healthier-communities.org
Issued by R3
About this certificate
This digital certificate with serial number 04:ef:a4:f3:1b:3d:72:e1:da:fd:bb:90:a2:88:12:15:90:e6 was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=healthier-communities.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ef:a4:f3:1b:3d:72:e1:da:fd:bb:90:a2:88:12:15:90:e6Serial Number (int): 429995885093084161066062794121416342343910
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a2:99:89:ec:28:e5:2b:82:c7:42:c8:5e:6a:bb:f5:86:08:98:73:5e
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 29:34:56:55:2b:36:7b:c7:84:92:5a:45:c3:0c:d5:18:e9:74:3b:f6
Fingerprint (sha256): b7:7d:6d:26:e0:29:d2:96:a7:76:07:48:50:f3:b5:bf:36:20:45:44:00:c9:76:ba:1e:f5:2a:ab:42:57:a5:2c
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate healthier-communities.org
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for healthier-communities.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
czechcitytours.com.alltrashhauling.com
dfwprestige.com.duluthdivorceattorney.com
dubaiparking.com
focuslms.com
healthier-communities.org
patriotphoenix.com
personaltrainail.com.hydraulic-tensioning.co.uk
sunglasses4vip.com
dfwprestige.com.duluthdivorceattorney.com
dubaiparking.com
focuslms.com
healthier-communities.org
patriotphoenix.com
personaltrainail.com.hydraulic-tensioning.co.uk
sunglasses4vip.com
Other certificates including the domain name healthier-communities.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for healthier-communities.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFzDCCBLSgAwIBAgISBO+k8xs9cuHa/buQoogSFZDmMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMTkxNDE2MjRaFw0yNDAyMTcxNDE2MjNaMCQxIjAgBgNVBAMT GWhlYWx0aGllci1jb21tdW5pdGllcy5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDRkSesTbijsROEpHmIjRwCtFxA8w3ixtDkK1+qCQUCspW5q3If 6LSsV1udOYDMJ00UjC2BLwSKeiPbVnhb35wWlNRdaXtOktCy5UU/AN3aIyg91My5 fKvJGbFoxvq7AK4LEgFihN9F7T5Is4YT5HrEYS5nvgrwaMAiPGfGuP+D2AZLfK/D ZLjcHjpzBIsog7JGNYGCCBYHKpe/ayHskLY3i5hNcRRrE6bSl8wTfhXm+tCzHtPI U34CDtEJLI2lczY2NdJXyIkLrHjaIOsz0DkxVg7NgFXkyln0wIjCMSabzI8ugUpd 2QMKcQAhHhU6ZOlaxGR28IzrhIftf80qJeVJAgMBAAGjggLoMIIC5DAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFKKZiewo5SuCx0LIXmq79YYImHNeMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMIHyBgNVHREEgeowgeeCJmN6ZWNoY2l0eXRvdXJzLmNvbS5h bGx0cmFzaGhhdWxpbmcuY29tgilkZndwcmVzdGlnZS5jb20uZHVsdXRoZGl2b3Jj ZWF0dG9ybmV5LmNvbYIQZHViYWlwYXJraW5nLmNvbYIMZm9jdXNsbXMuY29tghlo ZWFsdGhpZXItY29tbXVuaXRpZXMub3JnghJwYXRyaW90cGhvZW5peC5jb22CL3Bl cnNvbmFsdHJhaW5haWwuY29tLmh5ZHJhdWxpYy10ZW5zaW9uaW5nLmNvLnVrghJz dW5nbGFzc2VzNHZpcC5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggECBgorBgEE AdZ5AgQCBIHzBIHwAO4AdQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frU FwAAAYvoJ36xAAAEAwBGMEQCIBISTEQ6fZmQcNIrZyJg+O7mBQk63+m7MjyOEGOf uibXAiBT0bB8VVLxiL9nULEsbWcGkdfz43iXdlPRboRL9IxJlAB1AHb/iD8KtvuV UcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABi+gnf6wAAAQDAEYwRAIge+rY+dHW ZcP/JN7CaYQYnwl/A29YbXlVgaTZQyae6TICIE6heXs40uyJYxN4Vx9C3nEKNNBL cafF+1Q2QSKKw4y3MA0GCSqGSIb3DQEBCwUAA4IBAQAF5gw/G5QKI/gV9N7oFZC9 EMEjmwFQJ0Yaf3Xv8DrwzOw+nBE8ZaT2IpzH7lXuZrYNXNP+cgrlY8o8PIFHxv9f 2vPXpytqvbTe3AiLKNLFCDu4WRLzAUDjS03QicoHZUNlQCGAJ6kvXukv09lE+PXh /C2W92gpS3ddu9gzWMjrpg2AW/V1943iDO981v8BbwpaBbF6Rfws2XbcBi7h7gPy