meditationinhamilton.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:31:34:c9:64:0d:d9:a8:1f:ef:d8:ff:39:94:64:d1:a3:ea was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=meditationinhamilton.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:31:34:c9:64:0d:d9:a8:1f:ef:d8:ff:39:94:64:d1:a3:eaSerial Number (int): 365193145242954640397284461374556217648106
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 25:e8:a0:70:d2:7d:37:85:fb:26:aa:28:3b:45:8a:b0:67:ed:35:26
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 93:79:d4:12:59:2a:ea:74:01:ea:30:45:13:ee:91:50:4d:75:9b:81
Fingerprint (sha256): a1:bd:40:2e:c4:e7:76:9e:14:ab:86:7a:bf:09:63:31:7c:9e:7c:9c:16:44:e7:d4:77:0e:3b:d7:44:e4:3b:6c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate meditationinhamilton.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for meditationinhamilton.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
meditationinhamilton.org
www.meditationinhamilton.org
www.meditationinhamilton.org
Other certificates including the domain name meditationinhamilton.org
(limited to 100 certificates)
www.meditationinhamilton.org
*.meditationinhamilton.com
*.meditationinniagara.ca
meditationinhamilton.org
meditationinhamilton.org
meditationinhamilton.org
meditationinhamilton.org
meditationinhamilton.org
www.meditationinhamilton.org
meditationinhamilton.net
www.meditationinhamilton.org
www.meditationinhamilton.org
meditationinhamilton.org
www.meditationinhamilton.org
meditationinhamilton.org
www.meditationinhamilton.org
www.meditationinhamilton.org
meditationinhamilton.org
meditationinhamilton.org
*.meditationinhamilton.com
*.meditationinniagara.ca
meditationinhamilton.org
meditationinhamilton.org
meditationinhamilton.org
meditationinhamilton.org
meditationinhamilton.org
www.meditationinhamilton.org
meditationinhamilton.net
www.meditationinhamilton.org
www.meditationinhamilton.org
meditationinhamilton.org
www.meditationinhamilton.org
meditationinhamilton.org
www.meditationinhamilton.org
www.meditationinhamilton.org
meditationinhamilton.org
meditationinhamilton.org
Certificate
The complete raw certificate details for meditationinhamilton.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGOTCCBSGgAwIBAgISBDE0yWQN2agf79j/OZRk0aPqMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA4MzEwNjAxMjdaFw0x ODExMjkwNjAxMjdaMCMxITAfBgNVBAMTGG1lZGl0YXRpb25pbmhhbWlsdG9uLm9y ZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKUVuPmSbdPugrHkyVAO a/gJjMKxRGaabmyZV9JSNPMRju1OaBHtPVVncfqGZT1Lls9v4Tstgz0fD+k+U7am 5jWQm4YPETKrC1dPVhk5pjnhcjyrUSvzFYYfgnPENjzIDeR2ihAefrKLdMrIKztx qy0XU7abc6KZyC0C5D/qG+RVjXqtabutT6Z1cpeK3qJ8InEWzKMjXZOrS3qKiTK8 jMBfX4wXOV0fOLL84uenUwsBqqzLR43P7YQ5Rqu0YB9Eu2GmvO4/O6LHNcuQ+Rey lkwweN3jflf2fOR1Lk8RFSzNcquicGv/RDsDtNrHHelU2lAJpJnuVzzpYS30NmX2 UXkCAwEAAaOCAz4wggM6MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUJeigcNJ9N4X7 JqooO0WKsGftNSYwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYI KwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0 c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0 c2VuY3J5cHQub3JnLzBBBgNVHREEOjA4ghhtZWRpdGF0aW9uaW5oYW1pbHRvbi5v cmeCHHd3dy5tZWRpdGF0aW9uaW5oYW1pbHRvbi5vcmcwgf4GA1UdIASB9jCB8zAI BgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRwOi8v Y3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRp ZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGll cyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRlIFBv bGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5 LzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6 KXLcpMMM9OVFR/R4AAABZY7JZDkAAAQDAEcwRQIhAIKbShnQgzaT+m1QM+Z96LBe SGtVfg6AMyo/8osA0kZiAiB8GGBIAhhE9WQhMvMjyi0f/ADFUNFUmj/Zxyxe+sxh bwB2AFWB1MIWkDYBSuoLm1c8U/DA5Dh4cCUIFy+jqh0HE9MMAAABZY7JZGIAAAQD AEcwRQIgDW8uERbr2FYs91QTnzPywPxN+Pjat8dRVkEh2VM4kp8CIQDFrNdIMBVW TSxRmIA3CfJP1ok+3L5DC2MdchdIaY25RzANBgkqhkiG9w0BAQsFAAOCAQEAfPb7 men7dyyV2Ef4LgLOlF6AXoKHVJ8U2Q2mPkIocPzFR38SbgY65REQPq36Kv+Ebpwz mNsDi+fixhSjivQvL5ByO28dyGgyULMBoI0iNlif6EuqUQw63kIC6akfsuGrEEo2 PK+LBXVrq01E80UqLrEEEXt6dEPH2JbE4SPuYoS4jfcY6aewMI8+3D9Cm8g+DXht JDw4KZRly3OXFpHYKaba4v60jrwJ+he+mvYT5ghH4nDeHlhedtTSdvHTb5e0pHyj mAS9VZiDCzf5tnMfnL13yjnUZBgs5e99XEuCIJP21R83waazqX9caPJZpTW6eKd+ acpiFnuX1xT/N3Y9fg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApRW4+ZJt0+6CseTJUA5r +AmMwrFEZppubJlX0lI08xGO7U5oEe09VWdx+oZlPUuWz2/hOy2DPR8P6T5Ttqbm NZCbhg8RMqsLV09WGTmmOeFyPKtRK/MVhh+Cc8Q2PMgN5HaKEB5+sot0ysgrO3Gr LRdTtptzopnILQLkP+ob5FWNeq1pu61PpnVyl4reonwicRbMoyNdk6tLeoqJMryM wF9fjBc5XR84svzi56dTCwGqrMtHjc/thDlGq7RgH0S7Yaa87j87osc1y5D5F7KW TDB43eN+V/Z85HUuTxEVLM1yq6Jwa/9EOwO02scd6VTaUAmkme5XPOlhLfQ2ZfZR eQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 365193145242954640397284461374556217648106 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-31 06:01:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-29 06:01:27 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'meditationinhamilton.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20840032112065468016396903475264843194615210243716743790156232739363856913493303703757025081383219509732789242034974183531098020809650821452053898942825527609794029610026301112388216166785946636436886536087296818231364020256389312464962940630627135016991325917431095246464180711489360876376997484937367981507943383259687831442450518688871406023082307925519616616064887934808394647271800076434171052624734797346467740844889003992801711003584191152702801916181089072023644797831309980883211911361846635167683191228998952400546207314416144898030192988626951970705174907478448200571676703070865952952877396406033563668857 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 25e8a070d27d3785fb26aa283b458ab067ed3526 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'meditationinhamilton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.meditationinhamilton.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f478000001658ec964390000040300473045022100829b4a19d0833693fa6d5033e67de8b05e486b557e0e80332a3ff28b00d2466202207c186048021844f5642132f323ca2d1ffc00c550d1549a3fd9c72c5efacc616f0076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c000001658ec96462000004030047304502200d6f2e1116ebd8562cf754139f33f2c0fc4df8f8dab7c751564121d95338929f022100c5acd7483015564d2c5198803709f24fd6893edcbe430b631d721748698db947 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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