training.teds.ky.gov

Issued by R3

About this certificate

This digital certificate with serial number 04:45:51:bb:8f:ff:21:a1:a0:6d:17:b2:e9:87:e0:75:a4:82 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=training.teds.ky.gov

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:45:51:bb:8f:ff:21:a1:a0:6d:17:b2:e9:87:e0:75:a4:82
Serial Number (int): 372037268392355027927238568598150711714946
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: bb:36:6d:6b:8c:59:88:31:ea:75:f1:37:3c:a7:2c:2f:cb:be:b2:c6
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 1a:b2:86:45:2d:35:d2:09:7b:b2:a1:a4:1b:31:e8:96:d6:8e:74:52
Fingerprint (sha256): 05:30:01:c6:cb:8c:62:c5:e4:0d:4e:79:7f:51:0a:af:9b:8d:61:c8:33:6a:c5:1c:01:d8:3b:80:87:b7:32:69

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate training.teds.ky.gov

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for training.teds.ky.gov

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

training.teds.ky.gov

Other certificates including the domain name ky.gov

(limited to 100 certificates)
uat2.citizenconnect.ky.gov
justware.dpa.ky.gov
lessonbank.kyae.ky.gov
test.Kppps.kpeds.ky.gov
safeschools.ky.gov
mycgt.ky.gov
focusassisttest.ky.gov
FMWebWorks.ky.gov
staging.988.ky.gov
notify.education.ky.gov
oaa-adc.education.ky.gov
teds.ky.gov
cot1vp-apsx001.eas.ds.ky.gov
entrustapitest4.ky.gov
kspportal.ky.gov
trn3.kyplans.ky.gov
dfiweb.ky.gov
Kyeasxlyncpool01.eas.ds.ky.gov
refund.ky.gov
stu1.kyplans.ky.gov
brandenburg.ky.gov
cloud.chfsmail.ky.gov
cemcsapp.ky.gov
search.jeffersondeeds.com
vdi.ky.gov
impact.ky.gov
tls.automattic.com
trn2.kyplans.ky.gov
dev.pmis.ky.gov
test.precon.business.kytc.ky.gov
letrs.ky.gov
dev.kog.externalsync.ky.gov
lessonbank.kyae.ky.gov
muat.trs.ky.gov
portal.chfs.ky.gov
KYCHFSPCH01.KY.GOV
hbc.ky.gov
test.epayments.dor.ky.gov
cgt.ky.gov
kentuckyasm.kytc.ky.gov
www.ekos.ky.gov
safesleepky.com
ThinkKentucky.ky.gov
sso.mykentuckycareercenter.ky.gov
search.jeffersondeeds.com
uat4.kyagent.ky.gov
COT1VP-WS002.eas.ds.ky.gov
jeffersonpva.ky.gov
kyprdesxsctax1.eas.ds.ky.gov
test.justware.dpa.ky.gov
sso.uat.kog.ky.gov
uat2.kyagent.ky.gov
Abcdev.ky.gov
elsweb.kyboels.ky.gov
vdi.ky.gov
api.uat.dwc.ky.gov
intranet.education.ky.gov
mysite.ky.gov
hands.chfs.ky.gov
stlp.education.ky.gov
*.ky.gov
partnership.jcurve.xyz
trn4.kywaiver.chfsinet.ky.gov
*.kyret.ky.gov
kares.ky.gov
sp13cspnp.chfs.ky.gov
staging.nedssphinms.chfs.ky.gov
test.kaers.ky.gov
trn1.kyagent.ky.gov
onestop.portal.ky.gov
kohs.ky.gov
uat4.kyshop.ky.gov
perf.issuerportal.kynect.ky.gov
stu2.kyagent.ky.gov
cdcb2.ky.gov
trn4.kyplans.ky.gov
5702143428263936-fe2.pantheonsite.io
opsupport.education.ky.gov
training.ehands.chfs.ky.gov
sut-sst.ky.gov
impact.ky.gov
uat.webapps.chfs.ky.gov
media.education.ky.gov
epg.ky.gov
prdweb.chfs.ky.gov
uat.naicwebsrvgw.chfs.ky.gov
opengisdata.ky.gov
uat2.kyplans.ky.gov
PROD.KOG.SalesforceSSP.ky.gov
kchild.chfs.ky.gov
uat2.benefind.ky.gov
uat1.kyshop.ky.gov
uat3.kyshopping.ky.gov
epg.ky.gov
trn4.kyshop.ky.gov
perf.klocs.ky.gov
web1.ky.gov
kyfaces.ky.gov
kylmi.ky.gov
stu4.kywaiver.ky.gov

Certificate

The complete raw certificate details for training.teds.ky.gov in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsa56+vanuXuI573RyINr
FtmTauuZHLqYAPCgMzNoN/zOpI4txz+xR12uQ6Od3iEIMWbVwTUNKFQqFuO2s43a
vdjWvxinX0N3fxw628ZHUSaf7enf2HawUDIv8X+RM5EU2SqOVxgOvfFlmru/nrGi
B8r5BBEesXoGxbIP1dQ4uz/Vn61ItutsjM9vr6+LTkEBUGpc2gluq5FEhBwCI9ck
MXo1Mj5PSIXSDVeJqOMeGCS4i3qlIeaJZNwRC5ER/B90A5vbctNke4MMzjtq9AdO
zQiL1opvC03ahgvZGvRBGMXxDJx+plC8WH6ArJSSFkD+Ppc351dVt9cxje2ZuE91
jwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 372037268392355027927238568598150711714946
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-05 02:16:20 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-03 02:16:19 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'training.teds.ky.gov'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22430219466973434410083887158412229664069448556556797334822735221298595967844122814157715137396084184456828714027693332137329767775303383746431387355943685488725768733345850184250986668933590844190859292475395418245816323871159567793864110862327975673298769485350789333061199134158460163064898918858397696280078882911933428735569101167082504161721653897694622337990326704218030528456607866084969727130931071077562909055049619976368146946569123547456448271242740720708791422222892669149983434537973868020116243271943872338170373531155961293074425223723883957658118023984570167642193573491687642580782751300044368868751
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							bb366d6b8c598831ea75f1373ca72c2fcbbeb2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'training.teds.ky.gov'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f100770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018b9d7b38d40000040300483046022100918506693c35d0fa6136a076c24ae6ec28b2a98cb4e86eba1453b83ed872e10b022100edb557a54cc0205f2b5f04e99a958ae32b2dbd049afe65d1f881a9cb25eec67000760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b9d7b390900000403004730450220380e310915c4548d724221b5bfa18e67abf3daf32da0c99aea94f76f9fc2030202210085654b26c58c8db75265828d89408403ae00f0d53ef7aa820b266a7e7c05c5c3
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00b86a46c2d259497963a625b6ed47a0693b02fff516b7f0e680412725d56bab1f9cf930a21640b082e760027cc451ffb1c55ed2164eca840f37d9c3088559a867d8eef5c3b9645170b314bdf206deae0156e7102cf91e2bf639f42549afb0365d8b193cb341585d2074f55994a2dfef816acc4469d5aaa2d9af96efea35b5eaf1e7e73bc8ce64379386b6a9fd6c2d9c817866b6c89a6f64cb80cc1b0820f386efbc088481738ce8a3dbe6b91bbef928085838578450a7da1af0b2cbad1543ab2fafaea4c950c88bbe8dea3c58be24c7c1100834b5782b6f92305772f9d95f52656c43f4134d938c697789d0b6386027313a010219bb978604bcbe7da3f310651e