DV SSL/TLS Certificate for yacco.ee

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the yacco.ee DV SSL/TLS Certificate

This certificate with serial number 05:2b:e5:ea:db:0f:2a:0a:9c:e9:09:19:8d:0d:db:82:6a:fa for yacco.ee was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for yacco.ee provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:2b:e5:ea:db:0f:2a:0a:9c:e9:09:19:8d:0d:db:82:6a:fa
Serial Number (int): 450499184087950366884693052539854353754874
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: cf:2e:99:93:0d:14:58:c2:6a:53:4d:9f:22:4b:b5:d0:4e:aa:4d:0a
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): db:28:42:dd:f0:6e:00:3a:62:60:3f:45:a4:69:71:da:95:63:89:38
Fingerprint (SHA-256): 4b:78:14:de:b2:eb:de:78:12:07:39:3c:6b:6d:15:47:fe:3f:42:a1:71:5b:48:f9:b5:62:fc:c9:cb:e3:d5:39

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/123.crl

Check the revocation status for certificate yacco.ee
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for yacco.ee

Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for yacco.ee in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 450499184087950366884693052539854353754874
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-16 17:09:59 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-14 17:09:58 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'yacco.ee'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 727211559128855794675787392685993283660274904230391342960182467958078739838136718533365039533500442125746076368868158259882109463698025785551273956534038470696432690970956257865728057413533375895817387574694661803616263637132724522553965354952824331969818979537115667425489596753849171327668608478829484309761938881583677650560673497355627250688180060793707554620043079749939987319692833041639112981772624074754896257944512433032476475225161011796314245774005475892914314325525747384936278702182639226884661772350761877806866997873237389331202421705693619806418615922369671193847469716523894484209080265660223675710795352578891561788248173671678716789037301716963540128252208387015290051282545177638298190488079321504779985301344017584249350308089909910362321856466508029879040342997101877561142857411407658423987985807603248091648068722604628017016375369443872407582778533395681021617514130288271361339105272616179052708060819425295925792821690165882792070909637158467363702796937823408575179200293005913555551063477993721869038551279356034605147090328956095180728996604507344441828708795869886813516396231208299555759857125928702970360392234644160318653106971079345946569503500132814383815107259208995867598382285279348202598557997
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							cf2e99930d1458c26a534d9f224bb5d04eaa4d0a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.yacco.ee'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'yacco.ee'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/123.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f100770012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a00000196da4889bd0000040300483046022100b258a3e4ef6b57ad7a24c0e0a5e67e132fda3944d03d829466b82d973e2a0208022100b6eee73635ae69dc6b5ab8e84d08aef3645884e6f2dc1f1d79f8ba031fea82d5007600af181a28d68ca3e0a98a4c9c67ab09f8bbbc22baaebcb138a3a19dd3f9b6030d00000196da488c50000004030047304502205d8f1eee96e736737bd65a928adf9a476b270994dd6a78df361c53f76e106e3d0221008312d7248743e150713f2bae8f5c88bbad4b19826125fddc5ed056ce9e611533
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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