otagorotarytrusttramps.org.nz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:1e:fa:02:71:2d:f9:4e:e1:a2:98:d6:93:7f:7c:b4:a1:3b was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=otagorotarytrusttramps.org.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:1e:fa:02:71:2d:f9:4e:e1:a2:98:d6:93:7f:7c:b4:a1:3bSerial Number (int): 271877648482003549536626087855276411887931
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 63:5b:a6:71:7b:1e:de:c3:6a:9d:c2:d9:1b:3f:f9:e9:af:79:d2:24
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 03:20:83:2c:91:2f:2f:28:28:ba:08:11:f2:fa:51:b3:d0:37:d6:22
Fingerprint (sha256): 91:9b:30:96:eb:e7:d8:33:b1:86:a6:65:4b:33:24:db:46:bc:f8:86:75:3b:83:7a:8d:0e:53:e8:8a:42:5c:f0
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate otagorotarytrusttramps.org.nz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for otagorotarytrusttramps.org.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
otagorotarytrusttramps.org.nz
www.otagorotarytrusttramps.org.nz
www.otagorotarytrusttramps.org.nz
Other certificates including the domain name otagorotarytrusttramps.org.nz
(limited to 100 certificates)
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
otagorotarytrusttramps.org.nz
Certificate
The complete raw certificate details for otagorotarytrusttramps.org.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFlTCCBH2gAwIBAgISAx76AnEt+U7hopjWk398tKE7MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMjYwMzQxMTZaFw0y MDAxMjQwMzQxMTZaMCgxJjAkBgNVBAMTHW90YWdvcm90YXJ5dHJ1c3R0cmFtcHMu b3JnLm56MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1pus3W/CHwTt ma4fSMVfSsNAnwYclIEWjZ33PL6M3pL3wfu1S7S4JrJh/cjxPYWwSiKYZOQp5al6 1MnXoQguE038MTPAfyZ4A9cWXVCiVddltAf8v+mCsyyQExmv0SnplEa/STLTsicB 1iLdZHyZ4g0Atp9+VXTgN4Zk53ehLCnHSZHjTx8dOqjW1WhxBaYB9b4qTIQLxzHB 1zf3r1rM3ZbOjLpX49Y4xl0N3oKN7QBmD+ToS1Afw6WU2XRQ/Pxwd6bp6ZqmYDfC Lnfpcka309M83kmOS3FAooedXMLu4Uh/JNRjkpqD3qiUgPSZ11n6Wi3tGjLeKSg5 VXM4BN/rkwIDAQABo4IClTCCApEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRjW6Zx ex7ew2qdwtkbP/npr3nSJDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMEsGA1UdEQREMEKCHW90YWdvcm90YXJ5dHJ1c3R0 cmFtcHMub3JnLm56giF3d3cub3RhZ29yb3Rhcnl0cnVzdHRyYW1wcy5vcmcubnow TAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcC ARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1 BIHyAPAAdgBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAW4GXlgx AAAEAwBHMEUCIDCxdEO1oaJRUwRcwU7MYRjSOH+l+4bFIKhmTZUzLKVRAiEA0dnM XleCRmS9pXjeHf/59kVioGljIoC7TIV+o5PaqPwAdgAHt1wb5X1o//Gwxh0jFce6 5ld8V5S3au68YToaadOiHAAAAW4GXlhQAAAEAwBHMEUCICzhuUItlRzhq9Wfzbn/ dn/R2CA8O5ACibfQoIizWhikAiEAgzti/VstU2IYuKuBeipeV/PlQ67OgsqMMVGJ D2FsB/owDQYJKoZIhvcNAQELBQADggEBAHY+2OxVkcdvKMxSwrumAEth27+W/e9m MMgh1e6GXbfpdiyYqKJMwt5qnKD7MeBigf2p0dLYkNbhI2j7+2BLE4Dihw/k29jn 70bziw/dldHYE7ilIZPFY922Cl4IyqKUvv27W4IO2f/6dfznSClK7E2BW/0cuWdp NC1VK9cWk1QL1wNmCHbTA1kCe+/PWz/ZGnLhfmBsWAUjkRFmou1oQi5VW7M6VfaP //w6aFGAEFyeO9QZMv0tZq33B49SX+ban+yh2DUruxzPw6f4QKLuQR2er48XdhtN 51MO2ltcBY1IynugneszkkTO0DRH54LgU/1Kcc+bGtXG5m+uHJroHTU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1pus3W/CHwTtma4fSMVf SsNAnwYclIEWjZ33PL6M3pL3wfu1S7S4JrJh/cjxPYWwSiKYZOQp5al61MnXoQgu E038MTPAfyZ4A9cWXVCiVddltAf8v+mCsyyQExmv0SnplEa/STLTsicB1iLdZHyZ 4g0Atp9+VXTgN4Zk53ehLCnHSZHjTx8dOqjW1WhxBaYB9b4qTIQLxzHB1zf3r1rM 3ZbOjLpX49Y4xl0N3oKN7QBmD+ToS1Afw6WU2XRQ/Pxwd6bp6ZqmYDfCLnfpcka3 09M83kmOS3FAooedXMLu4Uh/JNRjkpqD3qiUgPSZ11n6Wi3tGjLeKSg5VXM4BN/r kwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 271877648482003549536626087855276411887931 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-26 03:41:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-24 03:41:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'otagorotarytrusttramps.org.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27091763591532058585433805580649955893512601758202131439925918442719490327160101610567390342169825111310136099053908111415442837724623777629560150594390274208246389912472226806868699152608443449715724008394231321187359509241029136607510619315314795421005453573788505846339165452144636419876591154180122672312004329313644257840192534308823376068976730936969377641675280500563155826285395580202194267614100493051817386267716910253090289508874255506272490477318465179967435644260857057094877491211840975334405582664623658144132599796747909358609219323627430915760551468674951667470038187443609132355940122959158391597971 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 635ba6717b1edec36a9dc2d91b3ff9e9af79d224 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'otagorotarytrusttramps.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.otagorotarytrusttramps.org.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016e065e58310000040300473045022030b17443b5a1a25153045cc14ecc6118d2387fa5fb86c520a8664d95332ca551022100d1d9cc5e57824664bda578de1dfff9f64562a069632280bb4c857ea393daa8fc00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e065e5850000004030047304502202ce1b9422d951ce1abd59fcdb9ff767fd1d8203c3b900289b7d0a088b35a18a4022100833b62fd5b2d536218b8ab817a2a5e57f3e543aece82ca8c3151890f616c07fa . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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