vXSBhPN74lzXsRGunI4iWkfBp/IVoMGLoCQY5QQrYVRVdecv92XqUJhVVzlxlzvu pYYW03eS6ifHmADde7jzZ0n3NtDk9yjNMgheG7045S+mrnLsp3UccNmzWPLTk+CN -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0ZEnrE24o7EThKR5iI0c ArRcQPMN4sbQ5CtfqgkFArKVuatyH+i0rFdbnTmAzCdNFIwtgS8Einoj21Z4W9+c FpTUXWl7TpLQsuVFPwDd2iMoPdTMuXyryRmxaMb6uwCuCxIBYoTfRe0+SLOGE+R6 xGEuZ74K8GjAIjxnxrj/g9gGS3yvw2S43B46cwSLKIOyRjWBgggWByqXv2sh7JC2 N4uYTXEUaxOm0pfME34V5vrQsx7TyFN+Ag7RCSyNpXM2NjXSV8iJC6x42iDrM9A5 MVYOzYBV5MpZ9MCIwjEmm8yPLoFKXdkDCnEAIR4VOmTpWsRkdvCM64SH7X/NKiXl SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 429995885093084161066062794121416342343910 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-19 14:16:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-17 14:16:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'healthier-communities.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26455384322810808064035398669825450977683695745402235638850777316638381549353874997953383926366047698981439503539576571097687483755566228454295964360712649666363199529823662439738249461222005661861370202730594226051972280922469544902771164362601344811736711273040650053261439476517573962969172197436876027996949879975317654561716542925179579643152159842831935191825225421702415583386451929442285876954171107957244469088083390250247975171204917039026032056686557705619606806399568462665294625923674396266917223572391676714697418819336313680469514632440879158463258075798854970454695231265443397248940374719715135055177 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a29989ec28e52b82c742c85e6abbf5860898735e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (234 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'czechcitytours.com.alltrashhauling.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dfwprestige.com.duluthdivorceattorney.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dubaiparking.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'focuslms.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthier-communities.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'patriotphoenix.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'personaltrainail.com.hydraulic-tensioning.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sunglasses4vip.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018be8277eb10000040300463044022012124c443a7d999070d22b672260f8eee605093adfe9bb323c8e10639fba26d7022053d1b07c5552f188bf6750b12c6d670691d7f3e378977653d16e844bf48c499400750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018be8277fac000004030046304402207bead8f9d1d665c3ff24dec26984189f097f036f586d795581a4d943269ee93202204ea1797b38d2ec89631378571f42de710a34d04b71a7c5fb543641228ac38cb7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0005e60c3f1b940a23f815f4dee81590bd10c1239b015027461a7f75eff03af0ccec3e9c113c65a4f6229cc7ee55ee66b60d5cd3fe720ae563ca3c3c8147c6ff5fdaf3d7a72b6abdb4dedc088b28d2c5083bb85912f30140e34b4dd089ca0765436540218027a92f5ee92fd3d944f8f5e1fc2d96f768294b775dbbd83358c8eba60d805bf575f78de20cef7cd6ff016f0a5a05b17a45fc2cd976dc062ee1ee03f2bd748184f37be25cd7b111ae9c8e225a47c1a7f215a0c18ba02418e5042b61545575e72ff765ea509855573971973beea58616d37792ea27c79800dd7bb8f36749f736d0e4f728cd32085e1bbd38e52fa6ae72eca7751c70d9b358f2d393e08d