maggy.org
Issued by R3
About this certificate
This digital certificate with serial number 04:16:0a:00:80:ad:3e:34:b7:82:4e:0c:e7:33:5d:01:35:f1 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=maggy.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:16:0a:00:80:ad:3e:34:b7:82:4e:0c:e7:33:5d:01:35:f1Serial Number (int): 355948650689133635125148732687111426225649
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 10:0b:7c:ae:36:89:60:bd:1d:7c:dd:4a:92:ac:55:3f:00:d4:c4:47
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 2e:cc:ea:30:5e:f3:19:02:02:a1:e7:fa:13:ab:76:6a:0f:42:b0:72
Fingerprint (sha256): 37:bd:c8:80:f9:2d:13:2b:23:e5:3e:2e:5f:cf:82:4f:aa:06:52:63:df:4f:65:5c:92:91:fe:ca:40:44:57:50
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate maggy.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for maggy.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
maggy.org
Other certificates including the domain name maggy.org
(limited to 100 certificates)
coinxnet.com
garafraxis.world
manchesterstemcells.com
maggy.org
www.jointpainnorthcarolina.com
amb.church
www.hudson-mfg.com
chicken-superstore.com
stemcellrhodeisland.com
www.popvid360.com
maggy.org
www.maggy.org
www.benefitcheck.com
maggy.org
maggy.org
www.maggy.org
www.checkoff.me
www.neocare.org
internet.house
www.telegnostic.com
garafraxis.world
manchesterstemcells.com
maggy.org
www.jointpainnorthcarolina.com
amb.church
www.hudson-mfg.com
chicken-superstore.com
stemcellrhodeisland.com
www.popvid360.com
maggy.org
www.maggy.org
www.benefitcheck.com
maggy.org
maggy.org
www.maggy.org
www.checkoff.me
www.neocare.org
internet.house
www.telegnostic.com
Certificate
The complete raw certificate details for maggy.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4DCCBMigAwIBAgISBBYKAICtPjS3gk4M5zNdATXxMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDkwODIzMjBaFw0yNDA2MDcwODIzMTlaMBQxEjAQBgNVBAMT CW1hZ2d5Lm9yZzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAPTFgouO 75vaffUhVeiZw4IiLJX69nOLpWdkU3SllhpSXB+j/x58vk3XclvYeZgfohbooBjE SEBbsOHMkmkTgdux1om22rVtdzdRVCadyI5KjISNMF8n6mKYENcO2zKLsAgEU7oG pk91761W5PswSNcD3bJJWUGGFZyd72DhpfNWrjiP67glOaoxzajaz01d40j/fVZs wkcsAT4nD6v6BONFQoc748IxNLbXiqNDSBSPRrVNIdq1WdqbZUvm2OhVf2LJWOXS IWM5XGv49hg4NWyv0BIwF+gHixN31FMqqO924ClcEvRduJTg8RtiZ4ruACFjdGZV TRWAkotj7O3LW/va+1qMvNg6swCw0WqjmLyNJe6fPC7VbkQnP62JiK5D602SCEWB JB2xhoQ0PQNweRnKp0LpvWWLxiduugB1uhowiZQamfT0n7A2zXwoi02UFdMZddH9 TEvuSWzLCb21NDJR7QnAWgOGIVsm6INp4mRe2p+qF0qD5eknZAFJJcx2vZmetl42 Uh9XMeFo6++NzvqoqdnKoU/imSyoh6loI9zgnvZALSDduUx8DwsZMdb/Ld2HJzaq YGFBdzrq+cStbCSt0Fyq1KHYxbf6Q+aE7c9Jlv/RCmxOZpCqDwAB1Kj5aVRlRZL5 0T3E7bh3YlsE6y16GVl84C309/f/lRMObrMZAgMBAAGjggIMMIICCDAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFBALfK42iWC9HXzdSpKsVT8A1MRHMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMBQGA1UdEQQNMAuCCW1hZ2d5Lm9yZzATBgNVHSAEDDAKMAgG BmeBDAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AEiw42vapkc0D+VqAvqd MOscUgHLVt0sgdm7v6s52IRzAAABjiKGJD4AAAQDAEcwRQIhAMQ4Y/B4O2mGx8DM ZcsSPcd6r4g7+GeSN2mHSBl3shhrAiAatLJ0+9vp3UYrSIe74J5mPmkv6qLI/iC5 LVr8H82DoAB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjiKG JEIAAAQDAEgwRgIhAKTj0wl37DirDvHqMDTbn05ozeLAjcvlyqRmcf9zREz/AiEA uzqTLhzn3ST1DSgEkCSungL09fhvNMEpdxm6+Qi1h6kwDQYJKoZIhvcNAQELBQAD ggEBAK+I3seUnvQcyd5d0VyPWv6Itgnof0tOrjbAZFd/Kpl/oKIztY99Qa22oRC2 