dkgf.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:aa:88:b9:17:88:e7:48:32:67:8a:0a:5a:e5:cd:f4:ca:9e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=dkgf.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:aa:88:b9:17:88:e7:48:32:67:8a:0a:5a:e5:cd:f4:ca:9eSerial Number (int): 406478882163288132180979875448979432196766
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 18:41:8e:ef:88:fa:46:e8:f1:ca:94:b4:47:28:0e:01:1a:a0:8e:b2
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a1:b0:e9:8d:3b:24:94:0b:01:af:eb:02:61:2d:67:1e:3d:67:b2:90
Fingerprint (sha256): 26:e8:c7:aa:f8:cf:35:db:df:6a:11:90:13:c6:f3:3e:93:90:72:7f:32:b5:72:7f:4f:b8:d8:a9:f0:c0:a0:63
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate dkgf.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dkgf.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dkgf.org
Other certificates including the domain name dkgf.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for dkgf.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSDCCBTCgAwIBAgISBKqIuReI50gyZ4oKWuXN9MqeMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjkwNTUwMDdaFw0x OTEyMjgwNTUwMDdaMBMxETAPBgNVBAMTCGRrZ2Yub3JnMIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEAxkIQSoXWI4GuFo+XdkSz8ibQDX5fHonW1UvRPtAE LPjJX4t+O+Cf4h9uRG+IIPJ4qJqxlP6V3vX6Yv48tf4/u6qDzZ6tb1vlujQk6fXT eT9DMyGU+Ci7rMWEW+FV6+hD9zg03Jd7i0l4xTOVDkYpS9BHNvD5pXByd/+9CT+x nVPshmp6WbAr9rjTt3w3b7dvhhSbeqhzPAIfQMXQZ4Z4/FJWACPhd7toEnFvGy3D 41YQAyflKVzVQHg0VVY/DBRtvU6e6Zwjaz69iBAt5FrQYWHiKAHl+UbNt4oSVXSi 5bv4IVDuum+Fmcuc4pi7GuHNJxSKIjAtDU5/DBE5ESRONNecebAadFDbyi2LDzJZ x0fmpl0KVD+EEiVIPnFlvPsPWkxVB5BUoQKD7n72MAoQfkiYa+Cah+AL6wRqWel+ t8QsFTFqiRhIX2lNJIQ7PRzl5OmUOUhKWGjhCdtSMy0IQKQIbIBnLOOCa6OI8oe4 fRyGWEweVKdDFLx4EORJR29Zx7wabSt/tgyrbVdkPy9Oo75B4SMs8vk7z770R1C+ HBL71r1hdShIIrpGK8zYCdqXOFwXqUKCpVqi1J3JwQOLwclMK8rZ8bzSw8bU4But fJyQwRwbEzx4p5WaaTUIWbuAj6kMokdv6LmWMoRgTPnklN06zYFp8t0sBFGZibjB uOECAwEAAaOCAl0wggJZMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUGEGO74j6Rujx ypS0RygOARqgjrIwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYI KwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0 c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0 c2VuY3J5cHQub3JnLzATBgNVHREEDDAKgghka2dmLm9yZzBMBgNVHSAERTBDMAgG BmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3Bz LmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AG9Tdqwx 8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABbXvIm6sAAAQDAEcwRQIhAKsl dgfp5WSmPXVVXIxbCtfN3sfOEGQm46VS16j6Xa58AiAejnBbh2/WzYR3/E39Z59w Hf+A2b/v/dZ/PdPZQh4hqgB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVF R/R4AAABbXvInFUAAAQDAEcwRQIhAMH7nUf1UkVzV3qpy+199bvq3KfYJNaGRvf5 Kd579cCXAiB7NTCn+LzNOxp3lkBKEBexJahY3KGDDcN98LlU7CkcfDANBgkqhkiG 9w0BAQsFAAOCAQEACdlHYT+I/nZic8KPb5Ho6Wh18a0yRRGW6mfqhMGYpMxUnysC 82mzzQ1mJdHdueyAhxv73yrM/Cc8gOqN7admYHB3kAswoxkhMZjPnToCTRnleRdm S2JfHh2SeKPJtCxayA2e8eudYu5xVnENXX37yC51RbHs9SZXLb3KiGzHCcpuuOsf OJWtA3sIs0BaL41Q6TNLmJw4XwiGWVCKjsGXRKLcHZeS2d3GF8wVuz7to/nMT1gt w72Wu4q0L8zUOLZcAEKh7qY6yVotpzujeHcm6fLz2ZsHzLwjN3/d05aCE6az8P+8 