healthier-communities.org

Issued by R3

About this certificate

This digital certificate with serial number 04:ef:a4:f3:1b:3d:72:e1:da:fd:bb:90:a2:88:12:15:90:e6 was issued on by Let's Encrypt.

With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=healthier-communities.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:ef:a4:f3:1b:3d:72:e1:da:fd:bb:90:a2:88:12:15:90:e6
Serial Number (int): 429995885093084161066062794121416342343910
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: a2:99:89:ec:28:e5:2b:82:c7:42:c8:5e:6a:bb:f5:86:08:98:73:5e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 29:34:56:55:2b:36:7b:c7:84:92:5a:45:c3:0c:d5:18:e9:74:3b:f6
Fingerprint (sha256): b7:7d:6d:26:e0:29:d2:96:a7:76:07:48:50:f3:b5:bf:36:20:45:44:00:c9:76:ba:1e:f5:2a:ab:42:57:a5:2c

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate healthier-communities.org

8

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for healthier-communities.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

czechcitytours.com.alltrashhauling.com
dfwprestige.com.duluthdivorceattorney.com
dubaiparking.com
focuslms.com
healthier-communities.org
patriotphoenix.com
personaltrainail.com.hydraulic-tensioning.co.uk
sunglasses4vip.com

Other certificates including the domain name healthier-communities.org

(limited to 100 certificates)
arbitragefund.ca
www.sunsetlibrary.bible
healthier-communities.org
enerpactoolsgroup.co.za
healthier-communities.org
healthier-communities.org
healthier-communities.org
charitycart.net.xn--h4h.gg

Certificate

The complete raw certificate details for healthier-communities.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZEnrE24o7EThKR5iI0c
ArRcQPMN4sbQ5CtfqgkFArKVuatyH+i0rFdbnTmAzCdNFIwtgS8Einoj21Z4W9+c
FpTUXWl7TpLQsuVFPwDd2iMoPdTMuXyryRmxaMb6uwCuCxIBYoTfRe0+SLOGE+R6
xGEuZ74K8GjAIjxnxrj/g9gGS3yvw2S43B46cwSLKIOyRjWBgggWByqXv2sh7JC2
N4uYTXEUaxOm0pfME34V5vrQsx7TyFN+Ag7RCSyNpXM2NjXSV8iJC6x42iDrM9A5
MVYOzYBV5MpZ9MCIwjEmm8yPLoFKXdkDCnEAIR4VOmTpWsRkdvCM64SH7X/NKiXl
SQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 429995885093084161066062794121416342343910
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-19 14:16:24 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-17 14:16:23 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'healthier-communities.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26455384322810808064035398669825450977683695745402235638850777316638381549353874997953383926366047698981439503539576571097687483755566228454295964360712649666363199529823662439738249461222005661861370202730594226051972280922469544902771164362601344811736711273040650053261439476517573962969172197436876027996949879975317654561716542925179579643152159842831935191825225421702415583386451929442285876954171107957244469088083390250247975171204917039026032056686557705619606806399568462665294625923674396266917223572391676714697418819336313680469514632440879158463258075798854970454695231265443397248940374719715135055177
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							a29989ec28e52b82c742c85e6abbf5860898735e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (234 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'czechcitytours.com.alltrashhauling.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dfwprestige.com.duluthdivorceattorney.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dubaiparking.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'focuslms.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthier-communities.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'patriotphoenix.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'personaltrainail.com.hydraulic-tensioning.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sunglasses4vip.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018be8277eb10000040300463044022012124c443a7d999070d22b672260f8eee605093adfe9bb323c8e10639fba26d7022053d1b07c5552f188bf6750b12c6d670691d7f3e378977653d16e844bf48c499400750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018be8277fac000004030046304402207bead8f9d1d665c3ff24dec26984189f097f036f586d795581a4d943269ee93202204ea1797b38d2ec89631378571f42de710a34d04b71a7c5fb543641228ac38cb7
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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