archivesspace.ben.edu

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:4f:37:7a:b5:dc:d0:1e:9e:06:ea:e3:90:66:4e:22:c4:c4 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=archivesspace.ben.edu

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:4f:37:7a:b5:dc:d0:1e:9e:06:ea:e3:90:66:4e:22:c4:c4
Serial Number (int): 375405195402390780732252021612749930022084
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 98:b9:b6:09:93:c7:c2:94:61:9d:fc:29:3c:1e:d6:d2:c3:1d:7f:8d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 6d:32:1f:d6:ed:40:7d:b1:08:a0:fc:c1:68:d8:1a:14:c0:6f:44:29
Fingerprint (sha256): 41:f8:04:82:cb:ab:94:1b:27:24:82:6a:82:36:3d:1a:02:8e:7b:f3:b7:df:b2:48:85:34:63:0c:16:24:4c:2f

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate archivesspace.ben.edu

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for archivesspace.ben.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

archives.ben.edu
archivesspace.ben.edu

Other certificates including the domain name ben.edu

(limited to 100 certificates)
*.libweb.ben.edu
benueagles.com
benueagles.com
benueagles.com
myfin.ben.edu
servicedesk.massageenvy.com
benueagles.com
live-web-bdt.edu.help
adfs.ben.edu
servicedesk.massageenvy.com
benueagles.com
*.libweb.ben.edu
archivesspace.ben.edu
benueagles.com
secure.ben.edu
servicedesk.massageenvy.com
webvpn.ben.edu
benueagles.com
landing.online.ben.edu
servicedesk.massageenvy.com
forticlient-ems.ben.edu
illiad.ben.edu
landing.online.ben.edu
alumnicommunity.ben.edu
mybenu.ben.edu
online.ben.edu
illiad.ben.edu
webvpn.ben.edu
landing.online.ben.edu
servicedesk.massageenvy.com
*.ben.edu
*.BEN.EDU
servicedesk.massageenvy.com
alerts.ben.edu
*.libweb.ben.edu
landing.online.ben.edu
servicedesk.massageenvy.com
mybenu.ben.edu
servicedesk.massageenvy.com
servicedesk.massageenvy.com
wirelesscert.ben.edu
*.libweb.ben.edu
online.ben.edu
helpdesk.mercurymed.com
5639274879778816-fe4.pantheonsite.io
servicedesk.massageenvy.com
landing.online.ben.edu
benueagles.com
servicedesk.massageenvy.com
benueagles.com
lisle-ipt-cuc01-ms.ben.edu
servicedesk.massageenvy.com
alumnicommunity.ben.edu
benueagles.com
helpdesk.naa.edu
lisle-ipt-cer01.ben.edu
helpdesk.countrypure.com
benueagles.com
alumnicommunity.ben.edu
archivesspace.ben.edu
www.ben.edu
lisle-ipt-cimp01.ben.edu
online.ben.edu
benueagles.com
servicedesk.massageenvy.com
servicedesk.massageenvy.com
online.ben.edu
servicedesk.mazakcorp.com
www.ben.edu
servicedesk.massageenvy.com
helpdesk.countrypure.com
vbenise.ben.edu
benueagles.com
researchguides.ben.edu
servicedesk.massageenvy.com
servicedesk.massageenvy.com
benueagles.com
researchguides.ben.edu
benueagles.com
www.ben.edu
researchguides.ben.edu
servicedesk.massageenvy.com
live-web-bdt.edu.help
housing.ben.edu
researchguides.ben.edu
www.ben.edu
landing.online.ben.edu
benueagles.com
benueagles.com
servicedesk.massageenvy.com
online.ben.edu
help.gmfus.org
print.ben.edu
servicedesk.massageenvy.com
alumnicommunity.ben.edu
servicedesk.massageenvy.com
archivesspace.ben.edu
catalog.ben.edu
leaservicedesk.lea.co.bw
benueagles.com

Certificate

The complete raw certificate details for archivesspace.ben.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt+Zv+uzbmd/mQtSBM4l+
8TcAK+rPqX0dnWcVlI7Ko/wW4hFOrBu1mqF/H28QZvucmwSzNCOLxwF7OwEbDia7
0Ay4IkQikYyWQ98jrydDunSnZ7WPZFhLvp9SPl4D1zRdAMp6dlJstKn34spsF491
offBVTs5Zn/SQ0crAAo0l8qHMwAIJ6CByXCu2GmH+HX5RF7EopbAKdw8bM1jId41
S9pOU3Bk34YKus03PTYv9ZbUeB0iA57NQDpih5scoamgKG1kJdZeHXNOR0BuQGuQ
xeb9iJzdKSPAQ6uqMzSQ6TWeCUeUM4qyaiCMfVY7lcs05NYdqe6thP4dJqiiFAa1
iQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 375405195402390780732252021612749930022084
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-02 02:30:14 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-31 02:30:14 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'archivesspace.ben.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23215242737012808182154714620143882882918283797804737838167077187666532190708775395385824438747046710505439934361246115536279769865429968009450021344627198197614058345201412742650659231184506016262242991027556061136164327648257109177847872505486815118456415813996312365451445993140067977809306476249501035539338348920748855122502076939549473449876347495431216438233948502813677547046893831841766977697838759609565583211322354457061250346012428529311295727627871657153725055823385950086280295850901177449013533377457570911656969890738676058313964367374787665127996580968360173776563106447250211495925007641832461874569
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							98b9b60993c7c294619dfc293c1ed6d2c31d7f8d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'archives.ben.edu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'archivesspace.ben.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016d8a84af8200000403004630440220385489eb93e1546500180605245c3abecdafbbda8cb4d7eb2678f9b7d7112e1a0220069cd8cc48dae3dafeee699f21e91a8fd427a542aaeb785b432550e4b4111da200770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d8a84b1510000040300483046022100f8feea2f5632b930a056924e388b2cb6cfb2b5c6dfd4974a0e2e461bebf034400221008abc13ea91c3560d026ed5b96812c461043d63ae0016da9a0254419433ae68b1
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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