townofcambridgevt.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:3b:c5:47:78:24:1f:e4:e4:e6:8d:89:1d:c1:8e:f4:d1:5b was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=townofcambridgevt.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:3b:c5:47:78:24:1f:e4:e4:e6:8d:89:1d:c1:8e:f4:d1:5bSerial Number (int): 368788032380374177370616184311120240365915
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: de:f2:c8:36:7a:f7:1c:9c:62:67:42:84:ad:de:7a:72:61:cf:96:9f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 29:86:cf:f4:af:1d:38:ba:45:d3:89:84:ca:c4:1a:fd:20:c3:36:05
Fingerprint (sha256): d3:44:b8:dc:88:73:51:3b:f4:39:e0:db:84:73:3f:2a:ec:63:a9:f7:9f:2c:aa:52:76:2e:ce:7a:56:ee:c8:78
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate townofcambridgevt.org
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for townofcambridgevt.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
autodiscover.townofcambridgevt.org
cambridge.vt.gov
cpanel.townofcambridgevt.org
mail.townofcambridgevt.org
townofcambridgevt.org
webdisk.townofcambridgevt.org
webmail.townofcambridgevt.org
www.cambridge.vt.gov
www.townofcambridgevt.org
cambridge.vt.gov
cpanel.townofcambridgevt.org
mail.townofcambridgevt.org
townofcambridgevt.org
webdisk.townofcambridgevt.org
webmail.townofcambridgevt.org
www.cambridge.vt.gov
www.townofcambridgevt.org
Other certificates including the domain name townofcambridgevt.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for townofcambridgevt.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRTCCBS2gAwIBAgISBDvFR3gkH+Tk5o2JHcGO9NFbMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MTEwODI4NTBaFw0x OTExMDkwODI4NTBaMCAxHjAcBgNVBAMTFXRvd25vZmNhbWJyaWRnZXZ0Lm9yZzCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJMOK+pH+xFOeOX+KxUg+vOC J/gLIC6roxvLD+ddShAFu5bEiKOGPnTLbdiiBExMUXzkb4JyHQccSv2HbesPrc+R 8tqS6gw8QUuP298At49se8vsHc4DeoqA/WZ9cCelwj5FETpZ/fDvGqc1BUI7jack 2VOL2TjGthBnc8ohqyv8LgGak49UBLYVmf8omyA5P7OWXMS9Q0yvsoInlOswGnN8 9QXI1ZanNzjZ1+RqJo6fFpjXvhXITXiBJLKwEdGWIZ24aTPJGQS6WnzU2dpLnQNy 04NOKAnJkJ+gV5GSwkk4hYCNSWY6GYd7CTGJjgVBYOHWtzy20WT0yc9Oy6Fmp+EC AwEAAaOCA00wggNJMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU3vLINnr3HJxiZ0KE rd56cmHPlp8wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYB BQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2Vu Y3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2Vu Y3J5cHQub3JnLzCCAQEGA1UdEQSB+TCB9oIiYXV0b2Rpc2NvdmVyLnRvd25vZmNh bWJyaWRnZXZ0Lm9yZ4IQY2FtYnJpZGdlLnZ0LmdvdoIcY3BhbmVsLnRvd25vZmNh bWJyaWRnZXZ0Lm9yZ4IabWFpbC50b3dub2ZjYW1icmlkZ2V2dC5vcmeCFXRvd25v ZmNhbWJyaWRnZXZ0Lm9yZ4Idd2ViZGlzay50b3dub2ZjYW1icmlkZ2V2dC5vcmeC HXdlYm1haWwudG93bm9mY2FtYnJpZGdldnQub3JnghR3d3cuY2FtYnJpZGdlLnZ0 LmdvdoIZd3d3LnRvd25vZmNhbWJyaWRnZXZ0Lm9yZzBMBgNVHSAERTBDMAgGBmeB DAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxl dHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AG9Tdqwx8DEZ 2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABbIACUSoAAAQDAEcwRQIgR5ZO/8xc TJw3LFwe3yM2KSfclmDkFEbW+PlRF3O6NG8CIQD5lY9xb6V8xugLVERcopiWE3Yl AtAXBAg7OAXv+ZB7PwB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4 AAABbIACUYUAAAQDAEcwRQIgd9veovsRHO5Qif+wj0Ut+UnG79jEPekLn6y7fY0W nbQCIQCVZHIu0Chso3b9+SLyjOSguCi5NsrqKrgt3YHE7wMA8DANBgkqhkiG9w0B AQsFAAOCAQEAJiCtmAJrCPTGvwhPd3qhn4jHT3WdakxG/+/AvcMPF6qQrGbsDfT7 xOaAE6/F4pF0yjDI3RqmN8ZmhcyYXCdzNYB8Oe0xrjW/XyH3yfKMAgyQyNMR9aMs zz/C0VzSSNkvb1Q7iiRhXsPvtxJRCFzAG7sGyIz/B28MeAojI9T4fGdhDeOvN5CR HQe9pQVhhjz1fsIj/yaqEpq1LVVeQ2VxIE6Eu89+3WkkSi+if9MWpLQUD2xDkH4q wnUuEIo9wEvbUgJSxownNWq2UaEK4JxV3bTE6mY6Nn3yiM5dPifAZHgaiQqKZK+G 5GnN/43Och1GPjinV2OEILadcX8K1jtDZg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkw4r6kf7EU545f4rFSD6 84In+AsgLqujG8sP511KEAW7lsSIo4Y+dMtt2KIETExRfORvgnIdBxxK/Ydt6w+t z5Hy2pLqDDxBS4/b3wC3j2x7y+wdzgN6ioD9Zn1wJ6XCPkUROln98O8apzUFQjuN pyTZU4vZOMa2EGdzyiGrK/wuAZqTj1QEthWZ/yibIDk/s5ZcxL1DTK+ygieU6zAa c3z1BcjVlqc3ONnX5Gomjp8WmNe+FchNeIEksrAR0ZYhnbhpM8kZBLpafNTZ2kud A3LTg04oCcmQn6BXkZLCSTiFgI1JZjoZh3sJMYmOBUFg4da3PLbRZPTJz07LoWan 4QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 368788032380374177370616184311120240365915 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-11 08:28:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-09 08:28:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'townofcambridgevt.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18564019078613903582168880015322494670910911641863321138419145838688457668464742105356437275171613764516021817080943043977045645263590755180661453888975301071098615586394656838879171820447000418857459995894133797915344916427914581550719344363396836710479482087885976765060720763628095550236250121923358069987576712543329552338906855368603379811215879184703060741919373425867841660100997741311799895216660287300217027480638353076665838767653707134417279143891492562634023998010115197192272484756806044593002197962556392652429054201249124975586998213906808860872094811514911040698805838690151684396992224070896701581281 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) def2c8367af71c9c62674284adde7a7261cf969f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (249 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.townofcambridgevt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cambridge.vt.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cpanel.townofcambridgevt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.townofcambridgevt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'townofcambridgevt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webdisk.townofcambridgevt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.townofcambridgevt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cambridge.vt.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.townofcambridgevt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016c8002512a0000040300473045022047964effcc5c4c9c372c5c1edf23362927dc9660e41446d6f8f9511773ba346f022100f9958f716fa57cc6e80b54445ca2989613762502d01704083b3805eff9907b3f007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c800251850000040300473045022077dbdea2fb111cee5089ffb08f452df949c6efd8c43de90b9facbb7d8d169db40221009564722ed0286ca376fdf922f28ce4a0b828b936caea2ab82ddd81c4ef0300f0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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