kaiyai.com
Issued by R3
About this certificate
This digital certificate with serial number 03:be:a1:87:c3:ba:17:70:db:ff:55:7c:ca:85:b1:22:75:72 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=kaiyai.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:be:a1:87:c3:ba:17:70:db:ff:55:7c:ca:85:b1:22:75:72Serial Number (int): 326205218147469887188735165218819064100210
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3f:49:16:9e:1d:1d:d7:6d:3f:91:98:21:bc:5b:07:94:7b:e1:d9:f4
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 96:30:9d:e7:1c:3f:97:5a:77:df:c1:36:94:f0:0f:90:d9:6e:cb:b5
Fingerprint (sha256): 0c:40:da:5e:a9:77:22:fc:01:ec:4c:2f:ae:a1:76:c9:37:8b:2c:7b:5c:3f:be:32:72:29:10:e0:3a:c0:38:fd
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate kaiyai.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kaiyai.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kaiyai.com
Other certificates including the domain name kaiyai.com
(limited to 100 certificates)
github.kaiyai.com
kaiyai.com
sni.cloudflaressl.com
kaiyai.com
kaiyai.com
github.kaiyai.com
sni.cloudflaressl.com
kaiyai.com
kaiyai.com
sni.cloudflaressl.com
www.kaiyai.com
disqus.kaiyai.com
lib.kaiyai.com
kaiyai.com
about.kaiyai.com
me.kaiyai.com
kaiyai.com
disqus.kaiyai.com
gs.kaiyai.com
demo.kaiyai.com
www.kaiyai.com
sni.cloudflaressl.com
kaiyai.com
kaiyai.com
kaiyai.com
kaiyai.com
kaiyai.com
about.kaiyai.com
about.kaiyai.com
about.kaiyai.com
www.kaiyai.com
about.kaiyai.com
kaiyai.com
kaiyai.com
cloud.kaiyai.com
github.kaiyai.com
www.kaiyai.com
www.panksoft.biz
kaiyai.com
about.kaiyai.com
disqus.kaiyai.com
sni.cloudflaressl.com
about.kaiyai.com
squad.foon.at
disqus.kaiyai.com
about.kaiyai.com
blog.kaiyai.com
about.kaiyai.com
kaiyai.com
sni.cloudflaressl.com
fb.kaiyai.com
kaiyai.com
sni.cloudflaressl.com
kaiyai.com
kaiyai.com
github.kaiyai.com
sni.cloudflaressl.com
kaiyai.com
kaiyai.com
sni.cloudflaressl.com
www.kaiyai.com
disqus.kaiyai.com
lib.kaiyai.com
kaiyai.com
about.kaiyai.com
me.kaiyai.com
kaiyai.com
disqus.kaiyai.com
gs.kaiyai.com
demo.kaiyai.com
www.kaiyai.com
sni.cloudflaressl.com
kaiyai.com
kaiyai.com
kaiyai.com
kaiyai.com
kaiyai.com
about.kaiyai.com
about.kaiyai.com
about.kaiyai.com
www.kaiyai.com
about.kaiyai.com
kaiyai.com
kaiyai.com
cloud.kaiyai.com
github.kaiyai.com
www.kaiyai.com
www.panksoft.biz
kaiyai.com
about.kaiyai.com
disqus.kaiyai.com
sni.cloudflaressl.com
about.kaiyai.com
squad.foon.at
disqus.kaiyai.com
about.kaiyai.com
blog.kaiyai.com
about.kaiyai.com
kaiyai.com
sni.cloudflaressl.com
fb.kaiyai.com
Certificate
The complete raw certificate details for kaiyai.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE4DCCA8igAwIBAgISA76hh8O6F3Db/1V8yoWxInVyMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMzExNTI2MDNaFw0yNDA2MjkxNTI2MDJaMBUxEzARBgNVBAMT CmthaXlhaS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDzdImz xq/Gq7wD88WzYKVqMdNGeQhWv+qDzSHsu4awLhVm4a9AOmaslDsXwgAC7yDezzVq xV5UEVvDp0lCCweBe2gW2JSPX800682XI3bBBVqH7rHe+22wV+Tx2OxxpC2vgHWo lQCq6fyZzDpucMmk16zxoV6Uwmv55pG/L055hcFjF0gveLRGbgTY9vpxKV7tN9WN BsLeZzQKEh0MwWnOTcxcTxjNJB7/MM1KdXEoUIidUvvAmrc3Iktp4/PobPU7xKaX