jhu.stellic.com
Issued by R3
About this certificate
This digital certificate with serial number 03:0a:f8:fe:e1:7f:aa:50:55:b8:12:ba:db:dd:12:d8:a7:a7 was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=jhu.stellic.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0a:f8:fe:e1:7f:aa:50:55:b8:12:ba:db:dd:12:d8:a7:a7Serial Number (int): 265070653424503698588672551159724928182183
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 96:60:37:e8:f1:44:3d:6e:f3:dd:d7:0f:3b:46:75:e9:c1:93:3c:a3
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 95:ae:61:ce:02:d2:84:05:ff:d3:ec:d7:18:85:f5:63:93:c4:85:77
Fingerprint (sha256): b0:ae:d5:c6:e5:bb:ff:81:9b:d3:a2:79:8d:64:33:54:d6:99:59:a9:0e:a0:9c:be:3a:ba:fd:8d:0b:e0:00:ae
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate jhu.stellic.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for jhu.stellic.com
Public Key Algorithm
ECDSA
Key Size
256
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
jhu.stellic.com
stellic.jhu.edu
stellictest.jhu.edu
stellic.jhu.edu
stellictest.jhu.edu
Other certificates including the domain name stellic.com
(limited to 100 certificates)
cmu.stellic.com
www.stellic.com
udem.stellic.com
blog.stellic.com
tufts.stellic.com
nuq.stellic.com
stellic.com
byuh.stellic.com
uchicago.stellic.com
tufts.stellic.com
umn.stellic.com
cmu.stellic.com
stellic.com
nuq.stellic.com
stellic.com
tufts.stellic.com
jhu.stellic.com
stellic.com
jhu.stellic.com
tufts.stellic.com
tufts.stellic.com
tufts.stellic.com
cmu.stellic.com
byuh.stellic.com
cmu.stellic.com
byuh.stellic.com
tufts.stellic.com
stellic.com
nuq.stellic.com
uchicago.stellic.com
www.stellic.com
elon.stellic.com
stellic.com
nuq.stellic.com
learn.stellic.com
columbia.stellic.com
stellic.com
sentry.stellic.com
jhu.stellic.com
metislabs.io
elon.stellic.com
learn.stellic.com
elon.stellic.com
duke.stellic.com
byuh.stellic.com
cmu.stellic.com
nuq.stellic.com
byuh.stellic.com
columbia.stellic.com
tufts.stellic.com
byuh.stellic.com
jhu.stellic.com
nuq.stellic.com
byuh.stellic.com
cornellcollege.stellic.com
nuq.stellic.com
stellic.com
stellic.com
byuh.stellic.com
nuq.stellic.com
upc.devbox.stellic.com
columbia.stellic.com
elon.stellic.com
tufts.stellic.com
elon.stellic.com
elon.stellic.com
stellic.com
cmu-staging.stellic.com
jhu.stellic.com
nuq.stellic.com
jhu.stellic.com
csun.stellic.com
stellic.com
jhu.stellic.com
uchicago.stellic.com
jhu.stellic.com
uchicago.stellic.com
elon.stellic.com
udem.stellic.com
elon.stellic.com
uchicago.stellic.com
byuh.stellic.com
stellic.com
blog.stellic.com
umn.stellic.com
www.stellic.com
sentry.stellic.com
jhu.stellic.com
stellic.com
stellic.com
columbia.stellic.com
tufts.stellic.com
jhu.stellic.com
byuh.stellic.com
jhu.stellic.com
umn.stellic.com
academyart.stellic.com
stellic.com
umn.stellic.com
mitsloan.stellic.com
www.stellic.com
udem.stellic.com
blog.stellic.com
tufts.stellic.com
nuq.stellic.com
stellic.com
byuh.stellic.com
uchicago.stellic.com
tufts.stellic.com
umn.stellic.com
cmu.stellic.com
stellic.com
nuq.stellic.com
stellic.com
tufts.stellic.com
jhu.stellic.com
stellic.com
jhu.stellic.com
tufts.stellic.com
tufts.stellic.com
tufts.stellic.com
cmu.stellic.com
byuh.stellic.com
cmu.stellic.com
byuh.stellic.com
tufts.stellic.com
stellic.com
nuq.stellic.com
uchicago.stellic.com
www.stellic.com
elon.stellic.com
stellic.com
nuq.stellic.com
learn.stellic.com
columbia.stellic.com
stellic.com
sentry.stellic.com
jhu.stellic.com
metislabs.io
elon.stellic.com
learn.stellic.com
elon.stellic.com
duke.stellic.com
byuh.stellic.com
cmu.stellic.com
nuq.stellic.com
byuh.stellic.com
columbia.stellic.com
tufts.stellic.com
byuh.stellic.com
jhu.stellic.com
nuq.stellic.com
byuh.stellic.com
cornellcollege.stellic.com
nuq.stellic.com
stellic.com
stellic.com
byuh.stellic.com
nuq.stellic.com
upc.devbox.stellic.com
columbia.stellic.com
elon.stellic.com
