nopga.org
Issued by R3
About this certificate
This digital certificate with serial number 04:44:50:a7:c7:8b:92:55:2e:0a:ba:33:5f:7a:fb:d5:f8:3a was issued on by Let's Encrypt.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=nopga.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:44:50:a7:c7:8b:92:55:2e:0a:ba:33:5f:7a:fb:d5:f8:3aSerial Number (int): 371695554078160484191771824213157035243578
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 3c:2e:55:2a:3e:f8:73:fb:8d:69:40:81:17:82:65:05:35:c2:f8:fe
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c3:28:ee:c0:5b:a3:1a:c5:4c:e9:73:99:2a:08:04:1b:d6:c8:40:ac
Fingerprint (sha256): f9:6b:fd:80:40:31:2c:2a:07:89:87:ff:a0:17:5f:80:ec:5e:24:7f:3e:2b:05:2d:2b:fc:e0:e9:3e:71:7d:44
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate nopga.org
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nopga.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
advantageplumbingheating.com
collegetease.com
fivewildflowers.com.buybites.com
imvio.com.hardtoppaving.com
nopga.org
openswa.com.radiganassociates.org
sanantoniohomeinfo.com.xn--interir-f1a.com
collegetease.com
fivewildflowers.com.buybites.com
imvio.com.hardtoppaving.com
nopga.org
openswa.com.radiganassociates.org
sanantoniohomeinfo.com.xn--interir-f1a.com
Other certificates including the domain name nopga.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for nopga.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFnzCCBIegAwIBAgISBERQp8eLklUuCrozX3r71fg6MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjEwMTMwNTVaFw0yNDAyMTkwMTMwNTRaMBQxEjAQBgNVBAMT CW5vcGdhLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKlWU7kf //1/n4pctIVOVvAPWsVuhGjMj27P0mHR6cvmTn5Tbfe/1+r7XYAUtKfVlzzWJ8ax Pmli2tfubZznmW10NmEkxtbyRadR3LDJea/12jlTNrocAg/XlJeLo+Oflnu2cxWZ NH8gmGAXp2bgPRrgqKUxv1yWGkrd3SWXXq8HSnDs786ikv4qyePhJMj6sSAKj+UT vgKZwfKFanHAFXMDJgrXDJISCU/m0fmKx72greHAaWuMDLXAum6fENx7oSnSRBAa VZyZsY6ecN+n2Z9ujh9oFJXNtiIP1ZDP40F04HQ8jC6lLuqub40H6Z0WxKO74YW/ hTzKNkl5dzav9+MCAwEAAaOCAsswggLHMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU PC5VKj74c/uNaUCBF4JlBTXC+P4wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wgdQG A1UdEQSBzDCByYIcYWR2YW50YWdlcGx1bWJpbmdoZWF0aW5nLmNvbYIQY29sbGVn ZXRlYXNlLmNvbYIgZml2ZXdpbGRmbG93ZXJzLmNvbS5idXliaXRlcy5jb22CG2lt dmlvLmNvbS5oYXJkdG9wcGF2aW5nLmNvbYIJbm9wZ2Eub3JngiFvcGVuc3dhLmNv bS5yYWRpZ2FuYXNzb2NpYXRlcy5vcmeCKnNhbmFudG9uaW9ob21laW5mby5jb20u eG4tLWludGVyaXItZjFhLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisG AQQB1nkCBAIEgfQEgfEA7wB1ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h +tQXAAABi++3Z8kAAAQDAEYwRAIgZ97sy+6d8bLafsfbtpeMJpeKKXXDszQGWAWh 4RsOOKwCIHJ7Z4/r4qBd372Fp/2j0KJwI8rGl2xZSK+gkntGHjKIAHYASLDja9qm RzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGL77dn0gAABAMARzBFAiEAwby/ DliCbgVLL0+VhNUCnWjFmn5OujLef2lyte76eHACIBPPkCD1s6/J/UJeCQ0jwm6R BSyj3KuGNIXL3sslSMYhMA0GCSqGSIb3DQEBCwUAA4IBAQA+FabQ7aBeYNv3tBUY /DIq79CM7tuamCZZwu0O1fLGAo5X2oywTkDwm89dYPfZWPrRn/PM6yRDIYz/KFNg rIwLBI16fsEenae3E17ielPYpfxOpbw6pVm3AHCcGy9H6H+XFKqHepu6iToyfYRM rl+DSCPz5fWSx2K9zTj/czmJQxr0t84ieo0lgRYql6NYxT/Al9nra1SLHytI0Fah bzstP+RwgASpBMr8M6/C+NLZNrXl/A2S1n95f8MV0O9O6ZEAgVcDRGzoZcgiuqxv 77oTpvSlxXjsMs1BI8dUDcHRgGG6dNEgQg9tjnKDvZDOvBdOQQR18ErwAwsrH33M vWYp -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqVZTuR///X+fily0hU5W 8A9axW6EaMyPbs/SYdHpy+ZOflNt97/X6vtdgBS0p9WXPNYnxrE+aWLa1+5tnOeZ bXQ2YSTG1vJFp1HcsMl5r/XaOVM2uhwCD9eUl4uj45+We7ZzFZk0fyCYYBenZuA9 GuCopTG/XJYaSt3dJZderwdKcOzvzqKS/irJ4+EkyPqxIAqP5RO+ApnB8oVqccAV cwMmCtcMkhIJT+bR+YrHvaCt4cBpa4wMtcC6bp8Q3HuhKdJEEBpVnJmxjp5w36fZ n26OH2gUlc22Ig/VkM/jQXTgdDyMLqUu6q5vjQfpnRbEo7vhhb+FPMo2SXl3Nq/3 4wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 371695554078160484191771824213157035243578 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-21 01:30:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-19 01:30:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'nopga.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21376842991015383091781955780352929808859660380769077089528959129404387915992403891885592042551271339843122853470777763930387268844176785894803857572382372423221169356952084443260393316078383972255044628578987807283090970299338985923287672237608392842731355284158418778311831028690586075435884191885169148404456648348146254455663288139227123795905700885863980753660929315531003817755866459828541878901342738255928418945250495606807995630071848049311084910635005602478602555363854055331900109541976195428641795915848956671018755396318935636286748556201224420689495495492926443037643936228145570990303186680754704742371 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3c2e552a3ef873fb8d6940811782650535c2f8fe . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (204 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advantageplumbingheating.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collegetease.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fivewildflowers.com.buybites.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'imvio.com.hardtoppaving.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nopga.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'openswa.com.radiganassociates.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sanantoniohomeinfo.com.xn--interir-f1a.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018befb767c90000040300463044022067deeccbee9df1b2da7ec7dbb6978c26978a2975c3b334065805a1e11b0e38ac0220727b678febe2a05ddfbd85a7fda3d0a27023cac6976c5948afa0927b461e328800760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018befb767d20000040300473045022100c1bcbf0e58826e054b2f4f9584d5029d68c59a7e4eba32de7f6972b5eefa7870022013cf9020f5b3afc9fd425e090d23c26e91052ca3dcab863485cbdecb2548c621 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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