orcity.org

Issued by R3

About this certificate

This digital certificate with serial number 03:45:c9:28:96:d8:f6:f4:17:57:0c:37:fb:37:b3:49:e9:4e was issued on by Let's Encrypt.

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=orcity.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:45:c9:28:96:d8:f6:f4:17:57:0c:37:fb:37:b3:49:e9:4e
Serial Number (int): 285083726691403755453771226516961016539470
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 61:95:38:51:37:4e:21:b9:09:8a:b7:36:13:2e:e8:d5:fd:3e:b1:22
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 80:2b:a5:99:74:23:71:7d:de:7f:b9:c5:08:27:8d:85:63:73:da:ce
Fingerprint (sha256): 9f:49:fc:1b:72:f4:c5:59:f6:f6:34:9c:68:b0:78:a9:05:1d:9e:05:ae:50:8c:06:76:03:92:ee:81:8d:ec:43

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate orcity.org

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for orcity.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

bids.orcity.org
orcity.org
www.orcity.org

Other certificates including the domain name orcity.org

(limited to 100 certificates)
*.orcity.org
CORC-FW.orcity.org
bids.orcity.org
exchange.orcity.org
bids.orcity.org
webmaps.orcity.org
bids.orcity.org
www.orcity.org
maps.orcity.org
*.orcity.org
www.orcity.org
orcity.org
CORC-FW.orcity.org
CORC-FW.orcity.org
*.orcity.org
bids.orcity.org
*.orcity.org
online.orcity.org
orcity.org
www.orcity.org
*.orcity.org
orcity.org
edenweb.orcity.org
maps.orcity.org
edenweb.orcity.org
bids.orcity.org
maps.orcity.org
lucity.orcity.org
bids.orcity.org
edenweb.orcity.org
CORC-FW.orcity.org
bids.orcity.org
webmaps.orcity.org
www.orcity.org
edenweb.orcity.org
www.orcity.org
bids.orcity.org
orcity.org
www.orcity.org
exchange.orcity.org
exchange.orcity.org
*.orcity.org
bids.orcity.org
www.orcity.org
parking.orcity.org
edenweb.orcity.org
orcity.org
CORC-FW.orcity.org
maps.orcity.org
maps.orcity.org
bids.orcity.org
permits.orcity.org
*.orcity.org
www.orcity.org
edenweb.orcity.org
CORC-FW.orcity.org
bids.orcity.org
orcity.org
www.orcity.org
*.orcity.org
bids.orcity.org
maps.orcity.org
bids.orcity.org
*.orcity.org
www.orcity.org
*.time.orcity.org
www.orcity.org
www.orcity.org
edenweb.orcity.org
bids.orcity.org
orcity.org
bids.orcity.org
*.orcity.org
bids.orcity.org
bids.orcity.org
edenweb.orcity.org
CORC-FW.orcity.org
*.orcity.org
edenweb.orcity.org
www.orcity.org
www.orcity.org
online.orcity.org

Certificate

The complete raw certificate details for orcity.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArcoXYxWl4w5i51U04DMD
uXRYe5V6aD3rNx8eNVviiTL1w2fTPQR+zt12UuulqivlGmkjqIa+28oNHtTlrMYm
L1CCmMrYHF20HRBGmldDFsuZL5Y1Xzw67PYbv4A+AxWps8rKytabqrcyYTGy2vm0
TeetnAdL2aic6db3PIFUcqUO4KPJnsVVniu1WpsQNhHktfWxrnENkvtRJuu32krx
sY3KRdBXukjWQ8KoKpD7jvewNxGu0JEDtuDwqtx6IAWA7SyH6Mxu/HVE8hl4Larw
GpYYfCwyxQDZGSEwiPcZuP37B1yuBzFTVk+Niht4sdIzUjY8bo3Yw9Qh+F6d9jc0
4wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 285083726691403755453771226516961016539470
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-11-13 23:09:21 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-11 23:09:20 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'orcity.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21938881720795589411411504274108192674274585044325944880620889981961656581832550851368257649639245918213113953439767525260116382739647175561344974270679668718556706711903792210141156132095866397305761115164403913712537606910898671771853106995669898643225536758215132129725981894371218476764270894893417909377428261023688089247472960804511408272483331997453937308932190852530036370464801117231227135019868797758801239938587035189800097555987678102511386082035392551332561741628990193323454904751169598458802786050517682982482495946371900734910259513589647933222226210846145278816187650692583236728039549443005430052067
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							61953851374e21b9098ab736132ee8d5fd3eb122
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bids.orcity.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orcity.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.orcity.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018473781aa10000040300463044022048c341dc48721ecc8abcf97c11c357e34629206ed434441bf1888d4c1cbbbddc022007e3f508d572cfb8700082e0c177a7e5b62ee2763ed27df79a3181d06d7f399b0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000018473781ada0000040300473045022017881b6a5fdbf44d879c9760e7d57bfec48190088e78c0f24fccaa20733355a602210098b907ee1284f61af704bb8a073b41d63ff265de606771ebc9dfcea5ad36d29b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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