www.kaiapoi.org.nz
Issued by R3
About this certificate
This digital certificate with serial number 03:94:ae:6b:2c:fb:ca:9c:e7:85:3a:c6:af:43:18:c7:49:74 was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.kaiapoi.org.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:94:ae:6b:2c:fb:ca:9c:e7:85:3a:c6:af:43:18:c7:49:74Serial Number (int): 311930490258985068130382584344681652898164
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3f:fb:1e:c7:4c:5c:62:14:12:dc:48:b1:bf:0b:96:f8:0e:c6:5c:96
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): af:96:29:12:4c:32:ff:76:28:e1:a3:b3:9e:a4:88:bc:2a:18:52:7d
Fingerprint (sha256): bb:e1:a0:56:fc:ec:4f:c0:c2:02:6a:cd:33:69:1a:de:fe:db:f7:4a:c3:e4:20:78:c9:62:07:11:08:68:0f:9d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.kaiapoi.org.nz
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.kaiapoi.org.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
business.kaiapoi.org.nz
destination.kaiapoi.org.nz
kaiapoi.org.nz
vnext.kaiapoi.org.nz
www.kaiapoi.org.nz
destination.kaiapoi.org.nz
kaiapoi.org.nz
vnext.kaiapoi.org.nz
www.kaiapoi.org.nz
Other certificates including the domain name kaiapoi.org.nz
(limited to 100 certificates)
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
securedrive.kaiapoi.org.nz
www.kaiapoi.org.nz
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
forms.kaiapoi.org.nz
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
www.kaiapoi.org.nz
securedrive.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
forms.juelzs.com
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
securedrive.kaiapoi.org.nz
www.kaiapoi.org.nz
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
forms.kaiapoi.org.nz
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
www.kaiapoi.org.nz
vnext.kaiapoi.org.nz
www.kaiapoi.org.nz
securedrive.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
vnext.kaiapoi.org.nz
forms.juelzs.com
vnext.kaiapoi.org.nz
Certificate
The complete raw certificate details for www.kaiapoi.org.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgISA5Suayz7ypznhTrGr0MYx0l0MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MDEyMDMyNDhaFw0yMzExMzAyMDMyNDdaMB0xGzAZBgNVBAMT End3dy5rYWlhcG9pLm9yZy5uejCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAIP1wIyvE9u9hWioFGJOMmhZ/xrbdt+xkKiCPtGspvTHMUDcOkhzDz69EiBW K7EncLzgp2npK1rFLtEK5C1mbjaS8NfwtH7jRAmT0afP7OItQ99nAIhOnrB5wxqf wf8iUYDurIxXapHP+DsE1mi7/EBEzQYOKEtlYiFlEa20e2GN6HfzGdnGULpt3wW6 9dpi4d/bjGTX23ZEXNxVHRcJk0PJu7IbRc/AmAtsEBqIPdi6Kpr11Oxb1uEwYsRp wxmbePlkGKFj65Abk2FzqFxeuPGd206c9SnGcEtPTQndGPyEJ8z5+qz0JGCnTmZr UOJ0aYlOdrG9IVTPvRSJxbzrNcsCAwEAAaOCAnAwggJsMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUP/sex0xcYhQS3EixvwuW+A7GXJYwHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8weAYDVR0RBHEwb4IXYnVzaW5lc3Mua2FpYXBvaS5vcmcubnqCGmRlc3Rp bmF0aW9uLmthaWFwb2kub3JnLm56gg5rYWlhcG9pLm9yZy5ueoIUdm5leHQua2Fp YXBvaS5vcmcubnqCEnd3dy5rYWlhcG9pLm9yZy5uejATBgNVHSAEDDAKMAgGBmeB DAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2ALc++yTfnE26dfI5xbpY9Gxd /ELPep81xJ4dCYEl7bSZAAABilKptPAAAAQDAEcwRQIhAP2a6XetsRhVHfPxwguy MSqrrOX6HDCxqfjXQmRfixvkAiB2cEXcl1JNdYlrzTN/jh038Xck6MoSeqciNWXH pbAdDQB3AK33vvp8/xDIi509nB4+GGq0Zyldz7EMJMqFhjTr3IKKAAABilKptS0A AAQDAEgwRgIhALGoe5i3+FnLQFR06RrVPnjzWzgx9gI3yh9IlnWqw8e5AiEA8Jrt SaPIVulJqZn72B0A4nxC4gFU2XrdzXyqmvDq4tgwDQYJKoZIhvcNAQELBQADggEB ALF9IeV11Depqdhe4Vx9Gl8SMMRrwuV2mESMqhcm6L4xYXfO9WAeQKnzGFVU3g9i WZIaf4m9ZHHvUuztqpm4IXidVJ07E5PUI/c/YxhmkngkQyfR937wkF334VZyhOd1 uC26/bvV0Pe3TrmTrNHbnob2jMvtvHwQzyKWOc0WTOMEgTDOlg427W1UhfPG9kQt dmkyOPYlPWn++B3tEyph0/5zJ1jZmFeULbbz7cparGMxMomyHiieCY66bY/WNef7 eIvRZFCX7qyt7za//gfYOPGZ/O83cQ6KImiLyB2QPHoDdJP9cB5NdXO6ea3JE+Aj e+gbPauNkb1tovqcPQG4ekc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAg/XAjK8T272FaKgUYk4y aFn/Gtt237GQqII+0aym9McxQNw6SHMPPr0SIFYrsSdwvOCnaekrWsUu0QrkLWZu NpLw1/C0fuNECZPRp8/s4i1D32cAiE6esHnDGp/B/yJRgO6sjFdqkc/4OwTWaLv8 QETNBg4oS2ViIWURrbR7YY3od/MZ2cZQum3fBbr12mLh39uMZNfbdkRc3FUdFwmT Q8m7shtFz8CYC2wQGog92LoqmvXU7FvW4TBixGnDGZt4+WQYoWPrkBuTYXOoXF64 8Z3bTpz1KcZwS09NCd0Y/IQnzPn6rPQkYKdOZmtQ4nRpiU52sb0hVM+9FInFvOs1 ywIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 311930490258985068130382584344681652898164 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-01 20:32:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-30 20:32:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.kaiapoi.org.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16658402850697719008951474124369457517197220650873254456750667455860588573925364594794664181270804348128085698088351351163417847623144272269730430328325077344555334608591177647592700008687312997169395467810625935345150949046189215113347825672564249012872025615410641727760825082113916296042803524923483710720499668304001761995481721089184420034840490558923037344958287992866538049902027756151057310246099497263069622686323258461240625182051666869176360040855763424925293258985036803783829395001845881048384777731890228043750514067674812909876275230168731965513363086758564084989911148234670601385803903187294907741643 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3ffb1ec74c5c621412dc48b1bf0b96f80ec65c96 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'business.kaiapoi.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'destination.kaiapoi.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kaiapoi.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vnext.kaiapoi.org.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kaiapoi.org.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a52a9b4f00000040300473045022100fd9ae977adb118551df3f1c20bb2312aabace5fa1c30b1a9f8d742645f8b1be40220767045dc97524d75896bcd337f8e1d37f17724e8ca127aa7223565c7a5b01d0d007700adf7befa7cff10c88b9d3d9c1e3e186ab467295dcfb10c24ca858634ebdc828a0000018a52a9b52d0000040300483046022100b1a87b98b7f859cb405474e91ad53e78f35b3831f60237ca1f489675aac3c7b9022100f09aed49a3c856e949a999fbd81d00e27c42e20154d97addcd7caa9af0eae2d8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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