maggy.org
Issued by R3
About this certificate
This digital certificate with serial number 03:66:11:7f:4a:17:4f:74:32:f6:14:09:c6:be:c5:83:c7:49 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=maggy.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:66:11:7f:4a:17:4f:74:32:f6:14:09:c6:be:c5:83:c7:49Serial Number (int): 296068917021590988905964416342151569590089
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f0:17:12:13:6a:53:03:63:1b:99:d6:f5:52:08:44:aa:9c:80:b1:26
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 60:82:83:a0:94:e8:d7:3f:9e:6e:84:01:8d:a0:2a:0d:e6:d7:ae:7e
Fingerprint (sha256): 81:36:ca:18:c1:14:94:1d:bd:37:c9:91:a1:8a:cc:59:ab:d6:54:28:26:e8:93:71:ef:b6:76:1c:fe:5f:19:19
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate maggy.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for maggy.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
maggy.org
Other certificates including the domain name maggy.org
(limited to 100 certificates)
coinxnet.com
garafraxis.world
manchesterstemcells.com
maggy.org
www.jointpainnorthcarolina.com
amb.church
www.hudson-mfg.com
chicken-superstore.com
stemcellrhodeisland.com
www.popvid360.com
maggy.org
www.maggy.org
www.benefitcheck.com
maggy.org
maggy.org
www.maggy.org
www.checkoff.me
www.neocare.org
internet.house
www.telegnostic.com
garafraxis.world
manchesterstemcells.com
maggy.org
www.jointpainnorthcarolina.com
amb.church
www.hudson-mfg.com
chicken-superstore.com
stemcellrhodeisland.com
www.popvid360.com
maggy.org
www.maggy.org
www.benefitcheck.com
maggy.org
maggy.org
www.maggy.org
www.checkoff.me
www.neocare.org
internet.house
www.telegnostic.com
Certificate
The complete raw certificate details for maggy.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3TCCBMWgAwIBAgISA2YRf0oXT3Qy9hQJxr7Fg8dJMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTYwMDIxMjZaFw0yNDAzMTUwMDIxMjVaMBQxEjAQBgNVBAMT CW1hZ2d5Lm9yZzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALkR3hxQ DkPC9uHp++Dm+kqnW8SwcyafN56UD1Ia1DxR3FuUXmUL6+aWouDx05yW1FkIZ/c3 feXfKtdNa+SY2l+ESqrz+bDgN3fZ1xSwUedg2C8+BiLV2REKckXaud2G36nx9XXV L2y8NXI320S9bYb2G3t2S1KA7ho6OiajeX4hfSmlh+uANOJ3MtIfCsJF5C0hbGIY UYno1BrUMmRYPuZKEdf7e/aZJ5QXRv8AOt7sIfrlfXJeSoMKTGXh9AsJ7VX+eX8U XLSii+O3go4YT5CZzXUugNNjCp3aUeEjPSO0ms9dRLuSi9+cGgyLWghhwC+1E94y CsHl6GCbcgtrtXzAR0GSwnPqHnTCZcG4C9U1myEH5KwGqymR1S4h9qMhkhylt0VP wvRzw4efP0vHV6armz7S6RHmkFcOuDcEwVahuuvxQvlArNg0/Oat7C+u+D4jzdh3 N6xl0U/Owg0snVuIBLzWLvJqcF23/J7lHeW47Lq3pI93QYrdkbB3fND9DzFjNIvG rSlpFCCcY8C69eZf6hEj1/jgHD2w2hy3xhwUunQiAAWmYru8x/txxMKq8mh8k1aF Xebh05jAeU8dLQG01t92DAXpWXrt+WNxKCqdoTYHtl6OlY6JklfDtJ9F8kEAe3OU W22TqGcgSECx9vLPFE3wKEcpOTp+bW4S80xBAgMBAAGjggIJMIICBTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFPAXEhNqUwNjG5nW9VIIRKqcgLEmMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMBQGA1UdEQQNMAuCCW1hZ2d5Lm9yZzATBgNVHSAEDDAKMAgG BmeBDAECATCCAQIGCisGAQQB1nkCBAIEgfMEgfAA7gB1AEiw42vapkc0D+VqAvqd MOscUgHLVt0sgdm7v6s52IRzAAABjHA2xWMAAAQDAEYwRAIgJZ0fP3/HU/BKg4TF n3MXg7c2ORD6zIoCibX0SHrOcmUCIB3mVedcNR2aytbMsP+U4pAVNyoPVmrzRFr8 8pJsuumvAHUAouK/1h7eLy8HoNZObTen3GVDsMa1LqLat4r4mm31F9gAAAGMcDbF dwAABAMARjBEAiAB1aFl6GhLAY9inYAqF7T8tUUq1be/SB0R1LjTYzRC3QIgd/kw E3REIaCQAEs/JkFlFD3k7ph9rXf185a3nohrcw0wDQYJKoZIhvcNAQELBQADggEB AA9J1+Pn2JnPWMseJ3bs68DxVn4CD4W/vgcd7MnWRVUV9rcLNotg0coQ+PreiH4M