lchs.lcdoe.org

Issued by R3

About this certificate

This digital certificate with serial number 03:04:6f:40:fb:89:52:34:9c:26:d4:75:b5:52:78:e7:bd:ab was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=lchs.lcdoe.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:04:6f:40:fb:89:52:34:9c:26:d4:75:b5:52:78:e7:bd:ab
Serial Number (int): 262845868979260075837962663334549110898091
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 0c:23:2d:16:03:1f:6f:27:14:3c:85:19:53:67:3f:eb:15:41:04:00
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 2c:9f:1c:48:92:a5:d3:d7:25:d5:99:cf:b0:5f:3f:1d:77:15:31:71
Fingerprint (sha256): b8:9c:de:c3:62:9e:58:67:d3:e0:f5:31:c3:8d:3f:de:f2:4d:3f:31:06:9d:eb:13:d9:2a:de:f5:12:0d:2c:f7

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate lchs.lcdoe.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for lchs.lcdoe.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

lchs.lcdoe.org

Other certificates including the domain name lcdoe.org

(limited to 100 certificates)
admin.aes.cvsd.org
lcdoe.org
sv.gvusd.k12.ca.us
lcdoe.org
bps.berrienschools.org
bls.lcdoe.org
admin.jww.jubileeacademies.org
admin.bls.lcdoe.org
admin.amacarson.org
aak.potsdam.k12.ny.us
centerpreschool.centerusd.org
lcdoe.org
lcdoe.org
admin.amacarson.org
lcdoe.org
lca.lcdoe.org
landrum.sbcisd.net
whitepinescvs.adsb.on.ca
sms.cvsd.org
aak.potsdam.k12.ny.us
dudley.centerusd.org
admin.bes.berrienschools.org
aak.potsdam.k12.ny.us
admin.ashe.cps.edu
admin.centerpreschool.centerusd.org
admin.cvhs.cvsd.org
instructionaltech.sbcisd.net
ochoaprep.erusd.org
aak.potsdam.k12.ny.us
lcdoe.org
aak.potsdam.k12.ny.us
admin.elementary.alexandercsd.org
aak.potsdam.k12.ny.us
lcdoe.org
www.curiehs.org
lchs.lcdoe.org
lcdoe.org
aak.potsdam.k12.ny.us
aak.potsdam.k12.ny.us
lca.lcdoe.org
colems-old.fshisd.net
eastview.adsb.on.ca
erhs.erusd.org
aak.potsdam.k12.ny.us
rgcole.fshisd.net
aak.potsdam.k12.ny.us
bls.lcdoe.org
middlehigh.alexandercsd.org
admin.rgcole.fshisd.net
adsb.on.ca

Certificate

The complete raw certificate details for lchs.lcdoe.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 262845868979260075837962663334549110898091
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-07 13:04:35 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-05 13:04:34 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lchs.lcdoe.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 995595934690487803237697512988232139410776477662311729866701098012671974713869486120685839792356026448904376881717035127838261672660495290942480000008200330187916637172411423044762278917896946901494886091731612960517668307809996322117453902856937716751435274367727627481899440092639490390163157871881503211662518920821725704788948595031370959834913484645047796248237305914785773038139174708312644809471283419268853053151522949388208595320198192832979742353735531513595224482665038718476381961755679414151825499424567103799861584301793697283999859663268340947905159290083185053494299769495436349785788803970838907239350447110743566331443659926332722745150174744056672308231543531789115696231404841451436390758629531671330306973890905315297845740562865471224873835444485035205616738697100694033646099808976233995324499789713431835439374271005566639648043501365710334944821916121358661380867131883550456021398357256816591402034307177639042998688972829791307337652640314896868941181210987924265349764106005797288397524878507249759471896433838354316806728541292579740138886185635418665046908611284567060393106704644329031528440718927203707688485370264246734412968543855779134116675529421818028352156577511121177317787605099920560143493213
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							0c232d16031f6f27143c851953673feb15410400
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lchs.lcdoe.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018930ab3c700000040300473045022100a9edbe0823ccfd2b8443c8b7d02ff37409746c503f76dfcd4cc458d34ba4bb0c022044efcce3dea293e146a9a229635b8189256390e890995e46bc48356ae4b57dd4007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018930ab3c640000040300473045022100c499cb03e5801cde755277fc361ba97d6368d8bbada95ba55e894256c6398ea402204a03285d1917661abe25db98b6c462620106380919baf23bd6f331a1f0002532
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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