milanssd.org
Issued by R3
About this certificate
This digital certificate with serial number 04:ae:3c:d9:c3:e5:c4:da:39:dd:86:24:9b:40:b7:67:f5:93 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=milanssd.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ae:3c:d9:c3:e5:c4:da:39:dd:86:24:9b:40:b7:67:f5:93Serial Number (int): 407739159952723721047949610831106376463763
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 29:4d:d4:a9:cb:2d:b5:a9:e5:85:6d:2e:1d:0e:9f:63:74:3a:b9:91
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 82:74:f2:c8:24:fe:ea:0d:7e:0e:53:33:bd:76:cc:87:cd:b5:bd:47
Fingerprint (sha256): 46:4c:b1:b5:cd:7d:ae:c9:b3:42:bf:e3:3b:a4:c4:b2:61:4a:70:68:c4:47:be:30:27:77:16:44:5a:fc:74:67
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate milanssd.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for milanssd.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
milanssd.org
Other certificates including the domain name milanssd.org
(limited to 100 certificates)
skyward-vm.milanssd.org
skyward-vm.milanssd.org
skyward-vm.milanssd.org
skyward-vm.milanssd.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
milanssd.org
elementary.colfaxschool.org
skyward-vm.milanssd.org
adulted.luciamarschools.org
milanssd.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
milanssd.org
yhs.yorktown.k12.in.us
www.aprandolph.com
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
www.mountalvernia.org
dana.luciamarschools.org
admin.adulted.luciamarschools.org
admin.aprandolph.com
admin.adulted.luciamarschools.org
milanssd.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
www.milanssd.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
milanssd.org
admin.alt.sbcisd.net
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
milanssd.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
milanssd.org
charlottemecklenburgvirtualhighschool.wearecms.com
skyward-vm.milanssd.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
www.rilohs.com
skyward-vm.milanssd.org
admin.adulted.luciamarschools.org
www.tricityselpa.org
www.yorktown.k12.in.us
skyward-vm.milanssd.org
skyward-vm.milanssd.org
skyward-vm.milanssd.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
milanssd.org
elementary.colfaxschool.org
skyward-vm.milanssd.org
adulted.luciamarschools.org
milanssd.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
milanssd.org
yhs.yorktown.k12.in.us
www.aprandolph.com
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
www.mountalvernia.org
dana.luciamarschools.org
admin.adulted.luciamarschools.org
admin.aprandolph.com
admin.adulted.luciamarschools.org
milanssd.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
www.milanssd.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
milanssd.org
admin.alt.sbcisd.net
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
milanssd.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
milanssd.org
charlottemecklenburgvirtualhighschool.wearecms.com
skyward-vm.milanssd.org
admin.adulted.luciamarschools.org
admin.adulted.luciamarschools.org
www.rilohs.com
skyward-vm.milanssd.org
admin.adulted.luciamarschools.org
www.tricityselpa.org
www.yorktown.k12.in.us
Certificate
