www.secondwind.org
Issued by R3
About this certificate
This digital certificate with serial number 04:5b:17:2a:49:07:ca:fe:f2:ec:20:5b:1b:c3:c5:82:a9:3c was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.secondwind.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:5b:17:2a:49:07:ca:fe:f2:ec:20:5b:1b:c3:c5:82:a9:3cSerial Number (int): 379445630918450820679982210204260100122940
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 43:6a:b0:50:3a:f4:88:23:ac:3b:d8:e6:2d:af:30:91:01:c4:a3:67
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 1e:65:6b:05:86:bb:64:2d:08:28:b2:f0:e3:29:1b:d1:e8:85:3b:7b
Fingerprint (sha256): f3:4f:c3:1c:ae:8c:df:47:6a:9e:ad:5b:13:89:da:d5:f5:52:19:71:01:cc:22:24:eb:29:a7:ac:4b:97:7e:21
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.secondwind.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.secondwind.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
secondwind.org
www.secondwind.org
www.secondwind.org
Other certificates including the domain name secondwind.org
(limited to 100 certificates)
www.secondwind.org
www.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
www.secondwind.org
pt-br.secondwind.org
*.secondwind.org
secondwind.org
www.secondwind.org
data-macau-pengeluaran.secondwind.org
pt-br.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
pt-br.secondwind.org
pt-br.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
www.secondwind.org
pt-br.secondwind.org
*.secondwind.org
secondwind.org
www.secondwind.org
data-macau-pengeluaran.secondwind.org
pt-br.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
pt-br.secondwind.org
pt-br.secondwind.org
www.secondwind.org
pt-br.secondwind.org
www.secondwind.org
pt-br.secondwind.org
Certificate
The complete raw certificate details for www.secondwind.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFOjCCBCKgAwIBAgISBFsXKkkHyv7y7CBbG8PFgqk8MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA1MjQwNTMxNDRaFw0yMzA4MjIwNTMxNDNaMB0xGzAZBgNVBAMT End3dy5zZWNvbmR3aW5kLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBAKotzBf0ByenyoYKOr+nLf+Yr7wd9dq6g8V0Z2aCoKcy+VMPGk5HUfME7hPG 23Db9vItMh3CwZKsvJu3ZimgaiXujflcX0pH2JCDFLgMyFymRELCveybHGOhNpy5 p+hbddwcMsEvGbEgdY9cGjsm+inmNDLoOm8RgxUsJkjZh3mfaEiuR21/HTmKPHgX t1I2Yyv92FWkoE4g3pc3/ouCxCBbF7HIHt7Na7/WCyOoITElbdzfLwWti8O2nR3X V4J7bg2ftp9HFcdZL+flfnA2c86iQyjh3pS0Rgw9w5Cnj6Z29+/dxE3/vqXpRGYB +jp58nBDZnIoHDBX3DUsJ14CIqUCAwEAAaOCAl0wggJZMA4GA1UdDwEB/wQEAwIF oDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUQ2qwUDr0iCOsO9jmLa8wkQHEo2cwHwYDVR0jBBgwFoAUFC6zF7dY VsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRw Oi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNy Lm9yZy8wLQYDVR0RBCYwJIIOc2Vjb25kd2luZC5vcmeCEnd3dy5zZWNvbmR3aW5k Lm9yZzBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkC BAIEgfUEgfIA8AB2ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAAB iEx008EAAAQDAEcwRQIhAOREMMWHYJqE1sleTaTcDrKGapH8WShAQm5kdxLQDkFK AiAiiShrFD+ta0K62vGKQSyr00oBVPpjVALQise1Y00KhQB2AOg+0No+9QY1MudX KLyJa8kD08vREWvs62nhd31tBr1uAAABiEx0064AAAQDAEcwRQIhAOkimyZqgjX8 n00ChktDuCOM9sCwHzQqxH/R6C8XA2GvAiB9PfSWcwY9JC/uT4KZY2p3w8Qv9th5 RwrdPKwTUvb20DANBgkqhkiG9w0BAQsFAAOCAQEARhJ+WqNbZ5GB/LxmzxAGAGfp GFaqhEfsfvW/6NySnR5QC81MOUUanD36GCHdTgOJ+FK9MqAJ0JEf+2o+v4gQ+dbi gKsJPlKdvuP0ZyEB4Iddu9uRAzfdYXcklNS1aZOczVdiyQQm3vouEXS+G3S3qGau gb9CDBZyYArJgELncnmsNA6o7g3pSctdBMoxOdF7NnlK8pWGYaH1gSrNlUIhy0PJ Qm/6Tcf9blwoEV4fQY3hmQu6YvS6HCQBJJT1ct2FqxzCI23iTQzLaFOgENSQjJWG ppulbksgNcL7mdRjJrHlDXml0GdYu8OZ8wa1OsFt4zMWHKfGEfkS7Aq5q9A+Dw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqi3MF/QHJ6fKhgo6v6ct /5ivvB312rqDxXRnZoKgpzL5Uw8aTkdR8wTuE8bbcNv28i0yHcLBkqy8m7dmKaBq Je6N+VxfSkfYkIMUuAzIXKZEQsK97JscY6E2nLmn6Ft13BwywS8ZsSB1j1waOyb6 KeY0Mug6bxGDFSwmSNmHeZ9oSK5HbX8dOYo8eBe3UjZjK/3YVaSgTiDelzf+i4LE IFsXscge3s1rv9YLI6ghMSVt3N8vBa2Lw7adHddXgntuDZ+2n0cVx1kv5+V+cDZz zqJDKOHelLRGDD3DkKePpnb3793ETf++pelEZgH6OnnycENmcigcMFfcNSwnXgIi pQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 379445630918450820679982210204260100122940 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-24 05:31:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-22 05:31:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.secondwind.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21483095305216325559404551890337222398126704905704464619996336104530734755125418200892221069760300728235954669425333368454733831701120539072782444236710388079799363322148203098600204786140947365531263170883597889879639201292256710214500065145691312326473377017711866688928175016579289949032454146629133920291697300248443532208488260986819947802638940521210527734159668894241433968920370069739947197242080064814493165457646843780769109553288358934443090897769767488045966402184688320152458664144052654458932453313923385164063090915617270907397633222289526350241711626448673630569551763813306562629798525875330039816869 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 436ab0503af48823ac3bd8e62daf309101c4a367 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secondwind.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.secondwind.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb499000001884c74d3c10000040300473045022100e44430c587609a84d6c95e4da4dc0eb2866a91fc592840426e647712d00e414a02202289286b143fad6b42badaf18a412cabd34a0154fa635402d08ac7b5634d0a85007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e000001884c74d3ae0000040300473045022100e9229b266a8235fc9f4d02864b43b8238cf6c0b01f342ac47fd1e82f170361af02207d3df49673063d242fee4f8299636a77c3c42ff6d879470add3cac1352f6f6d0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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