newbrightonrugby.co.nz

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:6a:ec:3a:5e:b6:53:a4:66:ce:80:96:3e:bf:32:38:cc:d8 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=newbrightonrugby.co.nz

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:6a:ec:3a:5e:b6:53:a4:66:ce:80:96:3e:bf:32:38:cc:d8
Serial Number (int): 297720789570115166558990554057496344448216
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 8e:78:fd:57:4d:61:7a:a5:fc:45:65:d4:6c:ca:6f:3c:8d:d8:f0:8a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): bc:d3:df:e6:4c:9a:9e:68:0c:ac:01:56:73:c6:06:07:f9:4c:01:83
Fingerprint (sha256): 74:13:0c:36:2f:ee:64:30:26:c5:8a:e6:d3:06:32:58:80:01:1f:44:de:e5:59:71:44:ee:3a:6d:8d:cf:b2:da

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate newbrightonrugby.co.nz

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for newbrightonrugby.co.nz

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

newbrightonrugby.co.nz
www.newbrightonrugby.co.nz

Other certificates including the domain name newbrightonrugby.co.nz

(limited to 100 certificates)
www.newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
www.newbrightonrugby.co.nz
www.newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
www.newbrightonrugby.co.nz
www.newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz
www.newbrightonrugby.co.nz
www.newbrightonrugby.co.nz
newbrightonrugby.co.nz
www.newbrightonrugby.co.nz
www.newbrightonrugby.co.nz
newbrightonrugby.co.nz
www.newbrightonrugby.co.nz
newbrightonrugby.co.nz
newbrightonrugby.co.nz

Certificate

The complete raw certificate details for newbrightonrugby.co.nz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2V1/3koE8XbkVMRy+hXW
X4rlfOE0Rc7DIsZTJKNH+UWUKFI3fMYXpyEg2NcpbkoiWDOj7PqjBNcpTnBZu+X/
LoRkzyXb/dZCf1JTQUeIdKU1bcRcpgjmAC80XW/I3bIdGw4CquhvgKuJU4BjtOHL
AbjKAaRdsI1ldCQhDcg1fgYAX+5ybMuOo25pShMPiWrpk3K11yW5p8/uV4qxv9i4
QV2gUI6SMgh1PPUDibdoHuZPldHSRzKZlhBhJOVpGhmzWR4cP7YwkAzVTDjb9334
FnN6febzKZg2tFBUIALULWYWOQy+aFYZqPjLguzVZ0dQJwI3Os0/wnQ/KmVogwR1
bQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 297720789570115166558990554057496344448216
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-12 17:15:57 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-10 17:15:57 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'newbrightonrugby.co.nz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27439818492396408150120753965509617976674867734310573087726453577449296397940751818235320516718764619665773468671291045605176547508271366529444946230475946444266232091365882037216179229631002972538981267697186068660919654316703225774289079888221623252255191432792765053705021357557761960991358426403449380958100582876595251589063804927614678740131801077546819724123774666405734514990235578341722171242214373971908606487348375524607149154073117647995605092004544489699078885312058190406314673395993590435952756690343652095158914086937319963839767507784472303298602232491513832251527971436409295552465806263042946921837
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							8e78fd574d617aa5fc4565d46cca6f3c8dd8f08a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newbrightonrugby.co.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.newbrightonrugby.co.nz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016aad4234e10000040300473045022100fe115e05a901b9a0137299c6c1828714b38c7b96bd8f681e68a5b5422d06101e02204b3d065033dbda1eb7d106404be409e123864aa8b94781f954fb28ed8f52289e00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016aad4234bd0000040300483046022100eacca5fcf243b7c1d73bfb352f521cdccd89701bac2edfd1afcf20c99e3fc629022100e7ab70eebbaafe773f937e67a27bf478f122c891bbeb6aef775c12e9556603cb
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00313e7d803ad5206ccac2842288e330b09fbdc7a52bef4f0b82a51ee843cdd57459f98e45241c58a56f8d3d2703f0a3c4417ebad774c3026cd415c129686b0e0353e950395708652d9038383963fd059c400c53c66d44fc545f21e515023721ff88168cd0452febf887387d4c644f49b71ee65ec2fed2d7cdcd037f49f74fa373443882e716c0a912e5b4e5d368c54e33afdd889d904737a34dfcae073716ae0d51ccd798f53eeb0f4cf41fc0262beb532b1798382ba41750872964793b6348c3fa17a1f307dc9613fe9208e6b5f8b83a68b9ec0b9a536c3d0407b30828d6e07f2c260cce457e6ac70d76667a8f6c01eaefb585d75c34259108544e6b22999a69