HD44QhsRrUNG0I1ZgWBRLw8zKtmxTzlIDJTS73m/B/kwhi+d2bgn5TtKfNvZWLfN zKOboXTqUEINL0ed0Q/9grAKR8cz46mpftPw25y146YtllrzJt/m4nGQe5pP6Wvp zMrsD2Tp6rJfA67Gu3YYoA4YuJn+lwrUEKgcM4W4p21gLWwwjlcwZov2sbbYG2HQ KFxeVIST6xbSfOf8gixGSUk3Ys3L2cQeNwOO8/9gJsjp4sstBlPuKjopRCXU/aXN Bygma+1R/muQ8CeOMGnwdWU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuRHeHFAOQ8L24en74Ob6 SqdbxLBzJp83npQPUhrUPFHcW5ReZQvr5pai4PHTnJbUWQhn9zd95d8q101r5Jja X4RKqvP5sOA3d9nXFLBR52DYLz4GItXZEQpyRdq53YbfqfH1ddUvbLw1cjfbRL1t hvYbe3ZLUoDuGjo6JqN5fiF9KaWH64A04ncy0h8KwkXkLSFsYhhRiejUGtQyZFg+ 5koR1/t79pknlBdG/wA63uwh+uV9cl5KgwpMZeH0CwntVf55fxRctKKL47eCjhhP kJnNdS6A02MKndpR4SM9I7Saz11Eu5KL35waDItaCGHAL7UT3jIKweXoYJtyC2u1 fMBHQZLCc+oedMJlwbgL1TWbIQfkrAarKZHVLiH2oyGSHKW3RU/C9HPDh58/S8dX pqubPtLpEeaQVw64NwTBVqG66/FC+UCs2DT85q3sL674PiPN2Hc3rGXRT87CDSyd W4gEvNYu8mpwXbf8nuUd5bjsurekj3dBit2RsHd80P0PMWM0i8atKWkUIJxjwLr1 5l/qESPX+OAcPbDaHLfGHBS6dCIABaZiu7zH+3HEwqryaHyTVoVd5uHTmMB5Tx0t AbTW33YMBelZeu35Y3EoKp2hNge2Xo6VjomSV8O0n0XyQQB7c5RbbZOoZyBIQLH2 8s8UTfAoRyk5On5tbhLzTEECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 296068917021590988905964416342151569590089 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-16 00:21:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-15 00:21:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'maggy.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 755018892927377314222315397132106121915294402990786021971735522743635394325595969503062823288268250721099365776741783498126737440376944068717817496836871419490636371683119334976436291180078100438970176635751711077656829178057664360403748763028419367097724688287166376651637818656778860679831818650829972895128712596066494901717060506442770161578910414605971496705936039289627706678900096052127421397524723384975337373872515070419689434993906623354680577176704735869174290056995598641412935205218155446944724132933263942973816306422820348457520833653300328266710599951792130540952384174044940977763738348269643291137157656400419982871221635072580766665711738028361287140840525424591348161083436971446901522948611921237237109854879181319909466406171177004412337459226331436929128969264580041887575047046620320169647620131835457762970973735099542846099030468641230862858348353672852980186130011420623804765999403977792074466669829258391441113760878450195143421228154360704976350538446926035737847560690352263165087986388123268470644582867430145752227466532715096326272560957663731709224109267245950502874837868176366505706855958873154870534307760909742133975720657791817667542431965961525580516148522600916024933343018706162101009992769 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f01712136a5303631b99d6f5520844aa9c80b126 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maggy.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c7036c56300000403004630440220259d1f3f7fc753f04a8384c59f731783b7363910facc8a0289b5f4487ace726502201de655e75c351d9acad6ccb0ff94e29015372a0f566af3445afcf2926cbae9af007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018c7036c5770000040300463044022001d5a165e8684b018f629d802a17b4fcb5452ad5b7bf481d11d4b8d3633442dd022077f93013744421a090004b3f264165143de4ee987dad77f5f396b79e886b730d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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