www.lyoka.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:f1:cd:91:e9:87:c8:dd:30:ff:0d:e9:d1:63:22:bf:a7:4c was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.lyoka.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f1:cd:91:e9:87:c8:dd:30:ff:0d:e9:d1:63:22:bf:a7:4cSerial Number (int): 343618157581966708934710207948764569642828
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3f:81:99:d9:b1:8c:b0:6c:c0:53:0e:6c:1f:cb:23:19:52:dc:0d:f1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 65:14:fc:3a:f4:40:0d:4a:95:04:9e:c0:98:07:f7:94:b4:31:5f:8f
Fingerprint (sha256): 14:d9:25:d4:23:20:e0:75:b4:74:b9:a3:81:13:c3:29:4c:f8:c3:32:a0:93:16:19:83:56:29:9d:bc:d9:3f:49
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.lyoka.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.lyoka.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.lyoka.org
Other certificates including the domain name lyoka.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.lyoka.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISA/HNkemHyN0w/w3p0WMiv6dMMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMjUwMTQ2MjJaFw0y MDA1MjUwMTQ2MjJaMBgxFjAUBgNVBAMTDXd3dy5seW9rYS5vcmcwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDj1KDFmYqdNxkRuqI0+zBYDMDc40Ucgmnq aYMIXg7nO7qTfUe3QH7tc9VLdqwaLCFSTpHB3Ocr6HbL05m8voFrZ0NX8t3OSzHt 8lqjvGvPEKt8hGN0/Sy/U6PevH2nVANJWUBC9Z0Ffe52M/RojCKf7NfCAlqwDIW4 DnMZH5ugfjdcAWf1dvEmHRqXevR+FaVMTzZ1hgYfQGpI460xQ/E5a7YL8viiGwb7 jvTaVj8an66fwmp6qUvmyQrAQgDiaU0paZAPs3THR6JNLeWLQJQ2JeBaI4xgodNy MAmwW/6SQ6xXsWew9jOKBjUfQjiaJGUISTxCa31ER8cGzYubTBFkTwS+lb6BZ6PB HubVAMCjXmwKGgU1L7cATOAZv70Kwl+v07tbsgvxQnRwjpW/qRdyk+nkf02C1CJn 5h+junKDKR279KCOdsMOxw27gP6QukFJ3YTEk1AsQhhD+Z7NhtanzvI4pfO0HMGu ESZG8N4/JRv2aNzE2R4PvB6nCFPVBn2Gf1CoiGL4fH82w/0TmVP0A4+9cei0HyeC 808wYdvHfLLiWaGy24cLOxW7BqT6f2ULl8EFu9uI3D9LB9vhgLMkVV7x9hgdckrv pEi62UcFXPfUsMOFWMTByc2ZfRCg5ftCKYhpqLexnmslASGdgct57NbupcjUHtl7 MfBC9CMMfQIDAQABo4ICYTCCAl0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ/gZnZ sYywbMBTDmwfyyMZUtwN8TAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy5seW9rYS5vcmcwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHx AO8AdgDnEvKwN34aYvuOyQxhhPHqezfLVh0RJlvz4PNL8kFUbgAAAXB6PP8kAAAE AwBHMEUCIQCFimvI1oadsOZo+TSa1vARocxvsQr8RNFFyuSm4jRGKwIgCJv1/Q5N bugaBPiQG+7ctvRonpYAxg4dEsU6xpE/17cAdQCyHgXMi6LNiiBOh2b5K7mKJSBn a9r6cOeySVMt74uQXgAAAXB6PP8bAAAEAwBGMEQCICWIy9xSITFXiw7MLPhYpOXI IFEZnxtCQLE7ir8z+TKkAiByc/9XJRH5GTLIdqShqcsiIPqxxPgnK/v+jfWhdawo rjANBgkqhkiG9w0BAQsFAAOCAQEAF2sBpNTThGWVQMuStfMDLEjgMdr4DlokctXP 2InxIYi+ACh3mLOg6Q5CfZn33e2H926/Qp8DWFehiYdDo+PzHrsUXZui8OpywPNF /Te12FAMB+eKg6Nk1oy4kz2tvzidncPpNUnWFmR70bm3oBvJQq/eKtMmvwNS1x2S wKAX0PtPQR+mQDmQPFZ2YBQ3VCAqGmo9BYTWiemo8vVH+XyaicsSekyxqBqYgn1G q7ddV9Is8sYTUvl5aWRVeugI74AXOdW3MjnwkKW8UbG8I1LYnRLkJti1+UWtpOcC f2sq0jV/GIIFnapOgIPRb1f4ujGwFFsbkudni406RUaG6QXaPQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA49SgxZmKnTcZEbqiNPsw