bRjjchVPDi264vdDyEbdoQPh8hgUdSjSUWdBhBUGQJriOXgZwYsegarF7SSWnGEs v5F6Bzv9Zyh8fSIDAgMBAAGjggILMIICBzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FD9JFp4dHddtP5GYIbxbB5R74dn0MB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMBUG A1UdEQQOMAyCCmthaXlhaS5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEDBgor BgEEAdZ5AgQCBIH0BIHxAO8AdgCi4r/WHt4vLweg1k5tN6fcZUOwxrUuotq3ivia bfUX2AAAAY6VVQ93AAAEAwBHMEUCIERPgusIlzwz/UA6oC2G0mk4MVUm5wFZujQX Ywloc5qdAiEAzLE6xYTzRKBGz2Du3f0S3AD5QZTtlJ/KDHqZscEOUJgAdQDuzdBk 1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAY6VVQ9gAAAEAwBGMEQCIEuk JDFxZ/5NO1jAF880VGb+kWccz9kSyS/+v9C1XmPmAiBbIGHK1AC9C5O9PLJGjZVt CjQ2PXh63qJ12piqKCnNQTANBgkqhkiG9w0BAQsFAAOCAQEAW+ehKV3uy3tOqwqn a9i3T6ineYFDMAHx3Bttfopy/nn4EYgDS6n+NAdYN6+Q9XlUhXE1Mu5O+U6WXHBK sWCkJkl2fsdqgCkdztAd/2z5udoRCmEn1EAA4S8cfnnlou3PnATkQPkcqzPYU39B KmO1yk1VkiylxeuVpxSlSmqW8KAafIKppNxj8qKUXmgZEZBMNZM4CPlzsAxB6oa7 JlnB1awTun/APmbvqu0sVPbG/NW1ArgtS7Ti/mbCVpahfrHa27Y7jLmEXkOXYqeS 9hov/NIeJfh67Wcu/rjC84fxEQqyqE9fOnXvbobSflGqZHIhffKmC2BGuK/7vtju b4WimQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA83SJs8avxqu8A/PFs2Cl ajHTRnkIVr/qg80h7LuGsC4VZuGvQDpmrJQ7F8IAAu8g3s81asVeVBFbw6dJQgsH gXtoFtiUj1/NNOvNlyN2wQVah+6x3vttsFfk8djscaQtr4B1qJUAqun8mcw6bnDJ pNes8aFelMJr+eaRvy9OeYXBYxdIL3i0Rm4E2Pb6cSle7TfVjQbC3mc0ChIdDMFp zk3MXE8YzSQe/zDNSnVxKFCInVL7wJq3NyJLaePz6Gz1O8Sml20Y43IVTw4tuuL3 Q8hG3aED4fIYFHUo0lFnQYQVBkCa4jl4GcGLHoGqxe0klpxhLL+Regc7/WcofH0i AwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 326205218147469887188735165218819064100210 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-31 15:26:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-29 15:26:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kaiyai.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30733375086777896470704448239077322165190096698947969237930534974025676943585932349554516594784758193950142611906640381942337983879041278060149788296397403045241653933530329322730455386230812731602913045615406792205741999389608663223167745423865434738705953013872639220314579372008620891651931419985518877833944868882114520529876970660104223308133878045729130289712322822769273064673323158167047070026463789403936834940266721456220576079980453929761904860410138742903806474557638306586738056807943675420591252566879208011793380878024944456030878684467333879730483566876740454547737330974822837338569551116346431709699 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3f49169e1d1dd76d3f919821bc5b07947be1d9f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kaiyai.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e95550f7700000403004730450220444f82eb08973c33fd403aa02d86d26938315526e70159ba3417630968739a9d022100ccb13ac584f344a046cf60eeddfd12dc00f94194ed949fca0c7a99b1c10e5098007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018e95550f60000004030046304402204ba424317167fe4d3b58c017cf345466fe91671ccfd912c92ffebfd0b55e63e602205b2061cad400bd0b93bd3cb2468d956d0a34363d787adea275da98aa2829cd41 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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