tufts.stellic.com
elon.stellic.com
elon.stellic.com
stellic.com
cmu-staging.stellic.com
jhu.stellic.com
nuq.stellic.com
jhu.stellic.com
csun.stellic.com
stellic.com
jhu.stellic.com
uchicago.stellic.com
jhu.stellic.com
uchicago.stellic.com
elon.stellic.com
udem.stellic.com
elon.stellic.com
uchicago.stellic.com
byuh.stellic.com
stellic.com
blog.stellic.com
umn.stellic.com
www.stellic.com
sentry.stellic.com
jhu.stellic.com
stellic.com
stellic.com
columbia.stellic.com
tufts.stellic.com
jhu.stellic.com
byuh.stellic.com
jhu.stellic.com
umn.stellic.com
academyart.stellic.com
stellic.com
umn.stellic.com
mitsloan.stellic.com
Certificate
The complete raw certificate details for jhu.stellic.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIERjCCAy6gAwIBAgISAwr4/uF/qlBVuBK6290S2KenMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjgxMDIzNThaFw0yMzEyMjcxMDIzNTdaMBoxGDAWBgNVBAMT D2podS5zdGVsbGljLmNvbTBZMBMGByqGSM49AgEGCCqGSM49AwEHA0IABE5x2Wxg f3gvONbVA0aBHXC+eOyMesEP4aqDIITlnh8kspFGvE1v6oiZqzQkyh6JAMhQax4e Vjnb4oJa70fRhjujggI3MIICMzAOBgNVHQ8BAf8EBAMCB4AwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJZgN+jx RD1u893XDztGdenBkzyjMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLG MFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iu b3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMEAGA1UdEQQ5 MDeCD2podS5zdGVsbGljLmNvbYIPc3RlbGxpYy5qaHUuZWR1ghNzdGVsbGljdGVz dC5qaHUuZWR1MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB 9QSB8gDwAHYAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGK24gB QwAABAMARzBFAiEAsVekSdDzJs236VANKq9gVmmLrbqmvPqcxxeZFhnnjqkCID7t XO7SZp4xHKhBmp5zGVXXZ9KJbWC/6Ikyiq4jUEWlAHYA6D7Q2j71BjUy51covIlr yQPTy9ERa+zraeF3fW0GvW4AAAGK24gBNAAABAMARzBFAiEA8v9pcgQZCuR9GpZp rR5553x4/6mbreYK8eM8Scwoc/ACIGIHLnfjWwuahCq2pbVz4iMKuwyIq+jUOPiz Qe0DFdXkMA0GCSqGSIb3DQEBCwUAA4IBAQC44MnRMjvw6Os1dUpLQFHL7dN907pf aj6l5fuo4dYMid2tVsdxAr4rqQ9ia35mu8yv8p4o9LY/x8tAqo6ui+k/n+5ovHkn oD+Ln+Edu3/VMISK2G5p8df8wwnhxgJFYpxzK8Xn5NQLC4tZ+9VKtsnyMLG2n1bC T726oUoMTW9SGibIxc6CyiJSbANfnpuPD+iUO73kN8+mmAYFHqEdR1gPmHDg17YT Y87yOq6Uti9bRhkRXqwJ+DW6Gmg1e4W2P+aLTdeg/iXLAZMSrXDpxvCied0oFDEN rjG7akoYvn+nIga46N8PFeSnSypLQzjLWCLNhsz0fGEQ1PWzbswa3A+U -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAETnHZbGB/eC841tUDRoEdcL547Ix6 wQ/hqoMghOWeHySykUa8TW/qiJmrNCTKHokAyFBrHh5WOdviglrvR9GGOw== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 265070653424503698588672551159724928182183 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-28 10:23:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-27 10:23:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'jhu.stellic.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.2.1 (ecPublicKey) . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.3.1.7 (prime256v1) . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (520 bits) 00044e71d96c607f782f38d6d50346811d70be78ec8c7ac10fe1aa832084e59e1f24b29146bc4d6fea8899ab3424ca1e8900c8506b1e1e5639dbe2825aef47d1863b . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits) 0780 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 966037e8f1443d6ef3ddd70f3b4675e9c1933ca3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jhu.stellic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stellic.jhu.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stellictest.jhu.edu' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018adb8801430000040300473045022100b157a449d0f326cdb7e9500d2aaf6056698badbaa6bcfa9cc717991619e78ea902203eed5ceed2669e311ca8419a9e731955d767d2896d60bfe889328aae235045a5007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018adb8801340000040300473045022100f2ff697204190ae47d1a9669ad1e79e77c78ffa99bade60af1e33c49cc2873f0022062072e77e35b0b9a842ab6a5b573e2230abb0c88abe8d438f8b341ed0315d5e4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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