tekuraowaikare.school.nz
Issued by R3
About this certificate
This digital certificate with serial number 04:cd:73:9e:76:c6:bb:39:5e:63:db:9b:08:df:d0:2e:0e:ab was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=tekuraowaikare.school.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:cd:73:9e:76:c6:bb:39:5e:63:db:9b:08:df:d0:2e:0e:abSerial Number (int): 418360712957321737884710897899524189982379
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c4:b9:89:11:8a:40:bc:33:d3:03:f9:0c:6d:f7:04:1a:85:50:a5:18
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): b7:8d:a8:97:81:12:61:b5:df:1b:e4:42:ae:25:56:0c:50:47:ef:c2
Fingerprint (sha256): 89:c2:0f:e3:d7:82:3b:5a:54:b6:08:1a:ce:d8:48:f6:63:e1:32:33:ff:e5:98:3f:95:45:81:7d:6e:5e:ac:3d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate tekuraowaikare.school.nz
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tekuraowaikare.school.nz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tekuraowaikare.school.nz
Other certificates including the domain name tekuraowaikare.school.nz
(limited to 100 certificates)
tekuraowaikare.school.nz
tekuraowaikare.school.nz
kiwischools.co.nz
tekuraowaikare.school.nz
kiwischools.co.nz
tekuraowaikare.school.nz
tekuraowaikare.school.nz
kiwischools.co.nz
sni.cloudflaressl.com
tekuraowaikare.school.nz
kiwischools.co.nz
kiwischools.co.nz
tekuraowaikare.kiwischools.com
tekuraowaikare.school.nz
tekuraowaikare.school.nz
kiwischools.co.nz
tekuraowaikare.school.nz
kiwischools.co.nz
tekuraowaikare.school.nz
tekuraowaikare.school.nz
kiwischools.co.nz
sni.cloudflaressl.com
tekuraowaikare.school.nz
kiwischools.co.nz
kiwischools.co.nz
tekuraowaikare.kiwischools.com
tekuraowaikare.school.nz
Certificate
The complete raw certificate details for tekuraowaikare.school.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgISBM1znnbGuzleY9ubCN/QLg6rMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMjQxMDExMDVaFw0yNDA0MjMxMDExMDRaMCMxITAfBgNVBAMT GHRla3VyYW93YWlrYXJlLnNjaG9vbC5uejCCAiIwDQYJKoZIhvcNAQEBBQADggIP ADCCAgoCggIBAMZF0TbChNv2VxYldFpvXsZ+RWUiymNjydjXvkuXh4zQSJsjANw8 v9N+knfeTwDMD4zVed3DjfzvKaJECEq/wLruTjY0IMsHz1GtPUXkQ+ji3PqEM43T XH62LaE0QCZUR0ke586lczvl25jBGE0jYaUbrZhfx+SfdL0cGGBWFI49a5WXbEJu VhDgqOVI6Bi15kiX9p2Ujy7vdR3kDXwYH5M9qUAfWxpqNJW6Xz6H+ZCcepx9Dnsb 7ucs8/hhR4EDEGmzn1JsMV7qxyXQD9PWdVe/yT68lwBXLEyZ/er9fOQU1Kj1+zwl KBgcWuNmxeB3Kp/kke4J7UG4Jn7BHpk7IKfiNuvcNArLoVUjOlMAc3I17udl1sHJ FCdEsS+9ZJ1X+xapr73dZKU4JjGJLrosXDnqXd9CiXFaEDUYtrO2DUaHf1tbNL0z 8vHGDtyG9oCtrysEs6JLBRckhlc3umy+TYbdlUnNpbLIk1K/5B+qyfKB5AM6dkEr 9fKT6myh1RJrn3AzW57UTCWenMQG7VftVQvNh9VTpKWoPW2GDTENnaZlqM9Qu3VN n3LgfoTxZJ/Byag/1AimDrziyWPRZL4Q/UFee/OW9s9unm6G6g9sKbsJ1+Z0wIlN RPtZvJQsEJ9wpELQmT5PSPbOLIGRSNuIeq5LZOsdfnIGwU4jgogbAwW/AgMBAAGj ggIaMIICFjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFMS5iRGKQLwz0wP5DG33BBqF UKUYMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEB BEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUF BzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCMGA1UdEQQcMBqCGHRla3VyYW93 YWlrYXJlLnNjaG9vbC5uejATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB 1nkCBAIEgfUEgfIA8AB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRz AAABjTsqn44AAAQDAEYwRAIgGEIbgTI6RqQN0hXLBktQFCozbBixJPNi5vD7mvZO ffICICvHcLp9aSaTtuJIoO4IVMXL+5i+iqFQIyV9zeaMhnfFAHcAouK/1h7eLy8H oNZObTen3GVDsMa1LqLat4r4mm31F9gAAAGNOyqflwAABAMASDBGAiEApxPOGK7e bhDzynOtAZ4ioMnxTVeKVJWUo0tJKllvFs8CIQDv8Z5rlCCNyIEQYArGKWmqPIQZ Inhtqydll52N5tMZPjANBgkqhkiG9w0BAQsFAAOCAQEARDSpiLt1XEkaJscFAYlJ raTg8OXZMd1cXrhc2tom2/ZDY0AmANWW28sAPh/m6/RrHXly8ryKKxzPgfOTKiW7 8gSaQC15SCet5mCUI4E8PHZ0fJ7RRB1Tbf0YmRvo+AGWYQwTe/rLfF0YKgO95fod ZpdUJOzTe3scU7CvnBR5Zk0sucWGsF9McHmes3ijHKoM0VVuoC5InpTdtqTKrMuu Cte+dacKoPme5rSl2eRWAl1NzkLKRllZ19OyjdfBMhVJ8M80FrXkAeqVFCp8+tLC UnxDgy3XrJ+thfK/2+UjJZohE+RqrnNt9WPkGciCL03CmtUaPIkI00pqvTceP3sl Yg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxkXRNsKE2/ZXFiV0Wm9e xn5FZSLKY2PJ2Ne+S5eHjNBImyMA3Dy/036Sd95PAMwPjNV53cON/O8pokQISr/A uu5ONjQgywfPUa09ReRD6OLc+oQzjdNcfrYtoTRAJlRHSR7nzqVzO+XbmMEYTSNh pRutmF/H5J90vRwYYFYUjj1rlZdsQm5WEOCo5UjoGLXmSJf2nZSPLu91HeQNfBgf kz2pQB9bGmo0lbpfPof5kJx6nH0Oexvu5yzz+GFHgQMQabOfUmwxXurHJdAP09Z1 V7/JPryXAFcsTJn96v185BTUqPX7PCUoGBxa42bF4Hcqn+SR7gntQbgmfsEemTsg p+I269w0CsuhVSM6UwBzcjXu52XWwckUJ0SxL71knVf7Fqmvvd1kpTgmMYkuuixc Oepd30KJcVoQNRi2s7YNRod/W1s0vTPy8cYO3Ib2gK2vKwSzoksFFySGVze6bL5N ht2VSc2lssiTUr/kH6rJ8oHkAzp2QSv18pPqbKHVEmufcDNbntRMJZ6cxAbtV+1V C82H1VOkpag9bYYNMQ2dpmWoz1C7dU2fcuB+hPFkn8HJqD/UCKYOvOLJY9FkvhD9 QV5785b2z26ebobqD2wpuwnX5nTAiU1E+1m8lCwQn3CkQtCZPk9I9s4sgZFI24h6 rktk6x1+cgbBTiOCiBsDBb8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 418360712957321737884710897899524189982379 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-24 10:11:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-23 10:11:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tekuraowaikare.school.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 808882140688421760339037218998598523984581142108477398085622136277945149530419580406110937307100207281062785620916750429608809546738500331798937892390827673173660873751567981876087303489871716949592281593025396150947786026517433006009860109262613185262909329652721285695719923952345202065079853931604201291669979153347716317907644216268743589272077929842070482994410695457094069404847873670653883682229285531915694826336480727068307852137074058323107011349412996195543249400823656309782580536049618742216651155671793839051584675710248452961604997787200620824844677565652154094319074104979918502530572001955384315548840822810775343913976389940266935441855394220791368625657616271750684441435721652347882919255683212371701928124249882393732011414917423727967255640492072273014907116613830708998865288916730626516319215117680863300449963702775877385012461416719435875772510218922718007619470865053187146270478269626525434927165123133705083387956588979473269069261549375726097197748518754840132627749471524012226686909949209960322543966647289169309562731060991493054177935825801274028773596948572781385973673126481270835386560982988970853926510082816923518627464664811137533987126481638946808232021053049478252420230199291779792767223231 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c4b989118a40bc33d303f90c6df7041a8550a518 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tekuraowaikare.school.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d3b2a9f8e0000040300463044022018421b81323a46a40dd215cb064b50142a336c18b124f362e6f0fb9af64e7df202202bc770ba7d692693b6e248a0ee0854c5cbfb98be8aa15023257dcde68c8677c5007700a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d3b2a9f970000040300483046022100a713ce18aede6e10f3ca73ad019e22a0c9f14d578a549594a34b492a596f16cf022100eff19e6b94208dc88110600ac62969aa3c841922786dab2765979d8de6d3193e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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