www.ndsaintsacrement.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:86:9d:aa:8c:f0:3b:33:62:a3:bf:0b:c1:88:6c:32:d2:86 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.ndsaintsacrement.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:86:9d:aa:8c:f0:3b:33:62:a3:bf:0b:c1:88:6c:32:d2:86Serial Number (int): 307144269307061102007972704791220859359878
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ec:8b:19:38:a8:81:ec:e3:38:13:79:8a:a5:00:5d:e5:af:cc:79:3e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 6c:2a:ce:1c:70:5e:b7:54:60:ce:90:28:ff:55:fe:4d:35:1e:79:68
Fingerprint (sha256): cd:42:da:3a:53:f2:5e:41:4e:d8:2d:5c:c6:60:72:d7:0d:78:ff:ab:3d:41:cf:d8:fb:c2:b7:2c:1e:1c:1d:86
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate www.ndsaintsacrement.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ndsaintsacrement.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ndsaintsacrement.org
www.ndsaintsacrement.org
www.ndsaintsacrement.org
Other certificates including the domain name ndsaintsacrement.org
(limited to 100 certificates)
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
chapellecortambert.com
ndsaintsacrement.org
chapellecortambert.com
chapellecortambert.com
ndsaintsacrement.org
ndsaintsacrement.org
www.ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
www.ww2.ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
www.ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
chapellecortambert.com
ndsaintsacrement.org
chapellecortambert.com
chapellecortambert.com
ndsaintsacrement.org
ndsaintsacrement.org
www.ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
www.ww2.ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
www.ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
ndsaintsacrement.org
Certificate
The complete raw certificate details for www.ndsaintsacrement.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGKjCCBRKgAwIBAgISA4adqozwOzNio78LwYhsMtKGMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzAxMDQwNjEwMDBaFw0x NzA0MDQwNjEwMDBaMCMxITAfBgNVBAMTGHd3dy5uZHNhaW50c2FjcmVtZW50Lm9y ZzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAOwWq98xTOnAv6zsk0zz ICGLchBEjvnGsdafkJl1ip0Bi2Y8k+2Xf+6TBhJBslDfRb/vWVSScIS/esLvpWuI SRLnMRpCEV0A/gHqBqYdPVVIGUnQgi/o6nKCnDRnHGzMtPm/K6SGfajlxrxCp1hY WMSgZO5OYc+ScR93hiAjOyow5qKy4Lb+ceT1oAgYRNpgkXJ6teON2e4WFIBmYUdd nPGg3v7DRYGY7qHuzg4ael7iZsaZ5XLcyMNYgxRBo7JQXZUzYdkWRsFCS5aKUqMF 6oXEOLtsjDq+7Hjv7G6WHdjVyM4OhbJK9y3QnEV7ClEzL+h9RyXhixvUacH6Styu AjZXWiwFYvYdjQwKoLzwdXyooanJyD9JPjc+u3QZhRTOk4wyEDURQCT3GlYrlcjx aRZDDi4fRTM3j5MkcthkvpA64Pl27SlTOqBOu0LhIBoO6mzC91tCQ4R4MQJOUx1e GPc4uXkuF1H5tkppjc2/x2M50PqDbpVoMi84MfnHVQBLX0PINDSbSiMfXobSNahc o7QyYs0U/tQR8ZL4PSeh+A6R323e3tf6ynf7qawSZ//nyg1dnxWVtwv2wFiPXhF0 F9fQXMF23WfqC4mxVr220buA8+1sMnoAf0hpDqvgxTK4RBXnniR9p+zxnWnT+Mvs Ve5q5xPj4fRzaiZjTcghSEnTAgMBAAGjggIvMIICKzAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFOyLGTiogezjOBN5iqUAXeWvzHk+MB8GA1UdIwQYMBaAFKhKamMEfd26 5tE5t6ZFZe/zqOyhMHAGCCsGAQUFBwEBBGQwYjAvBggrBgEFBQcwAYYjaHR0cDov L29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wLwYIKwYBBQUHMAKGI2h0dHA6 Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMDkGA1UdEQQyMDCCFG5kc2Fp bnRzYWNyZW1lbnQub3Jnghh3d3cubmRzYWludHNhY3JlbWVudC5vcmcwgf4GA1Ud IASB9jCB8zAIBgZngQwBAgEwgeYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtU