tekuraowaikare.school.nz
Issued by R3
About this certificate
This digital certificate with serial number 04:6a:ac:20:d4:66:67:0c:77:6c:18:38:d6:c4:52:35:ba:2b was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=tekuraowaikare.school.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:6a:ac:20:d4:66:67:0c:77:6c:18:38:d6:c4:52:35:ba:2bSerial Number (int): 384747872297418942935923005619579037006379
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 8a:dd:69:b4:b3:b8:40:c5:53:f7:c6:2b:a6:cc:49:3c:bf:5a:21:cd
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): b3:c8:bd:ac:e7:bf:66:0d:5b:01:24:15:4c:85:85:dd:24:ab:89:4b
Fingerprint (sha256): b5:f6:ce:49:98:84:89:82:e4:8a:a6:f9:6c:e6:1b:0d:54:48:4c:44:0d:4d:1d:fe:69:17:94:32:ce:2f:6f:52
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate tekuraowaikare.school.nz
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tekuraowaikare.school.nz
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tekuraowaikare.school.nz
Other certificates including the domain name tekuraowaikare.school.nz
(limited to 100 certificates)
tekuraowaikare.school.nz
tekuraowaikare.school.nz
kiwischools.co.nz
tekuraowaikare.school.nz
kiwischools.co.nz
tekuraowaikare.school.nz
tekuraowaikare.school.nz
kiwischools.co.nz
sni.cloudflaressl.com
tekuraowaikare.school.nz
kiwischools.co.nz
kiwischools.co.nz
tekuraowaikare.kiwischools.com
tekuraowaikare.school.nz
tekuraowaikare.school.nz
kiwischools.co.nz
tekuraowaikare.school.nz
kiwischools.co.nz
tekuraowaikare.school.nz
tekuraowaikare.school.nz
kiwischools.co.nz
sni.cloudflaressl.com
tekuraowaikare.school.nz
kiwischools.co.nz
kiwischools.co.nz
tekuraowaikare.kiwischools.com
tekuraowaikare.school.nz
Certificate
The complete raw certificate details for tekuraowaikare.school.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF/TCCBOWgAwIBAgISBGqsINRmZwx3bBg41sRSNborMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMjQxMDEyMjRaFw0yNDA2MjIxMDEyMjNaMCMxITAfBgNVBAMT GHRla3VyYW93YWlrYXJlLnNjaG9vbC5uejCCAiIwDQYJKoZIhvcNAQEBBQADggIP ADCCAgoCggIBAMZF0TbChNv2VxYldFpvXsZ+RWUiymNjydjXvkuXh4zQSJsjANw8 v9N+knfeTwDMD4zVed3DjfzvKaJECEq/wLruTjY0IMsHz1GtPUXkQ+ji3PqEM43T XH62LaE0QCZUR0ke586lczvl25jBGE0jYaUbrZhfx+SfdL0cGGBWFI49a5WXbEJu VhDgqOVI6Bi15kiX9p2Ujy7vdR3kDXwYH5M9qUAfWxpqNJW6Xz6H+ZCcepx9Dnsb 7ucs8/hhR4EDEGmzn1JsMV7qxyXQD9PWdVe/yT68lwBXLEyZ/er9fOQU1Kj1+zwl KBgcWuNmxeB3Kp/kke4J7UG4Jn7BHpk7IKfiNuvcNArLoVUjOlMAc3I17udl1sHJ FCdEsS+9ZJ1X+xapr73dZKU4JjGJLrosXDnqXd9CiXFaEDUYtrO2DUaHf1tbNL0z 8vHGDtyG9oCtrysEs6JLBRckhlc3umy+TYbdlUnNpbLIk1K/5B+qyfKB5AM6dkEr 9fKT6myh1RJrn3AzW57UTCWenMQG7VftVQvNh9VTpKWoPW2GDTENnaZlqM9Qu3VN n3LgfoTxZJ/Byag/1AimDrziyWPRZL4Q/UFee/OW9s9unm6G6g9sKbsJ1+Z0wIlN RPtZvJQsEJ9wpELQmT5PSPbOLIGRSNuIeq5LZOsdfnIGwU4jgogbAwW/AgMBAAGj ggIaMIICFjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFIrdabSzuEDFU/fGK6bMSTy/ WiHNMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEB BEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUF BzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMCMGA1UdEQQcMBqCGHRla3VyYW93 YWlrYXJlLnNjaG9vbC5uejATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB 1nkCBAIEgfUEgfIA8AB2AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfY AAABjnApY20AAAQDAEcwRQIgBWX9424vhfDYSDL455Rs1b2G3LYTi/KjqYWnVWS9 BuYCIQDu1yKv9EEkE/VE5RwvGHDkhrZJtqq4pP/WZVpVQjxnPgB2ADtTd3U+LbmA ToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjnApazEAAAQDAEcwRQIhAMPE6Vrr H37jQr3eNXUy4is5VIfSsAzZolutRwsEPDtzAiAOBNQOw9zW+fgD8hRJ1blXfkcE