thenewjerseyassembly.org.trueamericanmediallc.org
Issued by R3
About this certificate
This digital certificate with serial number 03:9c:ee:3b:8c:38:bc:18:b3:5b:1e:70:cc:e9:30:ca:df:22 was issued on by Let's Encrypt.
With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=thenewjerseyassembly.org.trueamericanmediallc.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9c:ee:3b:8c:38:bc:18:b3:5b:1e:70:cc:e9:30:ca:df:22Serial Number (int): 314737572487490938427822520151152576356130
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 52:ba:b6:d4:07:66:22:d9:16:52:ba:3e:4f:79:8f:7b:5d:eb:9c:85
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 35:53:d8:6f:98:81:8e:86:2a:c0:b6:bf:59:7f:57:53:f2:da:76:2e
Fingerprint (sha256): fd:9b:5a:17:57:04:cc:77:b2:7b:33:ad:09:ab:1f:89:98:a5:40:f9:f4:b0:c4:84:a8:ab:57:94:e5:a3:a2:04
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate thenewjerseyassembly.org.trueamericanmediallc.org
13
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for thenewjerseyassembly.org.trueamericanmediallc.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
arbitragegps.com
brandpositionking.com
hatenthusiasts.com
hofuf.org.agilearbitrage.com
homeschoolsummerstudy.org.kumpan.com
kalpika.in.icandeclutter.net
metamenage.co
newpsprt.com
pyramidbitcoin.com
seychellesforvip.com
showconnection.com
thenewjerseyassembly.org.trueamericanmediallc.org
virginiablog.com
brandpositionking.com
hatenthusiasts.com
hofuf.org.agilearbitrage.com
homeschoolsummerstudy.org.kumpan.com
kalpika.in.icandeclutter.net
metamenage.co
newpsprt.com
pyramidbitcoin.com
seychellesforvip.com
showconnection.com
thenewjerseyassembly.org.trueamericanmediallc.org
virginiablog.com
Other certificates including the domain name trueamericanmediallc.org
(limited to 100 certificates)
callin.hacker.rehab
deyy.vc
trueamericanmediallc.org
elizabethkeogh.ca
trueamericanmediallc.org
gemalings.ca
finecoineth.cc
spankings.love
trueamericanmediallc.org
created4.org
standingforamerica.org
arbitragefund.com.trueamericanmediallc.org
norwoodwaterworks.ca
thenewjerseyassembly.org.trueamericanmediallc.org
deyy.vc
trueamericanmediallc.org
elizabethkeogh.ca
trueamericanmediallc.org
gemalings.ca
finecoineth.cc
spankings.love
trueamericanmediallc.org
created4.org
standingforamerica.org
arbitragefund.com.trueamericanmediallc.org
norwoodwaterworks.ca
thenewjerseyassembly.org.trueamericanmediallc.org
Certificate
The complete raw certificate details for thenewjerseyassembly.org.trueamericanmediallc.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGQTCCBSmgAwIBAgISA5zuO4w4vBizWx5wzOkwyt8iMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMDkwNDIyMDRaFw0yNDA0MDgwNDIyMDNaMDwxOjA4BgNVBAMT MXRoZW5ld2plcnNleWFzc2VtYmx5Lm9yZy50cnVlYW1lcmljYW5tZWRpYWxsYy5v cmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDi/FYQj5Np42wauBWp ufurMkgRDOVb/MAlDZb2uzAOH+wpWb1eDFqBPmMdAuzmV5OI0wrHY6TDfI9OM4M8 8VXsF3GqvqoTDn4hJtilcacRAEElC9bvSMso9gN41/Lwdlul0YCCTgZW27VWzhCZ 2ak4CqifZQegOv6opy2fKHRWimbuqYjCVZzGarf8pcA3EZLjxGiClYF7BwvlrhpQ o+El8FBIYYKZm9VkSGgGQt4SKJFiuaHR+Z92VY9QmXErzWXVSR4rxc+YA6hYptya za4NxnXkNYjxlyvI87mEXhFsetkmx1AvK/olwxCN22XXJMrjRjm9N/8GEW7kPpZd vOt1AgMBAAGjggNFMIIDQTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFK6ttQHZiLZ FlK6Pk95j3td65yFMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUG CCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3Jn MCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMIIBTAYDVR0RBIIB QzCCAT+CEGFyYml0cmFnZWdwcy5jb22CFWJyYW5kcG9zaXRpb25raW5nLmNvbYIS aGF0ZW50aHVzaWFzdHMuY29tghxob2Z1Zi5vcmcuYWdpbGVhcmJpdHJhZ2UuY29t giRob21lc2Nob29sc3VtbWVyc3R1ZHkub3JnLmt1bXBhbi5jb22CHGthbHBpa2Eu aW4uaWNhbmRlY2x1dHRlci5uZXSCDW1ldGFtZW5hZ2UuY2+CDG5ld3BzcHJ0LmNv bYIScHlyYW1pZGJpdGNvaW4uY29tghRzZXljaGVsbGVzZm9ydmlwLmNvbYISc2hv d2Nvbm5lY3Rpb24uY29tgjF0aGVuZXdqZXJzZXlhc3NlbWJseS5vcmcudHJ1ZWFt