medica.ie

Issued by R3

About this certificate

This digital certificate with serial number 03:d5:c2:92:11:a5:b9:7b:c6:46:24:02:79:04:1d:36:2c:5b was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=medica.ie

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:d5:c2:92:11:a5:b9:7b:c6:46:24:02:79:04:1d:36:2c:5b
Serial Number (int): 334075630613895266859694798722606982114395
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 3a:26:80:9c:fe:95:1c:1a:16:ac:1b:83:d4:20:48:40:54:1a:da:95
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): f8:95:4a:2c:ac:13:36:fc:20:24:24:cd:72:f2:60:89:7e:19:a2:ce
Fingerprint (sha256): c7:a2:38:5c:3f:db:02:9e:85:08:57:12:c6:be:84:b5:e3:ae:44:60:5b:9f:f5:1c:85:5c:e6:37:d1:e4:4b:a1

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate medica.ie

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for medica.ie

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

medica.ie
www.medica.ie

Other certificates including the domain name medica.ie

(limited to 100 certificates)
sdp.dilloneustace.ie
sdp.dilloneustace.ie
www.medica.ie
noc.servicedesk.as
servicedesk.medica.ie
helpdesk.plumsteadmanor.com
www.medica.ie
assist.pentest.partners
assist.pentest.partners
helpdesk.plumsteadmanor.com
assist.pentest.partners
noc.servicedesk.as
medica.ie
medica.ie
medica.ie
assist.pentest.partners
medica.ie

Certificate

The complete raw certificate details for medica.ie in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnWyWG0xoDixfR6JcVl+A
LVFAmh8jSluFrbw6wmJQBeym4EJaTodTvVOjtiDApukRMbvcjk3hZE42eWh7ppQM
zTraFv81UY+Zn85aJRdZMlBr1KZ0ts/rd8mo0IH7D05njd8uDtdyVli5+GS1xtIW
bbemYctO9epDwT0S5MzPmMf3COETsQTOYW5Y7VgYZkxABVXqJzhR5F3JA7H2NB/k
ZVF5zNZ5Yvi5rBkVBZbc3FMaVAzDQzGYr+NxVlOaJyNoXbqyMV2+ybb/bmr6Z4/Y
z+TtTyqvKNb4RiLC680X3F9aGg/+zJbCCJs2sjaDSHm5ttx8YpvfGyMQ+JMRmkS/
ZwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 334075630613895266859694798722606982114395
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-29 00:51:12 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-28 00:51:11 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'medica.ie'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19872959806533084131986673556599753841734808132139277702429319696634522022941223600061239773397859211289780023872126783364472699772684561353903100671064381463991418142835186829273774891329363666785156116683678185332417099864563778441941160429445946608641646790652779125186576784235951582861279226949539887026480950868703326717238567941935983225207984721555858378538956471260550962522802482707520161763423906966986083344969016329503691816146932014002966276057910845897985100787813229300503562639932392171957942020731042349559884500995631640539181637431145473472023633949726467609120425663881028007477231191062349135719
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3a26809cfe951c1a16ac1b83d4204840541ada95
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'medica.ie'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.medica.ie'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018cb344b0e00000040300483046022100d17e1a679b9cf7d89edaaf743d6af87b2092bb0e1201025d668e41e3f80889870221009bfcf4b498015501ec746de3d58fec59a261dc2c1b917c51765ba732ac7a3ed700760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cb344b2cc00000403004730450221008adc782f3890892e5fe1ebe40e89b1410458a38f2937ce961904e576a1dfb4c402200375b10fe3e537087c8b082bc7ba5cd899284f0076531309456b52d4cb9f16de
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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