aGlzIENlcnRpZmljYXRlIG1heSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlp bmcgUGFydGllcyBhbmQgb25seSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRp ZmljYXRlIFBvbGljeSBmb3VuZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9y ZXBvc2l0b3J5LzANBgkqhkiG9w0BAQsFAAOCAQEAJwEHW1NHi8dEvLC+GRodDbah nZgF/GaSafeW0Cf9ukgGA3KqJNl5uGNZgUoPuaEuNalRjtqVNI4xYT2DlQf1IINN vB1lwbj1Sc1Bpxn4WXXViecgwp9Q5dVgDOw5jB33G2HsyTo2Z+yE7cv05IQ9FPiw 1L4Ncw96aSaAUqPj1UzSZ0t/5Xqm3cLB0FzAX7Mh8ccyBL/K5EYUNRSsbMDGBCWY kXp+ZP5rKnqvcINgQlJGT5Kn8wcUdXv15DMCiPMfzVVdNj3wcUIq5O3HEXq+/JVk 686d6cVFueQmT5P+/23k7EcdRCONpC5F3QrCHUMUyFK8Hxmn7x57PIAC/ZTWqA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA7Bar3zFM6cC/rOyTTPMg IYtyEESO+cax1p+QmXWKnQGLZjyT7Zd/7pMGEkGyUN9Fv+9ZVJJwhL96wu+la4hJ EucxGkIRXQD+AeoGph09VUgZSdCCL+jqcoKcNGccbMy0+b8rpIZ9qOXGvEKnWFhY xKBk7k5hz5JxH3eGICM7KjDmorLgtv5x5PWgCBhE2mCRcnq1443Z7hYUgGZhR12c 8aDe/sNFgZjuoe7ODhp6XuJmxpnlctzIw1iDFEGjslBdlTNh2RZGwUJLlopSowXq hcQ4u2yMOr7seO/sbpYd2NXIzg6Fskr3LdCcRXsKUTMv6H1HJeGLG9RpwfpK3K4C NldaLAVi9h2NDAqgvPB1fKihqcnIP0k+Nz67dBmFFM6TjDIQNRFAJPcaViuVyPFp FkMOLh9FMzePkyRy2GS+kDrg+XbtKVM6oE67QuEgGg7qbML3W0JDhHgxAk5THV4Y 9zi5eS4XUfm2SmmNzb/HYznQ+oNulWgyLzgx+cdVAEtfQ8g0NJtKIx9ehtI1qFyj tDJizRT+1BHxkvg9J6H4DpHfbd7e1/rKd/uprBJn/+fKDV2fFZW3C/bAWI9eEXQX 19BcwXbdZ+oLibFWvbbRu4Dz7WwyegB/SGkOq+DFMrhEFeeeJH2n7PGdadP4y+xV 7mrnE+Ph9HNqJmNNyCFISdMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 307144269307061102007972704791220859359878 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-04 06:10:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-04 06:10:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ndsaintsacrement.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 963157293560869844571861116208125241165246237477562638485246500384141122542460418843461588906863420022179639507671162874241105286249603489170457753347375544061066208984728831847691933984267143083990191773542364065716320967233435948407368743104718813717842377225598428482253437851145684611204482168675659015795447144110409454919139347996885132283181761762282833969438564571762584341776574003137016185278136796838858770679129995850632513240574083596244437288106297856915167661725915094380785313930071921495202532944887429146428122309354193802494795527127626275521554908824223472404917689248515760082959844850288464314875337574356160905389443566179091187995842139485457046693894279476815549593343707954200957831801320126499805896813614833369308599355563680385051757798791857925810069317728551634024209939621418027948163584807283869677058964023387210265476834479305268653200686569444025383666966886475857796568725411034385183427574357538857613749394713164102388932731729160887145857299105803660167389965224738186270906389219236633376116668495658246354393291751723991896220890251295467513589371365328748256817148625848959548780264631891033512044497847477223914558604138900206838503001314577832720917796086155947719732536328660187225803219 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ec8b1938a881ece33813798aa5005de5afcc793e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ndsaintsacrement.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ndsaintsacrement.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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