newjerseyassembly.org
Issued by R3
About this certificate
This digital certificate with serial number 04:90:85:7e:67:7d:70:14:17:05:3b:7f:89:5f:43:dd:fc:20 was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=newjerseyassembly.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:90:85:7e:67:7d:70:14:17:05:3b:7f:89:5f:43:dd:fc:20Serial Number (int): 397627248215526090623331371590683505589280
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c0:3c:e8:dd:73:b8:62:cd:ea:b2:97:03:a4:c3:64:cb:98:5d:bd:c7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 7a:65:b7:d4:fa:9b:1d:02:36:33:f9:cc:d1:82:1d:2d:3a:63:7c:55
Fingerprint (sha256): 3c:d5:e3:fa:f6:d5:4b:66:61:ea:48:dd:51:98:54:f1:32:f0:3c:01:fd:36:d9:ec:eb:0d:7a:35:3e:ab:e4:37
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate newjerseyassembly.org
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for newjerseyassembly.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
getgoinc.com.voltairsolar.com
marksomers.com
newjerseyassembly.org
rbitco.in.mistral.in
siroga.com
starwarsclub.net.functionalbeauty.com
turntablebelts.us
unitednationsforlife.org.jameskrogers.com
www.cbgusa.com
marksomers.com
newjerseyassembly.org
rbitco.in.mistral.in
siroga.com
starwarsclub.net.functionalbeauty.com
turntablebelts.us
unitednationsforlife.org.jameskrogers.com
www.cbgusa.com
Other certificates including the domain name newjerseyassembly.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for newjerseyassembly.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFwjCCBKqgAwIBAgISBJCFfmd9cBQXBTt/iV9D3fwgMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MTYyMDIxNTZaFw0yMzEyMTUyMDIxNTVaMCAxHjAcBgNVBAMT FW5ld2plcnNleWFzc2VtYmx5Lm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCC AQoCggEBALN3vDNitDBIcg6ivSV26QdZqAuVWz4jg4cmJ5Xm66QkFgSnxXUSF1fJ ME5FiAxwP4eHlkIrVVgfhip5esskinX/R7dq/0+JsqvPwNXms3ap3jJdvYTbtSRb AKgXxWb8XmlofrZfcoPYdqtwW+X0VuQYSAh5Wl7yX+tLndQoMNe36rIUc3XyybIv hJZLZHkUvOT0SxJD9xAKy95kXRHfq3EHhZ1GCu2xAc91OFoKCLgBzhd8R02W5BR6 z8RxVLbIJkiJ4VI0yRfA3I61kLks/7j+F7fdxsFOW8M/SrBntBxfeG0hS9aC+cox KwdHqZFSvTDdj8O9cx+vzFQQgwPruRkCAwEAAaOCAuIwggLeMA4GA1UdDwEB/wQE AwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIw ADAdBgNVHQ4EFgQUwDzo3XO4Ys3qspcDpMNky5hdvccwHwYDVR0jBBgwFoAUFC6z F7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVo dHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxl bmNyLm9yZy8wgegGA1UdEQSB4DCB3YIdZ2V0Z29pbmMuY29tLnZvbHRhaXJzb2xh ci5jb22CDm1hcmtzb21lcnMuY29tghVuZXdqZXJzZXlhc3NlbWJseS5vcmeCFHJi aXRjby5pbi5taXN0cmFsLmluggpzaXJvZ2EuY29tgiVzdGFyd2Fyc2NsdWIubmV0 LmZ1bmN0aW9uYWxiZWF1dHkuY29tghF0dXJudGFibGViZWx0cy51c4IpdW5pdGVk bmF0aW9uc2ZvcmxpZmUub3JnLmphbWVza3JvZ2Vycy5jb22CDnd3dy5jYmd1c2Eu Y29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADy AHcAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGKn98qHAAABAMA SDBGAiEApbdifZEhWxbfkxPuiRnxZVCQMY3DyEcGfXI4aUEo14ECIQC8laE7TCEW 8KA02ppilbVcBb2/bASnrMAs+be1mcyz5wB3AK33vvp8/xDIi509nB4+GGq0Zyld z7EMJMqFhjTr3IKKAAABip/fKlsAAAQDAEgwRgIhAJKcxnhyUs+hS+ZUytfV/EOW Rh24pESXfrAwgUxyEBthAiEAqSFMxs0PHLJ3OIk30JOlRwbG+ogTxdFUZp4lc2iV A60wDQYJKoZIhvcNAQELBQADggEBAFOtPTLSiQPYKm9ifCV/DiFMKFpVyx2ZWcl5 OdMx2nLeYqUBHclTquq36SNM5OBbZn2n+ZFFdcq9+AAzlsHpn6+yQqmcmlZF4q4d pX3A+5e6HV+5jjxZfD4jo/Qv/XvWW0iV8vyyDfbQ/XRm9+Td0ECDaByZO65j4lyb M+NIFzDliaDdDiDaxDbTer3MYcEhyugrYPgpHk0J6hEFt5h5IIahwfWfDsbkoFNZ DyMVjqqdJCvSLkeVKSwDScCGtKgoyt6pan+wZi2qB2iodasRovtvlsxdCgFKPu8p kb6Sas92M3rhdwSqwM6T8d3hI3iUNrAmiaJe5LAaZID3xrbqQHc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3e8M2K0MEhyDqK9JXbp B1moC5VbPiODhyYnlebrpCQWBKfFdRIXV8kwTkWIDHA/h4eWQitVWB+GKnl6yySK df9Ht2r/T4myq8/A1eazdqneMl29hNu1JFsAqBfFZvxeaWh+tl9yg9h2q3Bb5fRW 5BhICHlaXvJf60ud1Cgw17fqshRzdfLJsi+ElktkeRS85PRLEkP3EArL3mRdEd+r cQeFnUYK7bEBz3U4WgoIuAHOF3xHTZbkFHrPxHFUtsgmSInhUjTJF8DcjrWQuSz/ uP4Xt93GwU5bwz9KsGe0HF94bSFL1oL5yjErB0epkVK9MN2Pw71zH6/MVBCDA+u5 GQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 397627248215526090623331371590683505589280 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-16 20:21:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-15 20:21:55 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'newjerseyassembly.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22655700196452945457277328184210153051756842847131795898010806130662538482651294781335475869444436791338853368349020001471059027514935286535671083115163911862051592778323692093465078240879945006818039207604241624717763229795880901321146326364508999806479235907646691984283968773428491538219748846606540738321047357959488437004184155670640401649187346124298830479539939872421480298353564224426097569429400178428119651124299139897345638616268244740753305273374583054225447932591862695027290611534371164080575964958168651967170022011843599869744115197184979558596825730908160505153559914457983274686356638115790630664473 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c03ce8dd73b862cdeab29703a4c364cb985dbdc7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (224 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'getgoinc.com.voltairsolar.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marksomers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newjerseyassembly.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rbitco.in.mistral.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'siroga.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'starwarsclub.net.functionalbeauty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'turntablebelts.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'unitednationsforlife.org.jameskrogers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cbgusa.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a9fdf2a1c0000040300483046022100a5b7627d91215b16df9313ee8919f1655090318dc3c847067d7238694128d781022100bc95a13b4c2116f0a034da9a6295b55c05bdbf6c04a7acc02cf9b7b599ccb3e7007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018a9fdf2a5b0000040300483046022100929cc6787252cfa14be654cad7d5fc4396461db8a444977eb030814c72101b61022100a9214cc6cd0f1cb277388937d093a54706c6fa8813c5d154669e2573689503ad . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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