DV SSL/TLS Certificate for posa.yoga

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the posa.yoga DV SSL/TLS Certificate

This certificate with serial number 05:59:fe:cb:2e:a1:5c:a9:03:83:36:da:4f:30:74:51:8d:e1 for posa.yoga was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for posa.yoga provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:59:fe:cb:2e:a1:5c:a9:03:83:36:da:4f:30:74:51:8d:e1
Serial Number (int): 466185239207731660561814048211901447507425
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: 4f:90:72:f4:2e:26:26:bc:4d:56:f5:b1:e5:fe:d5:b4:ad:a5:08:9c
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 35:9e:79:fa:9a:a6:42:87:71:5c:ce:4c:f3:a5:0f:ae:a9:4b:e5:ab
Fingerprint (SHA-256): e3:31:4a:3a:a5:3e:25:5d:cd:23:f2:75:16:8a:13:26:2d:06:2b:3e:d4:5b:fd:2f:63:33:6b:b3:a3:51:c5:8a

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/98.crl

Check the revocation status for certificate posa.yoga
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for posa.yoga

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for posa.yoga in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAt8+WFsj9GlH79He1WWlF
dSVO/nWmGqfd8fJKUdTb5ZP8BxowLc9t7IpDMcyfOC6wm5AQsZY5Geqs8wu4I+CO
eaxNmaK2SRhEMy4akQ1ql9iNAK583NuN7c+o/utM14wOEmHT5AmAStlHuvy26kha
5PFqLlrE9ZxsbmfrQI06YlzbN3L55sI99xEsODFK5Wr1L5QR/YGWhJXGkjWcBh24
hoh7J+lp7RtAJUta+k9r0Sbn6w0KBUg7MKOQEZ58K19eQg9j5ABwwJzipV89a+Ov
/t1gTI082+zQEoLIWnF7DSKLFKnq1zkYubtvOzhyZieV4mTfN95N0wofZMhgAte3
RIHMMgT3sf4yRxu2knvk87w8p8/IFVjChryaG+44HVnE0UuVynKhaZObTdVm0dA1
WxlZpoUrwJ9Xt8jcPqi6kJ79Iwcc9oeme9OWSBumBRBAZDSblPwTHgCNAmVHiQwt
WzRI9WREI5qcfRUeuXLJ07vlY3aBc2jpJ1nemYQdOiILqCIGrMB/BLvM9WL3kU+9
Tb3LXcFxdMtgmH3iyG3MmnClyRHj0mUO5IYn2qlSzPpkJxItj+SqxAiLsLqf0xcS
CMtHPjHMGnMecmJx0aDZnWxuoEwbsZ7xXrx36P0sDWvnO8s+paXUE1JiZBe/m33k
RF/IdG6Xs8KVbKSr1VPXgekCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 466185239207731660561814048211901447507425
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-27 17:08:15 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-25 17:08:14 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'posa.yoga'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 749882982248110014427179101842332481485507314699975728734564777991826455681189300609847407830579185422295302398601490196525794997900304851068844047177764000641251260185823816481569134281465351245233939886853932127948069225633431753294720318436513455045571910456443522829771583251413399794452598254715084106790168931272973686743895696907141270507430002286871118081901389582107820805150038842863631849737436701328114628077704651738512602425065772788497337044927109763859506514416834312737906798802760106756384258217323477546714114607353015042362454195100116766364810920289797368209757847357172011631086474328796065766406344958674054804334654804383382908252899761733014694769787178354430888218481978393652815783774659719940284049820290033601546223155810968824819121562562480513975161715904432361475058069296603110073291673481430048055765919464476505617888066191194049011934386749375543589054882081051275039492047943644576821183448700001064834297740370419949845218430950878352875159096391653222546297862556524065795146072122340266935368568860124410100169194981800675254932732123923536751156699807983273162038325931332015040416887292409683625781083202390379626792832771171417366021020522186603627629947292214857083030448085816225201357289
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							4f9072f42e2626bc4d56f5b1e5fed5b4ada5089c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'posa.yoga'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.posa.yoga'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/98.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600ed3c4bd6e806c2a4a20057dbcb24e23801df512fedc486c5700f20ddb73e3fe00000019712ecf06f000004030047304502207246ef0d550aa2155f9465a26fc07b2492e5a3bc8eea64b7d9cd001893da294d02210089944a15ab268fa076e2c08098f4c3b51c7ebbefa5d1a0fb49506904c48c005a0076000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa340000019712ecf84c000004030047304502200eeebe5651dcb3fa9c45fa53480cca0777f115b25e36bce093c13a68eab06bed022100959bcf18a8ad306c9500c749062a95a8dd208dad9fbe3ee6deedb9c399b5f1da
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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