investigations101.org

Issued by R3

About this certificate

This digital certificate with serial number 03:cc:c5:51:fa:cc:61:4b:c5:10:f4:68:79:5a:01:e5:13:26 was issued on by Let's Encrypt.

With 14 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=investigations101.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:cc:c5:51:fa:cc:61:4b:c5:10:f4:68:79:5a:01:e5:13:26
Serial Number (int): 331016744225162413946235708299776568398630
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: ac:72:9e:8f:07:37:99:44:3e:72:a7:ac:77:a5:47:03:07:4e:6d:49
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): fb:7c:23:7e:b7:57:52:27:d4:1d:52:ef:b9:98:aa:9f:5f:8f:93:87
Fingerprint (sha256): 35:88:d8:07:7c:a3:02:67:f0:44:83:9e:9c:84:e3:ff:84:9e:c1:2f:28:51:09:93:31:aa:4e:7c:c5:eb:0a:a8

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate investigations101.org

14

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for investigations101.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

alcalinic.com
eirestaycations.org.emailforvip.com
eph28.com
investigations101.org
jdf.co.in
kubya.com.read-ablebooks.com
luxuryplasticsurgery.com
marchele.com.mooregrouprealtors.com
medicalgalaxy.com
mykatalyst.fitness.a1000cuts.com
nationaldayfoundation.com
reddotwines.com
sdi-12.com
theplacetorecycle.org

Other certificates including the domain name investigations101.org

(limited to 100 certificates)
investigations101.org
investigations101.org
hudson.bible
westkelownavacationrentals.ca
skate.vc
timwiens.ca
arbitrageur.asia
peoplesrights.ca
investigations101.org
investigations101.org
pixelworks.media
steera.healthcare
investigations101.org
investigations101.org
investigations101.org

Certificate

The complete raw certificate details for investigations101.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6pvUkYToNJcBW21eDh3q
nllxxTuFUeoGG1ihCMLl6YNuhI/zohXIew2gmDESQQRFt4YSOMz2sIgmSsvmJ87T
nSnjrnIMGCY9vAjStGalf3danw7f30thtY8LwHMb4lDQTcWggry3sDNbf6RnkDSa
XrFuQ5vvh0mwbqTu8lsLs97Tg68vRjsBsuqcqAoPFlp1FAdWDYmyj6h1m2GPvnLd
u13rb1GXK1MBDbOLeqER5syTBh77xXCWl+OGfPUiq3TTOEr5mE0m19d7mN/EBejm
buiE/HSKQuqZMun4tpKLyGqUTriF9BdLnyBSWAQg+Ffmd2LyaONGI2YYwWxHhrlT
WQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 331016744225162413946235708299776568398630
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-10 05:03:02 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-09 05:03:01 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'investigations101.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29616606169367933383035707809008134911943044624722970640615094119538799885661314715573846337194482143091098659920075738707071057337595672962114302496132034868450783483162415769885249218553280355865656731958291834232273049100503476189393176271616233096925431583222100123647427656566901348311673061081148315454849802639804052663192346112237180275204060291219663213822226154338276766622281451757864524993997916219016653799409102504427553075654306528774275994036559420538073381659407373355875672875344681923757586858709287303314547484334705223994401886028371597736031691747296904790276408627684495195303382688092487504729
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ac729e8f073799443e72a7ac77a54703074e6d49
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (326 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alcalinic.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eirestaycations.org.emailforvip.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'eph28.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'investigations101.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jdf.co.in'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kubya.com.read-ablebooks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'luxuryplasticsurgery.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marchele.com.mooregrouprealtors.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'medicalgalaxy.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mykatalyst.fitness.a1000cuts.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nationaldayfoundation.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'reddotwines.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sdi-12.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'theplacetorecycle.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c52526d350000040300463044022016967fe3ab0b8517fee9f87afd6b04e12aa951c4dfa9ed40429e8ead679f80ee02206eab4ab353349bf27d8c0233cc2d1fa30ab36764c30db1b859a5cdea27770fb8007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c52526d34000004030047304502200dec5aee8647387347f83c000cb6255d2e2b41ec0bae147c78290531f4104e3b022100cc8ffaa46c2814c48cf8065d24344333006e905690aac4696486f87f3401dea2
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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