WAzA3ONFHIJp6mmDCF4O5zu6k31Ht0B+7XPVS3asGiwhUk6RwdznK+h2y9OZvL6B a2dDV/Ldzksx7fJao7xrzxCrfIRjdP0sv1Oj3rx9p1QDSVlAQvWdBX3udjP0aIwi n+zXwgJasAyFuA5zGR+boH43XAFn9XbxJh0al3r0fhWlTE82dYYGH0BqSOOtMUPx OWu2C/L4ohsG+4702lY/Gp+un8JqeqlL5skKwEIA4mlNKWmQD7N0x0eiTS3li0CU NiXgWiOMYKHTcjAJsFv+kkOsV7FnsPYzigY1H0I4miRlCEk8Qmt9REfHBs2Lm0wR ZE8EvpW+gWejwR7m1QDAo15sChoFNS+3AEzgGb+9CsJfr9O7W7IL8UJ0cI6Vv6kX cpPp5H9NgtQiZ+Yfo7pygykdu/SgjnbDDscNu4D+kLpBSd2ExJNQLEIYQ/mezYbW p87yOKXztBzBrhEmRvDePyUb9mjcxNkeD7wepwhT1QZ9hn9QqIhi+Hx/NsP9E5lT 9AOPvXHotB8ngvNPMGHbx3yy4lmhstuHCzsVuwak+n9lC5fBBbvbiNw/Swfb4YCz JFVe8fYYHXJK76RIutlHBVz31LDDhVjEwcnNmX0QoOX7QimIaai3sZ5rJQEhnYHL eezW7qXI1B7ZezHwQvQjDH0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 343618157581966708934710207948764569642828 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-25 01:46:22 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-25 01:46:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.lyoka.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 929467666802417159600689604794900393942599151137838419877010249995482060063662067593342160903941863481357982052544060048730360390751114302204651415378024349177712776056260998955755796031175238003666575046950392621348715533771247167421454468448480535183902989623012847539862995507258805371699023516828592112275173142516409578306802806842598773733858490677926947050522453486586595449361590471741011284254211279759895593735434636324277347368042307710899002587124148476599936371996559590575381168194274628717228901634338628370713341721014179238585936091706186889820234968313440662276636192160202800042619589086137485200252168983078946588712540676572661242600484432914604514754949433430396986976806126208326722252421666783438203022599709374050988406108482060542960124635240406013632198444298003478502230600022808832542433022279080403783241310033613630343537295347826086254341522628734386333736178458694738456620055310577937393493257535077747267499075773859153233433093111569297590685410533013105665457071842632224020016650920570091907510203072385012869482389620407946340611884134235152240807450303383474208308557664995718820589308379255476334668818217678611142985592089854174708634278615850101972088957121733419137800873098201950287236221 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3f8199d9b18cb06cc0530e6c1fcb231952dc0df1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lyoka.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e000001707a3cff240000040300473045022100858a6bc8d6869db0e668f9349ad6f011a1cc6fb10afc44d145cae4a6e234462b0220089bf5fd0e4d6ee81a04f8901beedcb6f4689e9600c60e1d12c53ac6913fd7b7007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001707a3cff1b000004030046304402202588cbdc522131578b0ecc2cf858a4e5c82051199f1b4240b13b8abf33f932a402207273ff572511f91932c876a4a1a9cb2220fab1c4f8272bfbfe8df5a175ac28ae . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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