newjerseyassembly.org

Issued by R3

About this certificate

This digital certificate with serial number 04:90:85:7e:67:7d:70:14:17:05:3b:7f:89:5f:43:dd:fc:20 was issued on by Let's Encrypt.

With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=newjerseyassembly.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:90:85:7e:67:7d:70:14:17:05:3b:7f:89:5f:43:dd:fc:20
Serial Number (int): 397627248215526090623331371590683505589280
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: c0:3c:e8:dd:73:b8:62:cd:ea:b2:97:03:a4:c3:64:cb:98:5d:bd:c7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 7a:65:b7:d4:fa:9b:1d:02:36:33:f9:cc:d1:82:1d:2d:3a:63:7c:55
Fingerprint (sha256): 3c:d5:e3:fa:f6:d5:4b:66:61:ea:48:dd:51:98:54:f1:32:f0:3c:01:fd:36:d9:ec:eb:0d:7a:35:3e:ab:e4:37

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate newjerseyassembly.org

9

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for newjerseyassembly.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

getgoinc.com.voltairsolar.com
marksomers.com
newjerseyassembly.org
rbitco.in.mistral.in
siroga.com
starwarsclub.net.functionalbeauty.com
turntablebelts.us
unitednationsforlife.org.jameskrogers.com
www.cbgusa.com

Other certificates including the domain name newjerseyassembly.org

(limited to 100 certificates)
newjerseyassembly.org
arbitragefund.ca
lafotomodellaitaliana.world
canibuild.house
newportgardens.org
newjerseyassembly.org
wehairthechampions.com.showigniter.com.newjerseyassembly.org
cuffusa.org
modalonmain.ca
paint.vc
peoplesrights.ca
newjerseyassembly.org
appcard.org

Certificate

The complete raw certificate details for newjerseyassembly.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs3e8M2K0MEhyDqK9JXbp
B1moC5VbPiODhyYnlebrpCQWBKfFdRIXV8kwTkWIDHA/h4eWQitVWB+GKnl6yySK
df9Ht2r/T4myq8/A1eazdqneMl29hNu1JFsAqBfFZvxeaWh+tl9yg9h2q3Bb5fRW
5BhICHlaXvJf60ud1Cgw17fqshRzdfLJsi+ElktkeRS85PRLEkP3EArL3mRdEd+r
cQeFnUYK7bEBz3U4WgoIuAHOF3xHTZbkFHrPxHFUtsgmSInhUjTJF8DcjrWQuSz/
uP4Xt93GwU5bwz9KsGe0HF94bSFL1oL5yjErB0epkVK9MN2Pw71zH6/MVBCDA+u5
GQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 397627248215526090623331371590683505589280
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-16 20:21:56 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-15 20:21:55 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'newjerseyassembly.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22655700196452945457277328184210153051756842847131795898010806130662538482651294781335475869444436791338853368349020001471059027514935286535671083115163911862051592778323692093465078240879945006818039207604241624717763229795880901321146326364508999806479235907646691984283968773428491538219748846606540738321047357959488437004184155670640401649187346124298830479539939872421480298353564224426097569429400178428119651124299139897345638616268244740753305273374583054225447932591862695027290611534371164080575964958168651967170022011843599869744115197184979558596825730908160505153559914457983274686356638115790630664473
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c03ce8dd73b862cdeab29703a4c364cb985dbdc7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (224 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'getgoinc.com.voltairsolar.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'marksomers.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newjerseyassembly.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rbitco.in.mistral.in'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'siroga.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'starwarsclub.net.functionalbeauty.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'turntablebelts.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'unitednationsforlife.org.jameskrogers.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cbgusa.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a9fdf2a1c0000040300483046022100a5b7627d91215b16df9313ee8919f1655090318dc3c847067d7238694128d781022100bc95a13b4c2116f0a034da9a6295b55c05bdbf6c04a7acc02cf9b7b599ccb3e7007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018a9fdf2a5b0000040300483046022100929cc6787252cfa14be654cad7d5fc4396461db8a444977eb030814c72101b61022100a9214cc6cd0f1cb277388937d093a54706c6fa8813c5d154669e2573689503ad
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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