otagorotarytrusttramps.org.nz

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:1e:fa:02:71:2d:f9:4e:e1:a2:98:d6:93:7f:7c:b4:a1:3b was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=otagorotarytrusttramps.org.nz

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:1e:fa:02:71:2d:f9:4e:e1:a2:98:d6:93:7f:7c:b4:a1:3b
Serial Number (int): 271877648482003549536626087855276411887931
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 63:5b:a6:71:7b:1e:de:c3:6a:9d:c2:d9:1b:3f:f9:e9:af:79:d2:24
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 03:20:83:2c:91:2f:2f:28:28:ba:08:11:f2:fa:51:b3:d0:37:d6:22
Fingerprint (sha256): 91:9b:30:96:eb:e7:d8:33:b1:86:a6:65:4b:33:24:db:46:bc:f8:86:75:3b:83:7a:8d:0e:53:e8:8a:42:5c:f0

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate otagorotarytrusttramps.org.nz

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for otagorotarytrusttramps.org.nz

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

otagorotarytrusttramps.org.nz
www.otagorotarytrusttramps.org.nz

Other certificates including the domain name otagorotarytrusttramps.org.nz

(limited to 100 certificates)

Certificate

The complete raw certificate details for otagorotarytrusttramps.org.nz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1pus3W/CHwTtma4fSMVf
SsNAnwYclIEWjZ33PL6M3pL3wfu1S7S4JrJh/cjxPYWwSiKYZOQp5al61MnXoQgu
E038MTPAfyZ4A9cWXVCiVddltAf8v+mCsyyQExmv0SnplEa/STLTsicB1iLdZHyZ
4g0Atp9+VXTgN4Zk53ehLCnHSZHjTx8dOqjW1WhxBaYB9b4qTIQLxzHB1zf3r1rM
3ZbOjLpX49Y4xl0N3oKN7QBmD+ToS1Afw6WU2XRQ/Pxwd6bp6ZqmYDfCLnfpcka3
09M83kmOS3FAooedXMLu4Uh/JNRjkpqD3qiUgPSZ11n6Wi3tGjLeKSg5VXM4BN/r
kwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 271877648482003549536626087855276411887931
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-26 03:41:16 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-24 03:41:16 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'otagorotarytrusttramps.org.nz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27091763591532058585433805580649955893512601758202131439925918442719490327160101610567390342169825111310136099053908111415442837724623777629560150594390274208246389912472226806868699152608443449715724008394231321187359509241029136607510619315314795421005453573788505846339165452144636419876591154180122672312004329313644257840192534308823376068976730936969377641675280500563155826285395580202194267614100493051817386267716910253090289508874255506272490477318465179967435644260857057094877491211840975334405582664623658144132599796747909358609219323627430915760551468674951667470038187443609132355940122959158391597971
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							635ba6717b1edec36a9dc2d91b3ff9e9af79d224
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'otagorotarytrusttramps.org.nz'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.otagorotarytrusttramps.org.nz'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016e065e58310000040300473045022030b17443b5a1a25153045cc14ecc6118d2387fa5fb86c520a8664d95332ca551022100d1d9cc5e57824664bda578de1dfff9f64562a069632280bb4c857ea393daa8fc00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e065e5850000004030047304502202ce1b9422d951ce1abd59fcdb9ff767fd1d8203c3b900289b7d0a088b35a18a4022100833b62fd5b2d536218b8ab817a2a5e57f3e543aece82ca8c3151890f616c07fa
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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