YoC7vhbNRRkW09w7saPFgDB8YBii4U9rNmWn0rzg8WsDMyjadfJ0gEWvE0UvGtAG kttJrVgtAKnMtMKzdoV/+K2fNpNiS5mB5yXHZvVIcuA8GKjxX2rHjqpo2YuX+zQ/ 9ILMGVbYyYd6QjJXp813ANw4Z1rR4shUMKIP8YuZiY7GF4MNr+mbp4x3D0IsH3Ak j0vdRDvB5okrSVrPuTBmCMIo2wKPdWHTzudtbfWCeGVwrRqFA8T/LvpkP1hbzS5t c8RZ/Rda3ZniEJFA+cfb5i2pBms= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA9MWCi47vm9p99SFV6JnD giIslfr2c4ulZ2RTdKWWGlJcH6P/Hny+TddyW9h5mB+iFuigGMRIQFuw4cySaROB 27HWibbatW13N1FUJp3IjkqMhI0wXyfqYpgQ1w7bMouwCARTugamT3XvrVbk+zBI 1wPdsklZQYYVnJ3vYOGl81auOI/ruCU5qjHNqNrPTV3jSP99VmzCRywBPicPq/oE 40VChzvjwjE0tteKo0NIFI9GtU0h2rVZ2ptlS+bY6FV/YslY5dIhYzlca/j2GDg1 bK/QEjAX6AeLE3fUUyqo73bgKVwS9F24lODxG2Jniu4AIWN0ZlVNFYCSi2Ps7ctb +9r7Woy82DqzALDRaqOYvI0l7p88LtVuRCc/rYmIrkPrTZIIRYEkHbGGhDQ9A3B5 GcqnQum9ZYvGJ266AHW6GjCJlBqZ9PSfsDbNfCiLTZQV0xl10f1MS+5JbMsJvbU0 MlHtCcBaA4YhWybog2niZF7an6oXSoPl6SdkAUklzHa9mZ62XjZSH1cx4Wjr743O +qip2cqhT+KZLKiHqWgj3OCe9kAtIN25THwPCxkx1v8t3YcnNqpgYUF3Our5xK1s JK3QXKrUodjFt/pD5oTtz0mW/9EKbE5mkKoPAAHUqPlpVGVFkvnRPcTtuHdiWwTr LXoZWXzgLfT39/+VEw5usxkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 355948650689133635125148732687111426225649 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-09 08:23:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-07 08:23:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'maggy.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 998580692687613790331741388482329719880013232786362890996965961767341979867283476443355727005578855048107465613922104701237985886672647511749091205734888894126530984438141779109696798134844083908275697745411323131821064531459166065265067100792023375110757621645923833055932475352976548777530676036294181302005199677112345499811307488441395066697566939315891225658510613244126660247832974953106328700887800321676856195816483102336971740559492399432012205819356391734466852374338133213789807879828965724264800376532069663422385627050953683003337195155907588334974654678882219326191300100453242161964568542252199574767322274107188415839483200431899639361576823718442653653399213979086402330674660514131583660039178145041056842331094994984601661288722984332186652973542427345770908874613653970782716612978026271664968220909191067959285394372805354369065467483959685181727643560050606081178553281064938248481767637530940408701248348294931433918333826261741879569517083555246071047435468215352714977203512883279928224373818242524911851249245024175115015360286167168596406829208685924323561923980104115869095868382116599970042174948701233014168284227584919158524573897000913019455976939210329131360587942553041594847334672665347793240371993 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 100b7cae368960bd1d7cdd4a92ac553f00d4c447 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maggy.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e2286243e0000040300473045022100c43863f0783b6986c7c0cc65cb123dc77aaf883bf86792376987481977b2186b02201ab4b274fbdbe9dd462b4887bbe09e663e692feaa2c8fe20b92d5afc1fcd83a0007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e228624420000040300483046022100a4e3d30977ec38ab0ef1ea3034db9f4e68cde2c08dcbe5caa46671ff73444cff022100bb3a932e1ce7dd24f50d28049024ae9e02f4f5f86f34c1297719baf908b587a9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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