KaQJh6gR9TThOrbtzTANBgkqhkiG9w0BAQsFAAOCAQEAT7p/PNY4+r0YOt2oACqx m4ufpFhsYgqYofCtScXreOasuk7sx4D8B3f1cvEz95LYqe0pB9iiNE2+i4TOFt7P b9+wf2QrEjPBaO6bU+zdCj9OvqL9ngHi4YEyJQPylVKKPS52DhrWVzYUGuK/3b8s i12eUqjVfJo9iVOa8TeJzvlrm/3kp8oXJ18R908m+mYe4jXV/YmlWlq8/+Loux4h H9yUHf9BvwVnbraveYPbCJJh0dUj93KmjrDE5UtA18EjXqrtajKyE3Uc+TEh1L9n mV5nhW/wWUX0sJGro0rV7lOUcg4tiU9Ujb4/jo0ppJEN8J/r/JQIQ9Y2OXPlPYN/ lg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxkXRNsKE2/ZXFiV0Wm9e xn5FZSLKY2PJ2Ne+S5eHjNBImyMA3Dy/036Sd95PAMwPjNV53cON/O8pokQISr/A uu5ONjQgywfPUa09ReRD6OLc+oQzjdNcfrYtoTRAJlRHSR7nzqVzO+XbmMEYTSNh pRutmF/H5J90vRwYYFYUjj1rlZdsQm5WEOCo5UjoGLXmSJf2nZSPLu91HeQNfBgf kz2pQB9bGmo0lbpfPof5kJx6nH0Oexvu5yzz+GFHgQMQabOfUmwxXurHJdAP09Z1 V7/JPryXAFcsTJn96v185BTUqPX7PCUoGBxa42bF4Hcqn+SR7gntQbgmfsEemTsg p+I269w0CsuhVSM6UwBzcjXu52XWwckUJ0SxL71knVf7Fqmvvd1kpTgmMYkuuixc Oepd30KJcVoQNRi2s7YNRod/W1s0vTPy8cYO3Ib2gK2vKwSzoksFFySGVze6bL5N ht2VSc2lssiTUr/kH6rJ8oHkAzp2QSv18pPqbKHVEmufcDNbntRMJZ6cxAbtV+1V C82H1VOkpag9bYYNMQ2dpmWoz1C7dU2fcuB+hPFkn8HJqD/UCKYOvOLJY9FkvhD9 QV5785b2z26ebobqD2wpuwnX5nTAiU1E+1m8lCwQn3CkQtCZPk9I9s4sgZFI24h6 rktk6x1+cgbBTiOCiBsDBb8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 384747872297418942935923005619579037006379 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-24 10:12:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-22 10:12:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tekuraowaikare.school.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 808882140688421760339037218998598523984581142108477398085622136277945149530419580406110937307100207281062785620916750429608809546738500331798937892390827673173660873751567981876087303489871716949592281593025396150947786026517433006009860109262613185262909329652721285695719923952345202065079853931604201291669979153347716317907644216268743589272077929842070482994410695457094069404847873670653883682229285531915694826336480727068307852137074058323107011349412996195543249400823656309782580536049618742216651155671793839051584675710248452961604997787200620824844677565652154094319074104979918502530572001955384315548840822810775343913976389940266935441855394220791368625657616271750684441435721652347882919255683212371701928124249882393732011414917423727967255640492072273014907116613830708998865288916730626516319215117680863300449963702775877385012461416719435875772510218922718007619470865053187146270478269626525434927165123133705083387956588979473269069261549375726097197748518754840132627749471524012226686909949209960322543966647289169309562731060991493054177935825801274028773596948572781385973673126481270835386560982988970853926510082816923518627464664811137533987126481638946808232021053049478252420230199291779792767223231 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8add69b4b3b840c553f7c62ba6cc493cbf5a21cd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tekuraowaikare.school.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e7029636d000004030047304502200565fde36e2f85f0d84832f8e7946cd5bd86dcb6138bf2a3a985a75564bd06e6022100eed722aff4412413f544e51c2f1870e486b649b6aab8a4ffd6655a55423c673e0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e70296b310000040300473045022100c3c4e95aeb1f7ee342bdde357532e22b395487d2b00cd9a25bad470b043c3b7302200e04d40ec3dcd6f9f803f21449d5b9577e470429a40987a811f534e13ab6edcd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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