DIHxUXtNylmzu09TXx8l93kvfobiqFdBELb30w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxkIQSoXWI4GuFo+XdkSz 8ibQDX5fHonW1UvRPtAELPjJX4t+O+Cf4h9uRG+IIPJ4qJqxlP6V3vX6Yv48tf4/ u6qDzZ6tb1vlujQk6fXTeT9DMyGU+Ci7rMWEW+FV6+hD9zg03Jd7i0l4xTOVDkYp S9BHNvD5pXByd/+9CT+xnVPshmp6WbAr9rjTt3w3b7dvhhSbeqhzPAIfQMXQZ4Z4 /FJWACPhd7toEnFvGy3D41YQAyflKVzVQHg0VVY/DBRtvU6e6Zwjaz69iBAt5FrQ YWHiKAHl+UbNt4oSVXSi5bv4IVDuum+Fmcuc4pi7GuHNJxSKIjAtDU5/DBE5ESRO NNecebAadFDbyi2LDzJZx0fmpl0KVD+EEiVIPnFlvPsPWkxVB5BUoQKD7n72MAoQ fkiYa+Cah+AL6wRqWel+t8QsFTFqiRhIX2lNJIQ7PRzl5OmUOUhKWGjhCdtSMy0I QKQIbIBnLOOCa6OI8oe4fRyGWEweVKdDFLx4EORJR29Zx7wabSt/tgyrbVdkPy9O o75B4SMs8vk7z770R1C+HBL71r1hdShIIrpGK8zYCdqXOFwXqUKCpVqi1J3JwQOL wclMK8rZ8bzSw8bU4ButfJyQwRwbEzx4p5WaaTUIWbuAj6kMokdv6LmWMoRgTPnk lN06zYFp8t0sBFGZibjBuOECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 406478882163288132180979875448979432196766 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-29 05:50:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-28 05:50:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dkgf.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 808822322832515292577825747631691483300350790647175710723308324439780802757650030921326151009781712923908789307311916072774072313266757354423525752586457676490841773103364017964897922849966529273616593756835641878637044803975457023901511257942819874234323141323354115730585736686000471857242293399282005443836283036173695989361566331095378997058581586630241899447968163982384529416292627270341440681535143317524818150038045989631207173507797944917314302100666531795820797388974675096359066103972304746623936258151955308011292252818682378212506730171806219327971578562720207693421564807808613677981121291218148755493459644893616239092568051914916052592027917527405866347594685551681403561486388842561818404805902017234100749087473225279177389574034093928558624964739679860850662015346675226838060388969273009712705936855155306405673700141430546510819788176998240358552927365669995565785740740504445204283284261221264163205586604538683428127277287674865382703401945595586426926260769483988173042805115478112024195214966443628261644743719285234947394691984545542389196076069124613581293663882843056247362280492309884002123339557648064986606250146749201781224862670131244722427365766525733220034950746148659897326204326088888533534226657 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 18418eef88fa46e8f1ca94b447280e011aa08eb2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dkgf.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016d7bc89bab0000040300473045022100ab257607e9e564a63d75555c8c5b0ad7cddec7ce106426e3a552d7a8fa5dae7c02201e8e705b876fd6cd8477fc4dfd679f701dff80d9bfeffdd67f3dd3d9421e21aa007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d7bc89c550000040300473045022100c1fb9d47f5524573577aa9cbed7df5bbeadca7d824d68646f7f929de7bf5c09702207b3530a7f8bccd3b1a7796404a1017b125a858dca1830dc37df0b954ec291c7c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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