newcastlescitt.co.uk
Issued by R3
About this certificate
This digital certificate with serial number 03:a0:eb:83:21:64:d1:18:7b:e1:19:be:31:e0:97:18:2b:d3 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=newcastlescitt.co.uk
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a0:eb:83:21:64:d1:18:7b:e1:19:be:31:e0:97:18:2b:d3Serial Number (int): 316095085949835862524770707255431479700435
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e2:65:d6:e1:a6:2a:ab:62:af:54:9b:fe:fe:70:b7:3f:09:fd:8b:11
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 4a:77:57:ad:8e:26:ab:99:19:db:c9:1a:68:20:6b:87:21:79:ab:cd
Fingerprint (sha256): 62:a3:0c:20:cf:3a:2a:41:fe:69:55:f6:37:b1:c6:7f:e4:48:10:e5:5e:1a:10:d2:a7:78:82:0b:d7:0d:cc:f6
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate newcastlescitt.co.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for newcastlescitt.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
newcastlescitt.co.uk
Other certificates including the domain name newcastlescitt.co.uk
(limited to 100 certificates)
www.newcastlescitt.co.uk
www.newcastlescitt.co.uk
newcastlescitt.co.uk
www.newcastlescitt.co.uk
www.newcastlescitt.co.uk
www.newcastlescitt.co.uk
newcastlescitt.co.uk
www.newcastlescitt.co.uk
newcastlescitt.co.uk
www.newcastlescitt.co.uk
newcastlescitt.co.uk
www.newcastlescitt.co.uk
www.newcastlescitt.co.uk
newcastlescitt.co.uk
www.newcastlescitt.co.uk
newcastlescitt.co.uk
newcastlescitt.co.uk
newcastlescitt.co.uk
newcastlescitt.co.uk
newcastlescitt.co.uk
www.newcastlescitt.co.uk
www.newcastlescitt.co.uk
www.newcastlescitt.co.uk
www.newcastlescitt.co.uk
newcastlescitt.co.uk
www.newcastlescitt.co.uk
www.newcastlescitt.co.uk
www.newcastlescitt.co.uk
newcastlescitt.co.uk
www.newcastlescitt.co.uk
newcastlescitt.co.uk
www.newcastlescitt.co.uk
newcastlescitt.co.uk
www.newcastlescitt.co.uk
www.newcastlescitt.co.uk
newcastlescitt.co.uk
www.newcastlescitt.co.uk
newcastlescitt.co.uk
newcastlescitt.co.uk
newcastlescitt.co.uk
newcastlescitt.co.uk
newcastlescitt.co.uk
www.newcastlescitt.co.uk
www.newcastlescitt.co.uk
www.newcastlescitt.co.uk
Certificate
The complete raw certificate details for newcastlescitt.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9DCCA9ygAwIBAgISA6DrgyFk0Rh74Rm+MeCXGCvTMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjExNDE3MjRaFw0yNDAyMTkxNDE3MjNaMB8xHTAbBgNVBAMT FG5ld2Nhc3RsZXNjaXR0LmNvLnVrMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAtTy0kpQF67AYJTaHGmq8tzQDkagRS00ClTiNg9APM70TuJXEaaH7rg/E mzU90fuTycwJQI+4JEpE+LLH3cRc6cATG2mTRcMSEy120tUCzcifmUbW4wnDgUoy 01OhwPNvrqovuEeswMj94GDxOSiw8r+pN59SyNYzaWEP8zt4fi5zT6cZf1k5+Vvl T+K0e4PJMRXcyQAH2Dtj64tGXQSXm0OdxzWxqkmXkMFrbo/NJAPTycFnY0+WQKC0 mXpAkIbA1ndKk5taSadgIBkwNpFq8yAWBRxWlaQ9AhwH8CU+CFJZTujqFkC/wGHi gXrqvBbY2bhod1QL9PbsrVa05ZJGqwIDAQABo4ICFTCCAhEwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBTiZdbhpiqrYq9Um/7+cLc/Cf2LETAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzAfBgNVHREEGDAWghRuZXdjYXN0bGVzY2l0dC5jby51azATBgNVHSAE DDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2ADtTd3U+LbmA ToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABi/J1IH4AAAQDAEcwRQIhAMV1JUGk NCS0UVtj2KWS95ZaFJ4u0s10ZOmMXcrW49GIAiBTXULPcBMz9GzsYgV6D/99Jeqk MckoYfsAGol53JB/fQB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRz AAABi/J1IHUAAAQDAEYwRAIgXWwZJYzpJpRl4aFbe7x1o9I+HF3O6qRbB1D2yZ8M mnMCIHid+RbuyblmLI7S2Nfxq2eN/cH8nVuAqxO9uxqdJlMLMA0GCSqGSIb3DQEB CwUAA4IBAQAqPxmeCIuPY7kuVSg0ad/FyiWhnOUEif594s1fguA5dXAAscjWzQuO h2v2pIiELkc1qfoNMTLN7vLfbghDUCsvzvDw83fidUovIJAeUP5Aiy8dMrdIFAZR 9dS5cmX5e0JWnDGC37bYCg9iQuW0rVhez2R80iGX4Kpu/3B8mOnxrRocwfs2Hvq4 /Zkf1TtK/6W3Z2+0X8sFXNxBvJVrmENNlERcpd6HDd5tKp1RImc5UzA190ul/tPQ TZ6McpulR0NCtLHukCJKCYTn6t5Icyrct7KUhsYf90mC6f/+3heGLrNHVnJolsZ3 t2HzAhNNuSSP9m+mdP3XHXEaYrHvj2XU -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtTy0kpQF67AYJTaHGmq8 tzQDkagRS00ClTiNg9APM70TuJXEaaH7rg/EmzU90fuTycwJQI+4JEpE+LLH3cRc 6cATG2mTRcMSEy120tUCzcifmUbW4wnDgUoy01OhwPNvrqovuEeswMj94GDxOSiw 8r+pN59SyNYzaWEP8zt4fi5zT6cZf1k5+VvlT+K0e4PJMRXcyQAH2Dtj64tGXQSX m0OdxzWxqkmXkMFrbo/NJAPTycFnY0+WQKC0mXpAkIbA1ndKk5taSadgIBkwNpFq 8yAWBRxWlaQ9AhwH8CU+CFJZTujqFkC/wGHigXrqvBbY2bhod1QL9PbsrVa05ZJG qwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 316095085949835862524770707255431479700435 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-21 14:17:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-19 14:17:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'newcastlescitt.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22879068128354664585550298468056823837111576102094493438068683002037985811050451956018577073332349771737197500457455604417608977037183900003967294579562974096403660958667663022164115180496102551246802943241738162596498740913504022955873642914528906163656870546665519992382625743197134885562189298919371451696125126721849452192744051854833095906859179481262729429956264523670598724091412412441245790711010615072438737649706591341268187381037270062689235588015924676041094538994436273496232200704405331650805017916426572612848447767980049494357350353097431886480623919247082143016288583087034031026368060535934542825131 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e265d6e1a62aab62af549bfefe70b73f09fd8b11 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newcastlescitt.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bf275207e0000040300473045022100c5752541a43424b4515b63d8a592f7965a149e2ed2cd7464e98c5dcad6e3d1880220535d42cf701333f46cec62057a0fff7d25eaa431c92861fb001a8979dc907f7d00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bf2752075000004030046304402205d6c19258ce9269465e1a15b7bbc75a3d23e1c5dceeaa45b0750f6c99f0c9a730220789df916eec9b9662c8ed2d8d7f1ab678dfdc1fc9d5b80ab13bdbb1a9d26530b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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