The complete raw certificate details for milanssd.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgISBK482cPlxNo53YYkm0C3Z/WTMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMzEyMjU0NDFaFw0yNDAxMjkyMjU0NDBaMBcxFTATBgNVBAMT DG1pbGFuc3NkLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANli rSpUbSn2jQB2nhKmDtN6Pn35DImrP/8WfM6p7zMcSbMAZe9iuKbQAWguur5a+emW T2csTNNX0CzB01/ql6o7QmWpzRgUWV0NA3ixPV4Z4vSbh/TqtnK1+38a7ATOYlRi 9tImDI/ISwTbshGti5cbKEQmGdb8VzTMC4az59+Bv1Tu53ZvAj76VdtepchaQLNN 8rl31lMMygx8/d66aSDJnq7mJpoDt2Y2QW1J9QjdBpxLH1blVVonenWhh2ncL/TV ahEu4m4iXzwKe++AIPRa7IYZZEJCbEvOvCdbFcLLuu1wEFnXBjoFYNKavy/Ljp1F YtR6ULljgLFdHAKIhYkCAwEAAaOCAg0wggIJMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUKU3UqcsttanlhW0uHQ6fY3Q6uZEwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w FwYDVR0RBBAwDoIMbWlsYW5zc2Qub3JnMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIB AwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0 vaQ9MEjX+6sAAAGLiCkt+AAABAMARjBEAiBjqRK9xAFWpskj9+Q0/tPsIJYIGFlU UsExnOQVHw77sAIgCnk04XoBa0i9bYNftYBGstwiuxRiyNXEr7h5u2BU5oMAdgA7 U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYuIKS4AAAAEAwBHMEUC IBYZhf8mx0vq/iZR4p5yEEyE78Pk/R++lGOwhvwSEi0OAiEAm/TIAAMFSlBwSmeg D+CQkigDViH6S95s5M0qZbk1f+YwDQYJKoZIhvcNAQELBQADggEBAD06BAUiQCZ7 NFdb6CdhNoT0w1r3pzz3wVpp+7bVnOsNUDEG10MqVxLJgEdIZHen/88mpRyDLYHd 18gAtk745Qe+Pz9crYSlb/tuKz8peiKRAA3RtKewMBqrdfZBlkUBpKWA+P+sTq5o HG5niKQ6TDB86vkQAEOklQYj1ssJ9V9L3Wyo2nJkv0Ft8OeVq7wLBz224rmk7Vu9 czENBBHEqNwJJx9uT4rX6nOXnp9xhjsWiDCmQqgiRvVt4sM23ld9Y1N4mxb/4+Lc VsqxwlrM+9ZttgorRlpJN7xlf+fT3t6hr2R2EnjZhn3hVAmlbktDPCjupkXE6tIF rubZzd1EAFU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2WKtKlRtKfaNAHaeEqYO 03o+ffkMias//xZ8zqnvMxxJswBl72K4ptABaC66vlr56ZZPZyxM01fQLMHTX+qX qjtCZanNGBRZXQ0DeLE9Xhni9JuH9Oq2crX7fxrsBM5iVGL20iYMj8hLBNuyEa2L lxsoRCYZ1vxXNMwLhrPn34G/VO7ndm8CPvpV216lyFpAs03yuXfWUwzKDHz93rpp IMmeruYmmgO3ZjZBbUn1CN0GnEsfVuVVWid6daGHadwv9NVqES7ibiJfPAp774Ag 9FrshhlkQkJsS868J1sVwsu67XAQWdcGOgVg0pq/L8uOnUVi1HpQuWOAsV0cAoiF iQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 407739159952723721047949610831106376463763 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-31 22:54:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-29 22:54:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'milanssd.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27442371337414771313127804548505447827564560857900668601991856379054599788481171798483825905822137342558210736026489920911276926169001524580399925325019014659879710912715833569031680922557019886541119333368832917978320832369546562888954717810898624159462989974899728801769916238124259362055803496833010715973785212667755824122478994303641692631196935605209284035527299802652246267946212362989522844284282715666250349853026045367568393782523054256197677999425992195631741173708726250032630634758992563291756660426398178773168230985268240060083835005838793134044595504102581086177826882936194420933008679102673001678217 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 294dd4a9cb2db5a9e5856d2e1d0e9f63743ab991 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'milanssd.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b88292df80000040300463044022063a912bdc40156a6c923f7e434fed3ec20960818595452c1319ce4151f0efbb002200a7934e17a016b48bd6d835fb58046b2dc22bb1462c8d5c4afb879bb6054e6830076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b88292e0000000403004730450220161985ff26c74beafe2651e29e72104c84efc3e4fd1fbe9463b086fc12122d0e0221009bf4c80003054a50704a67a00fe0909228035621fa4bde6ce4cd2a65b9357fe6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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