www.okulary.com.ua
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:92:44:76:bb:22:57:27:c3:31:c9:04:5b:be:5c:c9:72:0a was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.okulary.com.ua
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:92:44:76:bb:22:57:27:c3:31:c9:04:5b:be:5c:c9:72:0aSerial Number (int): 311109087356011763668630634841502684639754
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 65:ec:36:57:02:90:74:89:bc:e7:b6:f2:bf:b0:32:62:8e:b4:09:cf
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): af:b9:00:9c:b1:bd:6b:6d:8b:18:92:37:c7:0e:83:26:cb:12:b8:b3
Fingerprint (sha256): 17:47:e7:1b:71:2d:b7:d2:b2:d6:21:66:ba:bc:23:85:4a:26:aa:87:e5:9c:7f:27:84:6f:93:7c:d6:60:79:1b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.okulary.com.ua
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.okulary.com.ua
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
Other certificates including the domain name okulary.com.ua
(limited to 100 certificates)
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
www.okulary.com.ua
Certificate
The complete raw certificate details for www.okulary.com.ua in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFbTCCBFWgAwIBAgISA5JEdrsiVyfDMckEW75cyXIKMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MzEwNDI5MzhaFw0x OTExMjkwNDI5MzhaMB0xGzAZBgNVBAMTEnd3dy5va3VsYXJ5LmNvbS51YTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOPe4Cs5YxkTN3IGvZmvEdc6yp1I mmfjzPH9fLYvPr8At472LPCIN709wv0oaKQhOdzKumIU72sfvIdLEadM3HND0dIv /aPlhk1cSWDLdfifGUPUKKM+ZIvTQbtz/u6e8T1r2+n2yzfuxe6cPtVwLo12Fz7E fxFSBLqrW6sdTrzzAkQISb+3OY7U2+JunGm2drDOpaGL6WoSIdriBSsTzDU0A9kc y0HoAwWsglKMnqdGnaMklC+y8cyLBn39aYdAdJnq5YBLKa2oz8dSS6KKu6TyKhb3 wEGckKhNkVRW5OC8faNO3/O2ZVvWZJFFII9ArJfOhOr5ZJS2YoGLXdNUBYMCAwEA AaOCAngwggJ0MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUZew2VwKQdIm857byv7Ay Yo60Cc8wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUH AQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5 cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5 cHQub3JnLzAtBgNVHREEJjAkgg5va3VsYXJ5LmNvbS51YYISd3d3Lm9rdWxhcnku Y29tLnVhMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHW eQIEAgSB9gSB8wDxAHYAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYA AAFs5iZ+hAAABAMARzBFAiEAoIlQ2pChDLtzAHHhuR8Giw4bT8dMv4BRioavNwaW Ha0CIFnDtNdvIoC6zO+QheNHSxTRnyu9+WCyQ9FG7of079/pAHcAY/Lbzeg7zCzP C3KEJ1drM6SNYXePvXWmOLHHaFRL2I0AAAFs5iZ+PQAABAMASDBGAiEA2fO5UPY6 s0WHe6sEcqBmjktjydeYaDXUsSfJ4DlF1YcCIQDiQby/NzzSWALl3rHmqaRAN+eH wZD4WnonUNOGKyWhVzANBgkqhkiG9w0BAQsFAAOCAQEAW5UxpTluUQaFcAgeN+E3 9qGC1X0Xit1ZbLqXQeBBZSakqJcGty0X0CSxQB/wtxxy3epsUnvzGEU2tJpfg2Ka OGL3S8iH0Slwrujf2VaC1MoE/H1q/yBdVlTDbUsu7O0l5kTXeUH+HPiv7TKMf3QF Yb80EYgb1ttz29Iblp+NKzJwYXpDB6sAian1k9BnhhGKaLELWEILId4v7CoEtgsq WVTdZM7/5aMkoJ0Uyqe6mgw9Awk8JQ0XazbDmLhPQtwSW9/K5kNuckkqD6DT+zVM xlqUF/5/iGlTEccD6LfaelxLTXhcweGwErrDyZCCfrl5ty+KzMFmFC4dF1enSQLw xw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA497gKzljGRM3cga9ma8R 1zrKnUiaZ+PM8f18ti8+vwC3jvYs8Ig3vT3C/ShopCE53Mq6YhTvax+8h0sRp0zc c0PR0i/9o+WGTVxJYMt1+J8ZQ9Qooz5ki9NBu3P+7p7xPWvb6fbLN+7F7pw+1XAu jXYXPsR/EVIEuqtbqx1OvPMCRAhJv7c5jtTb4m6cabZ2sM6loYvpahIh2uIFKxPM NTQD2RzLQegDBayCUoyep0adoySUL7LxzIsGff1ph0B0merlgEsprajPx1JLooq7 pPIqFvfAQZyQqE2RVFbk4Lx9o07f87ZlW9ZkkUUgj0Csl86E6vlklLZigYtd01QF gwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 311109087356011763668630634841502684639754 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-31 04:29:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-29 04:29:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.okulary.com.ua' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28765999311199959180539908573685525550963580239814078731880685991833644978269103460771480200896666571964197386969288580128106624089198955294586474413228295090193362040923021228134592043134361444129414459753896261395092764013829952925302567751883482249868181596894799416762702272548497164894355378782035150465004937295474608124570846374507988950553397349178101083715159090679847211954454536395016155980105788118177371144057822121870291249975216544169971560945591717261355556961357151867727285528809773511628425929394658799941935320258184077068199295180517262220324200931160239024567239979693047566126450515397122983299 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 65ec365702907489bce7b6f2bfb032628eb409cf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'okulary.com.ua' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.okulary.com.ua' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016ce6267e840000040300473045022100a08950da90a10cbb730071e1b91f068b0e1b4fc74cbf80518a86af3706961dad022059c3b4d76f2280baccef9085e3474b14d19f2bbdf960b243d146ee87f4efdfe900770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016ce6267e3d0000040300483046022100d9f3b950f63ab345877bab0472a0668e4b63c9d7986835d4b127c9e03945d587022100e241bcbf373cd25802e5deb1e6a9a44037e787c190f85a7a2750d3862b25a157 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 005b9531a5396e51068570081e37e137f6a182d57d178add596cba9741e0416526a4a89706b72d17d024b1401ff0b71c72ddea6c527bf3184536b49a5f83629a3862f74bc887d12970aee8dfd95682d4ca04fc7d6aff205d5654c36d4b2eeced25e644d77941fe1cf8afed328c7f740561bf3411881bd6db73dbd21b969f8d2b3270617a4307ab0089a9f593d06786118a68b10b58420b21de2fec2a04b60b2a5954dd64ceffe5a324a09d14caa7ba9a0c3d03093c250d176b36c398b84f42dc125bdfcae6436e72492a0fa0d3fb354cc65a9417fe7f88695311c703e8b7da7a5c4b4d785cc1e1b012bac3c990827eb979b72f8accc166142e1d1757a74902f0c7