ZXJpY2FubWVkaWFsbGMub3JnghB2aXJnaW5pYWJsb2cuY29tMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYASLDja9qmRzQP5WoC +p0w6xxSActW3SyB2bu/qznYhHMAAAGM7KuyMQAABAMARzBFAiAwJaF/UFNfc4nc wHmJg2s/SDfPZf0cPabUMwZuhay0uQIhAJhNlpreLiK9N414EpdHFW1u7KVAtcDu y2IkWlX4YCOVAHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGM 7KuyhQAABAMARzBFAiEA6/1ChXN9c5YHMQSiet9IPIq91rkzmHUczw+snJ2OLIUC ICz1/qbtmgfIlj2+sNfZ55FIcrjyBrlTSkXw0ovR6i4cMA0GCSqGSIb3DQEBCwUA A4IBAQAUoFmnWjqhIRu6BN6YYXCBaDl1gp0lq1fh+O5Xh7ZISNMAW2Q2CA6VlyWR vxG91XjfcGXZdqBGEA2j55YV36TXIv+pP/ENcWjWa8iB4hJ4Z5kS1YI0OwkG66qu zeNvqWsjqBr/RGvwCJZQP69816cSaecMpMkkPCwvB//n1Z2Bcmd5W41NCrHgaqct MP1d7vHgb/x/5oOWspjWeRG/rse/qGz8OdjzeACeP8CayHm4gQOGAQYClF7dSRSY nHkjIbrfKukaXRKQu51y1Ley7Nptp2M1S09Sp02Ib9EB9CEZ70+9ZLixMJcbhGDU KUYwrpYkQFjO5znvFYEzny8zBzbw -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4vxWEI+TaeNsGrgVqbn7 qzJIEQzlW/zAJQ2W9rswDh/sKVm9XgxagT5jHQLs5leTiNMKx2Okw3yPTjODPPFV 7Bdxqr6qEw5+ISbYpXGnEQBBJQvW70jLKPYDeNfy8HZbpdGAgk4GVtu1Vs4Qmdmp OAqon2UHoDr+qKctnyh0Vopm7qmIwlWcxmq3/KXANxGS48RogpWBewcL5a4aUKPh JfBQSGGCmZvVZEhoBkLeEiiRYrmh0fmfdlWPUJlxK81l1UkeK8XPmAOoWKbcms2u DcZ15DWI8ZcryPO5hF4RbHrZJsdQLyv6JcMQjdtl1yTK40Y5vTf/BhFu5D6WXbzr dQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 314737572487490938427822520151152576356130 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-09 04:22:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-08 04:22:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thenewjerseyassembly.org.trueamericanmediallc.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28654288535345812920536648653044891148760986954813015210732244295696263045275342138238542318836713798826419135198171230345813005095354720302307328824380747952346308149970673747788161802813943001372277909765161995358321958159866214485282526096434960348634988368593031641946474990566361001193755811595113471508378226140954281866238356276633368638144341998117935307124212842008455996198927754331532880851940262013502295263967549215217187541659769101097664247667724386756137995473286260807513101437665764471795985408071599930331943819157981594915867502463371490884585369904285743839745622988696320648295842846761386044277 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 52bab6d4076622d91652ba3e4f798f7b5deb9c85 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (323 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arbitragegps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brandpositionking.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hatenthusiasts.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hofuf.org.agilearbitrage.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschoolsummerstudy.org.kumpan.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kalpika.in.icandeclutter.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'metamenage.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newpsprt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pyramidbitcoin.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'seychellesforvip.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'showconnection.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thenewjerseyassembly.org.trueamericanmediallc.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'virginiablog.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cecabb231000004030047304502203025a17f50535f7389dcc07989836b3f4837cf65fd1c3da6d433066e85acb4b9022100984d969ade2e22bd378d78129747156d6eeca540b5c0eecb62245a55f860239500760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018cecabb2850000040300473045022100ebfd4285737d7396073104a27adf483c8abdd6b93398751ccf0fac9c9d8e2c8502202cf5fea6ed9a07c8963dbeb0d7d9e7914872b8f206b9534a45f0d28bd1ea2e1c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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