331669689024809267720846136877209372778135130478055684530295844445085783306016960948088334004048582672986725901672683671333982517503225888575303992024267454119253963685207307601903805553783203247292950906977770444241515427702269073590473484298918187335066566410121604462744835113371 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 66f47c28a5ad97805fa64735f9d38fcaed1fa2e4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oni.co.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ee8562cd5000004030046304402203850e331ea0600fbe86bcfd1e1f2c806d3ed008b6ed8abb3f3e4ce2e21d4c543022069c0e22b207d5b829fc0992d5c09470de9e035a062b7cfbb960195b316c9e644007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ee8562d99000004030047304502207e2776d9a88a2bb654bf7755e2d90eccc92958b44d6e22ea8700c0df009ce2b4022100a35ec46f3df83b76949b7ac3abb9b8b56e177b263976d3934c279fd897730c53 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 006b5b7c897bc190bf61e9c5c9ffadf4ed009a334beb19eb16f2f0126e5730ec258661aec28f57d8fe1ea3d23396e1e8cf21f70e81e1c3d5fe0b423c3c6ae908927107ea31a99b39d263e96db6c84d34517ae932e85fa56a1021d8cf33ec185b17f36d05e5b47a40faa397ba1ae859a6781fdb1380b9a382915bfa771d323ba078bb6c90601a7ae5a8025d09e1fe32e8fedec75f74ad28ae954828cad79ad6aa3e01aca7fdaa23d50bb8d7c3a9375098eda22960314e0f447156d3a11cb4c63ce6606d8dd932e51d47eb50c04bde1412ace67a5e7d1bcd594470edb2e645bea794abc25d02c4c3456f9fdb001de46a74f485b105e1ec7aa8920f6dcb97bba8acfb