www.dkgf.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:97:a9:47:32:cc:97:eb:0e:ae:3c:0c:95:e5:3a:18:e9:88 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.dkgf.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:97:a9:47:32:cc:97:eb:0e:ae:3c:0c:95:e5:3a:18:e9:88Serial Number (int): 400056790346797343063618802627587675318664
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 64:a7:22:3b:87:c2:8d:f9:3a:aa:73:7c:16:17:7a:d6:c0:eb:eb:57
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 2a:7e:91:98:fd:05:aa:80:60:c5:96:a9:83:de:de:11:f9:9c:5f:cc
Fingerprint (sha256): 12:5b:8e:15:c1:bf:fd:17:f9:07:00:61:ab:73:de:6b:8d:47:23:25:47:ce:f8:c4:e5:59:a1:81:b1:ca:4a:62
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.dkgf.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.dkgf.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.dkgf.org
Other certificates including the domain name dkgf.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.dkgf.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTzCCBTegAwIBAgISBJepRzLMl+sOrjwMleU6GOmIMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDMxNjE2MTRaFw0y MDAzMDIxNjE2MTRaMBcxFTATBgNVBAMTDHd3dy5ka2dmLm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAMTNEeWiB9GtNw9jGQb/f2uapgSsALHvy6My wdRruIDj/Dq2paR4tyuEoREBsW5o0Xc3y2ZJLJUaQPzjQqe+gba5KBOXX9L8erj9 la1k9qCl1Ld4OT+Cu12CsN2I2ViTnjL+IEmLGFR75ZlcqcPyCywd3FWrDIBEgax2 o9HqnxfG/8boMs+R5h2tcxaEvsH3w2lI8/jAL0k7HH31UExJWSSPPNCeeBnMny6p qalP50sX1oJIRyaSUJnnMxm4Gp6Li2aJ1XfC9ghYUO4vN7MytxJ3DHgH9SObwoHZ LnWvImC74w7v0xSH8RymIeAmy4Y1kWKiWNxlhEXw2C2I+KneuCPv5JwcveS0zYcf WIRFR9HP6SxwvQF+58+lPMTIvd4Y3Rbf+iiG1hJhS579GQ0JljpQ/2a2Lxz7PDiw f1nJBPC10l7y0LuHTtzFM1zrMmaH0akZpY+dzS6iuChkVvKhk+OA9iMqJvzRVLUE UHn/wUXlyPyFKLB+mWiWss7FwEpcMibQzwjBputwysREy4W/ungxVbUUQ94o6nh5 s/k0EubBHhuvvq2uDzYPsZDLeft/0qQMXYB5nuB6B12u/Li+HEJ4PoHWoKKgoRRq CrShmTnQxuuVlCFHCRo8AX7ctZqkigDIcfffwdfJ68nU5oGMc15EnDThXOJ16Y0V ntDUoR3LAgMBAAGjggJgMIICXDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFGSnIjuH wo35OqpzfBYXetbA6+tXMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMd3d3LmRrZ2Yub3JnMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDv AHUAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFuzMMxXwAABAMA RjBEAiBoJXovavvrwzsVe2KPX2d3P0pW1CqMVRLEVeaKPD8s5QIgET5srK2Gms4b 7Jq6DFb72pldo76OTM1AzS3w+bqta98AdgAHt1wb5X1o//Gwxh0jFce65ld8V5S3 au68YToaadOiHAAAAW7MwzGBAAAEAwBHMEUCIBRGS40QuNIB+5ZhBcVa1AzHUQf5 6tpVxb8At1mx0HUVAiEAoNSy+SgxwIJTnbSpxdPPVEVwpE1krGB88zpNwPrbMEUw DQYJKoZIhvcNAQELBQADggEBAGYU1ZJErXUDXd5cm5kgi3dVqCGiCv8T36zV/Iks HbItVBsRFIkOTFmUjN9+jTbWGLYO/OXg+srN8A8whWUI4XrGgsth9i3kuv/BaysD xYdyK6LMXEf52DiL9JOR8Jy1YjtHasgdkT16MkLenIqhxS0N/EeesAQQYUnHdLAC qAnIkq2w8AuBTKTzH1GX3I1NfTydrxbaovQeDBhCzkdVs9gL4rX0zDb2O3Dj/Zrl U/XYRqZDurxn1akJQ3YDqyq44VOMeJSWW62hhgHOJJDKVDWTxzhHEnS9hlSFJabh dRYLQREXu1XoPWv+6wtm7z1BuFXgAuhNupi6EZ5YucJuyZE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxM0R5aIH0a03D2MZBv9/ a5qmBKwAse/LozLB1Gu4gOP8OralpHi3K4ShEQGxbmjRdzfLZkkslRpA/ONCp76B trkoE5df0vx6uP2VrWT2oKXUt3g5P4K7XYKw3YjZWJOeMv4gSYsYVHvlmVypw/IL LB3cVasMgESBrHaj0eqfF8b/xugyz5HmHa1zFoS+wffDaUjz+MAvSTscffVQTElZ JI880J54GcyfLqmpqU/nSxfWgkhHJpJQmeczGbganouLZonVd8L2CFhQ7i83szK3 EncMeAf1I5vCgdkuda8iYLvjDu/TFIfxHKYh4CbLhjWRYqJY3GWERfDYLYj4qd64 I+/knBy95LTNhx9YhEVH0c/pLHC9AX7nz6U8xMi93hjdFt/6KIbWEmFLnv0ZDQmW OlD/ZrYvHPs8OLB/WckE8LXSXvLQu4dO3MUzXOsyZofRqRmlj53NLqK4KGRW8qGT 44D2Iyom/NFUtQRQef/BReXI/IUosH6ZaJayzsXASlwyJtDPCMGm63DKxETLhb+6 eDFVtRRD3ijqeHmz+TQS5sEeG6++ra4PNg+xkMt5+3/SpAxdgHme4HoHXa78uL4c Qng+gdagoqChFGoKtKGZOdDG65WUIUcJGjwBfty1mqSKAMhx99/B18nrydTmgYxz XkScNOFc4nXpjRWe0NShHcsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 400056790346797343063618802627587675318664 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-03 16:16:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-02 16:16:14 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.dkgf.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 802878253904430713040271093540156022554725020096128028161411131441111383765724145880635349855330135309720385234011911092130703845782749933913294276660189713751076374302193903674826408876415046493779881228175298486055264884445106583220166723244448576036764270682885423277681278338634855557380813866020804829713273161825697826746229177757270905603064197047738186311085379754762122428602417662013703386200865242205742310776482573389090079488193392756982543910001176501782146535465175842782096045031399592787117676110692554233515396573251658837459744583072616029052793042296636904586187298944695867606671538111754107337889663596154391224819837684116004704367780104388187042188411251902126426177713737629015842384177090167332849017315604617310055909965348323947627996009614908175956402484806766931031972060106769213821783461495545236896159932863691610667220019739617545146834772230902334331499071337854632104814560505610171388119992595657198496404576758843975200247124103338935639595813592413404597988886486161692065351096923136694262267663490904510039659788164487098148613032351215606388627795453541542367279912514734364434058529144437608516473804607059671534090138095041421769304662041351584769087859641371675060875375092358257330691531 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 64a7223b87c28df93aaa737c16177ad6c0ebeb57 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dkgf.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016eccc3315f0000040300463044022068257a2f6afbebc33b157b628f5f67773f4a56d42a8c5512c455e68a3c3f2ce50220113e6cacad869ace1bec9aba0c56fbda995da3be8e4ccd40cd2df0f9baad6bdf00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016eccc331810000040300473045022014464b8d10b8d201fb966105c55ad40cc75107f9eada55c5bf00b759b1d07515022100a0d4b2f92831c082539db4a9c5d3cf544570a44d64ac607cf33a4dc0fadb3045 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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