thegreenafrica.org
Issued by R3
About this certificate
This digital certificate with serial number 04:85:67:b1:fe:b5:e5:b9:f5:12:04:54:38:94:6a:09:d4:3d was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=thegreenafrica.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:85:67:b1:fe:b5:e5:b9:f5:12:04:54:38:94:6a:09:d4:3dSerial Number (int): 393844533213779042844967753970657675301949
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 0b:7c:b1:2e:8d:2b:0f:e5:af:be:d3:74:f1:71:fd:17:66:73:56:40
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 1e:af:64:57:31:54:80:2b:3c:e4:e7:55:74:f3:7d:ee:68:1f:35:53
Fingerprint (sha256): 86:5e:fc:a4:8d:ab:1f:a9:de:5b:84:a8:e0:f9:e5:a0:7a:e2:e3:85:ed:7a:73:b6:30:c4:0a:a5:66:b8:22:49
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate thegreenafrica.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for thegreenafrica.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sanantoniohomebook.com
thegreenafrica.org
thegreenafrica.org
Other certificates including the domain name thegreenafrica.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for thegreenafrica.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFCTCCA/GgAwIBAgISBIVnsf615bn1EgRUOJRqCdQ9MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMTcxMjUxMTRaFw0yNDA1MTcxMjUxMTNaMB0xGzAZBgNVBAMT EnRoZWdyZWVuYWZyaWNhLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAJhoecQ5634o9dE49BnOhdQEdfShbrGRUSJPFGGuzm+dd0zXZ8wA8ObA6h/a 1/eMoBVzmuspkQJAGZCSeZe0dQus6XmKKTfxCEDMl+HOGEyP3w9NfNvQxvIpiFk1 CHn9luv9HXLMN9EMxNKO+mDoJkoXBrM1XtXyvlnYQCydOFRUM30PQ6UP2Y719RDw t2jZUszYoh5lLqenQvVOS7maFc3uW1iXqIec4B/3XjLm+o7xrSBD+k1K126tEmvi tEYD037z4jZKYFJNSMtpRJzseMA90SIj36kKFY2iVIUZ5Azn2VUJKDCdQBcCpTjs QOumZL3zzARe3KTs++SfPQO5HLkCAwEAAaOCAiwwggIoMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUC3yxLo0rD+WvvtN08XH9F2ZzVkAwHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8wNQYDVR0RBC4wLIIWc2FuYW50b25pb2hvbWVib29rLmNvbYISdGhlZ3Jl ZW5hZnJpY2Eub3JnMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIE AgSB9QSB8gDwAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGN t1XfdgAABAMARzBFAiB/J0NVVhlv0P19NHfNWGQZQrCnLVZIUshf8IiFMDYKjgIh ANe1QCmpom2nt8SS90DYDUrBL1kB9nZA0/C/OjaMcE48AHYAouK/1h7eLy8HoNZO bTen3GVDsMa1LqLat4r4mm31F9gAAAGNt1XfFwAABAMARzBFAiEAwOgRhXQhH7br ESLRxnsMsW/AScyW4dYDV+c9UlF1fXwCID/Ew3KE+79sDycQ/Bu3wlpy7XhD0RMY 4eyB0s6DQ2VnMA0GCSqGSIb3DQEBCwUAA4IBAQAuNq9wQeZaUZLwJHP192rITJvo d65Z7CLbZqRDSVNbLoATNMAo5yo3NSh2o7aI9Zthb7sdj66SG0s4Yn/VKye/swHf lftXxsoOiWf9bNVnb1IEHjmwt3aqhs3kO/O4N2YnEFzh/aF0zqZL00V6fmF5QUrg +/Q+FyBhsrWPQuhNPttQ+bgO98dZSm2IXULabouyXEKgyHpgTT39fZ4/wTjSBc3O 74hCGfwdEpTXxviNqanvCnZ2xgogNTwC5/qgprUCxBHnVnJqXsNBdbp+p0mQVv8c ufVzY/zeIJHW+481baulOW0WBgdMRYqFL2DR9mJ/fXFe/918hjX8ylQvqj0u -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmGh5xDnrfij10Tj0Gc6F 1AR19KFusZFRIk8UYa7Ob513TNdnzADw5sDqH9rX94ygFXOa6ymRAkAZkJJ5l7R1 C6zpeYopN/EIQMyX4c4YTI/fD01829DG8imIWTUIef2W6/0dcsw30QzE0o76YOgm ShcGszVe1fK+WdhALJ04VFQzfQ9DpQ/ZjvX1EPC3aNlSzNiiHmUup6dC9U5LuZoV ze5bWJeoh5zgH/deMub6jvGtIEP6TUrXbq0Sa+K0RgPTfvPiNkpgUk1Iy2lEnOx4 wD3RIiPfqQoVjaJUhRnkDOfZVQkoMJ1AFwKlOOxA66ZkvfPMBF7cpOz75J89A7kc uQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 393844533213779042844967753970657675301949 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-17 12:51:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-17 12:51:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thegreenafrica.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19239741218199786715772274046020412711194201182128210748719934807593027592657913100422071696809222264345414314649563888833932978347152339496609510256003582727047259893611051829748166426889042816727706128672027523080817764965769823670780696003854638594125533920933302512930674630033264294859496080013261015090813969009929126827364217923027373943695775948263321110845480449130390668235247700696599049550574635496406272731859027665999152833623325045315062118394958899476899724944481876160300846057515256295915041920805863039313087557364768594032335289522015065410949370547708387109143206383723225012968981023677021232313 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0b7cb12e8d2b0fe5afbed374f171fd1766735640 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sanantoniohomebook.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thegreenafrica.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018db755df76000004030047304502207f27435556196fd0fd7d3477cd58641942b0a72d564852c85ff0888530360a8e022100d7b54029a9a26da7b7c492f740d80d4ac12f5901f67640d3f0bf3a368c704e3c007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018db755df170000040300473045022100c0e8118574211fb6eb1122d1c67b0cb16fc049cc96e1d60357e73d5251757d7c02203fc4c37284fbbf6c0f2710fc1bb7c25a72ed7843d11318e1ec81d2ce83436567 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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