umadd.org
Issued by R3
About this certificate
This digital certificate with serial number 04:ee:7e:70:8c:c7:1a:43:94:35:59:bb:91:f3:a1:41:8d:66 was issued on by Let's Encrypt.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=umadd.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ee:7e:70:8c:c7:1a:43:94:35:59:bb:91:f3:a1:41:8d:66Serial Number (int): 429604414174253273351211144192527341555046
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a5:e9:db:00:da:3d:50:2e:53:70:a7:a6:b9:06:60:84:cf:df:b6:8b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 41:ba:b1:5d:48:db:1e:6f:5b:ca:c2:06:cf:ed:21:38:ea:04:34:31
Fingerprint (sha256): e7:b7:78:a7:86:a5:08:0e:31:24:d2:ec:be:18:44:2f:a6:87:37:7c:23:3f:32:a8:7f:38:82:df:ec:61:c0:f1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate umadd.org
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for umadd.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aigiovanni.com
cannabiscultures.com
dollarsof.com
garvincounty.com
isanticounty.com.conservationblog.com
namesnagger.com.guysfor.com
paglasses.com
rasplod.shop
rxsavingsprograms.com.mobilesmagazine.in
umadd.org
velvor.com
cannabiscultures.com
dollarsof.com
garvincounty.com
isanticounty.com.conservationblog.com
namesnagger.com.guysfor.com
paglasses.com
rasplod.shop
rxsavingsprograms.com.mobilesmagazine.in
umadd.org
velvor.com
Other certificates including the domain name umadd.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for umadd.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFvzCCBKegAwIBAgISBO5+cIzHGkOUNVm7kfOhQY1mMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMTUwMzM4MDZaFw0yNDAzMTQwMzM4MDVaMBQxEjAQBgNVBAMT CXVtYWRkLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAO0TLhee oLVgRcGJB7USGv38TqR+nsWkoLVbqcVgH0ZeDkdAYSrHNMYX9YIq3IJSoq+rtSOH TFzhTQA2SN8Rk4uGu7MA3+W12rjkBbo8bEDtRX2ghRd3iW2/C2hrZPw5/FPzdISM xkoC7dYS4CiOxYeoeJzzQjswMISIMPktdzzUd6BwR3F9xrNmEStdqEei8q5TSRW/ MCjmdeF1+cL9cW7qJUoy3BQF+Fx//GmQN2rDt+KANPgcAhsFGCHZ/nAhetzqGi7X aw08dIqqbbR0ex0yZgZytYYdkKk9ovJqF3dgoATwJR5aeQ+XxhbANXJ1O1NLOw11 Amd5eBwHV1izjo0CAwEAAaOCAuswggLnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU penbANo9UC5TcKemuQZghM/ftoswHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wgfQG A1UdEQSB7DCB6YIOYWlnaW92YW5uaS5jb22CFGNhbm5hYmlzY3VsdHVyZXMuY29t gg1kb2xsYXJzb2YuY29tghBnYXJ2aW5jb3VudHkuY29tgiVpc2FudGljb3VudHku Y29tLmNvbnNlcnZhdGlvbmJsb2cuY29tghtuYW1lc25hZ2dlci5jb20uZ3V5c2Zv ci5jb22CDXBhZ2xhc3Nlcy5jb22CDHJhc3Bsb2Quc2hvcIIocnhzYXZpbmdzcHJv Z3JhbXMuY29tLm1vYmlsZXNtYWdhemluZS5pboIJdW1hZGQub3Jnggp2ZWx2b3Iu Y29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDv AHUAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGMa8R2fAAABAMA RjBEAiAyVb48G0Q5Io10GdwfuedeNc9ozaFvUWvsWJCdxTKGkwIgdNsobyZPPy40 smqEYUyJt4YKHEhpyhxkeffHs8ySsRcAdgAp0DobtnSqcRzTA1tlV8FPiqeLT+g4 lEnspFP5RL0kaAAAAYxrxHdDAAAEAwBHMEUCIQDU+T5XIwf/5n16wHmxnEh9qpB0 QFzxh6nID6lRKw9j/AIgH866abTiZAF2E16KoCj1QxdUzB4m0vcHtD3gRORD6Jsw DQYJKoZIhvcNAQELBQADggEBAJooTtG9wtY8dm45jEkh2A2OXN2PCngI9CRLedyt Jv6evi4VDVi1zebVgkVAFVaiAzeGg6EpWZw7PT2lstjH9AIaaqnUrFao0pamJvco GF8yWah+0nzqHTrUDebEieET/lVbo6ZG/fM3UJfDXuVjbA7IpmfTsaDt3tEAc3oo moXfp18kNOAR8YBnxWm9dtLd1f/GeZqKkBbSw7PgAGVBRQcD0+pZskPcCf3gIrd9 JMrusfx8CjFwMI4RD1oOdD9JF7sGte6qlKnSOPXCmiixBfheAAZjvfd3E//Qdqs/ 4+FLwOqgPUPmYnGNPK4d4KZ/EMIO3I0MGnZwZ16o5p7XRlE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7RMuF56gtWBFwYkHtRIa /fxOpH6exaSgtVupxWAfRl4OR0BhKsc0xhf1gircglKir6u1I4dMXOFNADZI3xGT i4a7swDf5bXauOQFujxsQO1FfaCFF3eJbb8LaGtk/Dn8U/N0hIzGSgLt1hLgKI7F h6h4nPNCOzAwhIgw+S13PNR3oHBHcX3Gs2YRK12oR6LyrlNJFb8wKOZ14XX5wv1x buolSjLcFAX4XH/8aZA3asO34oA0+BwCGwUYIdn+cCF63OoaLtdrDTx0iqpttHR7 HTJmBnK1hh2QqT2i8moXd2CgBPAlHlp5D5fGFsA1cnU7U0s7DXUCZ3l4HAdXWLOO jQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 429604414174253273351211144192527341555046 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-15 03:38:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-14 03:38:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'umadd.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29927936311084643971277916288592284762490418010762723239621703137818336417148074437800060395931628824989201869931908945962552995624680007239842946726464385252836270321103787554526794567872099936863338966697939552536655595090121330548331262534778073471232610438931455332630532997974451566034828962421513143817652118118081090062823250117694413517741706560901264676855515423195890611325058865865539528493216522331444239126054332781269611182768834683457231953249457366660264883809872390902220401802577582745858038428466353688015471557782416569587030015444394240136815410194027134849961184948154294863065795923208328941197 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a5e9db00da3d502e5370a7a6b9066084cfdfb68b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (236 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aigiovanni.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cannabiscultures.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dollarsof.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'garvincounty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'isanticounty.com.conservationblog.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'namesnagger.com.guysfor.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paglasses.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rasplod.shop' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rxsavingsprograms.com.mobilesmagazine.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'umadd.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'velvor.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c6bc4767c000004030046304402203255be3c1b4439228d7419dc1fb9e75e35cf68cda16f516bec58909dc5328693022074db286f264f3f2e34b26a84614c89b7860a1c4869ca1c6479f7c7b3cc92b11700760029d03a1bb674aa711cd3035b6557c14f8aa78b4fe8389449eca453f944bd24680000018c6bc477430000040300473045022100d4f93e572307ffe67d7ac079b19c487daa9074405cf187a9c80fa9512b0f63fc02201fceba69b4e2640176135e8aa028f5431754cc1e26d2f707b43de044e443e89b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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