nopga.org
Issued by R3
About this certificate
This digital certificate with serial number 04:57:10:6f:97:35:0d:08:76:bd:07:52:83:8f:9b:8f:a0:c1 was issued on by Let's Encrypt.
With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=nopga.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:57:10:6f:97:35:0d:08:76:bd:07:52:83:8f:9b:8f:a0:c1Serial Number (int): 378075556708893465229561102203479514915009
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 44:f7:a5:82:0a:0a:d0:cb:83:4e:01:2e:03:72:2a:4b:4e:cf:38:0f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 6c:17:a1:8e:3c:74:0f:8a:1a:21:ae:7b:f9:29:f4:7b:2d:54:04:10
Fingerprint (sha256): e5:3b:04:ec:c4:ac:cd:a6:53:5a:c6:3d:09:98:e0:0f:b5:1c:f1:43:f0:2a:ad:01:57:11:10:40:ee:a0:e1:c3
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate nopga.org
12
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nopga.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bigboardovecesko.com
cobbwellnesscenter.com
dioner.com
dyvergenics.net
fiduciary-only.com
hemphillcounty.com
immunitywars.com
imperiofutbol.com
incontri-gratuiti.com
nopga.org
weeklytraining.com
www.cbgusa.com
cobbwellnesscenter.com
dioner.com
dyvergenics.net
fiduciary-only.com
hemphillcounty.com
immunitywars.com
imperiofutbol.com
incontri-gratuiti.com
nopga.org
weeklytraining.com
www.cbgusa.com
Other certificates including the domain name nopga.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for nopga.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFtDCCBJygAwIBAgISBFcQb5c1DQh2vQdSg4+bj6DBMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDIwNjM5NDhaFw0yNDA1MzEwNjM5NDdaMBQxEjAQBgNVBAMT CW5vcGdhLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALFUW9HP IaFBuMLY4RieUWfEptnfGY2ZTa5aAa+Z0yXiSmUrr3Y6GjaMEuTZcXA2W3HnX50P nDiMwHWKBhCXHJZMa/vC+qWsWBPKieBna34oWQnjpQ5RT/sSA4xxvUKsRL2DdYid tQmQ1khFT8zW83j7SVeVJ8c7OJ5hEGX9EruyNdmZg0WWjVdjy9a4wj/BCZGMxrBi J1qX7mXdGTsyqnfBH6MBeeKh97y8WMPTc31ktkP22pf0TC8+mYMXey/WRPMvuEWF mFOxS9CrMynWjXMEFWgvL1ycMbTNpp9/gNWzYlpNDEbC40Nkcgrw1bLC2/z2ZKLF ZUsK4VE8iHEZRZECAwEAAaOCAuAwggLcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU RPelggoK0MuDTgEuA3IqS07POA8wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wgekG A1UdEQSB4TCB3oIUYmlnYm9hcmRvdmVjZXNrby5jb22CFmNvYmJ3ZWxsbmVzc2Nl bnRlci5jb22CCmRpb25lci5jb22CD2R5dmVyZ2VuaWNzLm5ldIISZmlkdWNpYXJ5 LW9ubHkuY29tghJoZW1waGlsbGNvdW50eS5jb22CEGltbXVuaXR5d2Fycy5jb22C EWltcGVyaW9mdXRib2wuY29tghVpbmNvbnRyaS1ncmF0dWl0aS5jb22CCW5vcGdh Lm9yZ4ISd2Vla2x5dHJhaW5pbmcuY29tgg53d3cuY2JndXNhLmNvbTATBgNVHSAE DDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2ADtTd3U+LbmA ToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjf4a1r8AAAQDAEcwRQIhANdLAn6n iyjBMaMNaLqmz29OBGFURgyuukYS1BLa4USBAiACTw+0e0uD3RFCjvSol1hevb2F 6OpAjtV9hSGJ37Da+QB1AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfY AAABjf4a1rkAAAQDAEYwRAIgNvDuTUk8FFZzRbcGmej5nMFWkkG1zUCPvDx+VU4I A6YCIEoQTXbgJAb3dbeSN7+j0tiY5DLfS1WoeJOeYBck/e2VMA0GCSqGSIb3DQEB CwUAA4IBAQCV0B5wwnybgGora9ZpRIYCzha3kAp1YGNQ6wyEK6xxEQRZE9cGRmNs aM1/QHRYHUQBC50KOGbicsVRT7Ige36fu/17WsKaERU8iit2L/pNRfBB+K8ZfDC2 KxSJPcism6ZczyYEMMjYYnR2MKO6wdCQxBDXYEsmLi9Is+4UQbL8ZJjk0vrHjCiy YTDfFYBH/auEz0vTZ+DmeLkvuI6MVPkkWAH5QHxyuAG1laDEonh2KVcQNs/I99pJ MnQo4AGdOlZDISJL7Vi+wuaVLBEkvnXwm0GJK32qWR9qKytmoQppVtN/d3PVxpe8 Gd34+o83wwLfOlspfaolFXSxGiR4+lXD -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsVRb0c8hoUG4wtjhGJ5R Z8Sm2d8ZjZlNrloBr5nTJeJKZSuvdjoaNowS5NlxcDZbcedfnQ+cOIzAdYoGEJcc lkxr+8L6paxYE8qJ4GdrfihZCeOlDlFP+xIDjHG9QqxEvYN1iJ21CZDWSEVPzNbz ePtJV5Unxzs4nmEQZf0Su7I12ZmDRZaNV2PL1rjCP8EJkYzGsGInWpfuZd0ZOzKq d8EfowF54qH3vLxYw9NzfWS2Q/bal/RMLz6Zgxd7L9ZE8y+4RYWYU7FL0KszKdaN cwQVaC8vXJwxtM2mn3+A1bNiWk0MRsLjQ2RyCvDVssLb/PZkosVlSwrhUTyIcRlF kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 378075556708893465229561102203479514915009 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-02 06:39:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-31 06:39:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nopga.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22385778789668472993005248779017338135085969228864268920979563666248967637158660239263269855054405878563615276791915009229211578990393024873340162082365295495538039529156571853543609702120586834789578517717156122432359137803830699062627850518037829767407665127057715157462568403268527437975540794862209713580137561380953995441944189382161398154688115362477817786984086274557149514746855519006207360774510316538088441321848937154579314159800940151740282335314417940058569307767737861903089019985918425873595495881657889125870732724020347342206061169140234107402544423555168619388964819013980787057673074205341802644881 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 44f7a5820a0ad0cb834e012e03722a4b4ecf380f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (225 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bigboardovecesko.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cobbwellnesscenter.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dioner.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dyvergenics.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fiduciary-only.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hemphillcounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'immunitywars.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imperiofutbol.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'incontri-gratuiti.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nopga.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'weeklytraining.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cbgusa.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018dfe1ad6bf0000040300473045022100d74b027ea78b28c131a30d68baa6cf6f4e046154460caeba4612d412dae144810220024f0fb47b4b83dd11428ef4a897585ebdbd85e8ea408ed57d852189dfb0daf9007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018dfe1ad6b90000040300463044022036f0ee4d493c14567345b70699e8f99cc1569241b5cd408fbc3c7e554e0803a602204a104d76e02406f775b79237bfa3d2d898e432df4b55a878939e601724fded95 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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