DV SSL/TLS Certificate for *.reflexconcepts.co.ke

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the *.reflexconcepts.co.ke DV SSL/TLS Certificate

This certificate with serial number 05:fe:f8:41:7f:86:26:08:68:c7:79:9d:11:a3:2b:64:7c:12 for *.reflexconcepts.co.ke was issued on by Let's Encrypt.

With 10 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for *.reflexconcepts.co.ke provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:fe:f8:41:7f:86:26:08:68:c7:79:9d:11:a3:2b:64:7c:12
Serial Number (int): 522323139485464430890351759010977844329490
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: b5:ee:36:d6:42:ee:34:ee:91:0b:16:1a:03:99:90:66:41:31:57:64
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 09:f1:e6:7c:ca:12:6f:6e:2a:6a:5b:6c:d7:ee:c1:09:62:f4:3e:13
Fingerprint (SHA-256): 2c:79:c2:30:ac:50:74:0c:39:2c:24:f1:b7:b0:b7:ab:b5:cb:c9:5e:6b:0f:fd:bb:7f:cc:de:42:31:c8:cc:9d

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/19.crl

Check the revocation status for certificate *.reflexconcepts.co.ke
10
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for *.reflexconcepts.co.ke

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

*.reflexconcepts.co.ke
reflexconcepts.co.ke
www.blogs.reflexconcepts.co.ke
www.dakshi.reflexconcepts.co.ke
www.eugean.reflexconcepts.co.ke
www.gists.reflexconcepts.co.ke
www.iojiambo.reflexconcepts.co.ke
www.robercick.reflexconcepts.co.ke
www.sms.reflexconcepts.co.ke
www.stannyshoes.reflexconcepts.co.ke

X.509 Certificate

The complete raw X.509 certificate details for *.reflexconcepts.co.ke in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGLzCCBRegAwIBAgISBf74QX+GJghox3mdEaMrZHwSMA0GCSqGSIb3DQEBCwUA
MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD
EwNSMTAwHhcNMjUwNTExMDEzMDU5WhcNMjUwODA5MDEzMDU4WjAhMR8wHQYDVQQD
DBYqLnJlZmxleGNvbmNlcHRzLmNvLmtlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEAxhgIUWseeEkxh35FAXz5+LEy1R2FG7FyboZpwF/WIzU/qx2XtxdL
SJnrG7VZsJ0dXOdbS9tDAO0l8ilXcRis8mGxzKZQJ5DQ9TjlXSZdj9sM1Ac+vzo3
BX5gbQlRjZ6M+c+9eq2Lz6fXL528ashM8zUrKSoVFluoPGHBQphqo0H1DH4JU1rx
4IdrRmv7iSqVPKq2TE0qXa2LjxMtfIto8tHHBFOKIjqFntgOZIOg9bKSKSHP1I/P
ZoreAoIzhS7uivEg1sc15cszLlROUzu9/GQWWJNgAJcv8gAI+e56JvXeZA72ptfn
HxEwOFFQR7OthO3OO6cInV+JqcxEI7gcWwIDAQABo4IDTTCCA0kwDgYDVR0PAQH/
BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8E
AjAAMB0GA1UdDgQWBBS17jbWQu407pELFhoDmZBmQTFXZDAfBgNVHSMEGDAWgBS7
vMNHpeS8qcbDpHIMEI2iNeHI6DAzBggrBgEFBQcBAQQnMCUwIwYIKwYBBQUHMAKG
F2h0dHA6Ly9yMTAuaS5sZW5jci5vcmcvMIIBSAYDVR0RBIIBPzCCATuCFioucmVm
bGV4Y29uY2VwdHMuY28ua2WCFHJlZmxleGNvbmNlcHRzLmNvLmtlgh53d3cuYmxv
Z3MucmVmbGV4Y29uY2VwdHMuY28ua2WCH3d3dy5kYWtzaGkucmVmbGV4Y29uY2Vw
dHMuY28ua2WCH3d3dy5ldWdlYW4ucmVmbGV4Y29uY2VwdHMuY28ua2WCHnd3dy5n
aXN0cy5yZWZsZXhjb25jZXB0cy5jby5rZYIhd3d3LmlvamlhbWJvLnJlZmxleGNv
bmNlcHRzLmNvLmtlgiJ3d3cucm9iZXJjaWNrLnJlZmxleGNvbmNlcHRzLmNvLmtl
ghx3d3cuc21zLnJlZmxleGNvbmNlcHRzLmNvLmtlgiR3d3cuc3Rhbm55c2hvZXMu
cmVmbGV4Y29uY2VwdHMuY28ua2UwEwYDVR0gBAwwCjAIBgZngQwBAgEwLgYDVR0f
BCcwJTAjoCGgH4YdaHR0cDovL3IxMC5jLmxlbmNyLm9yZy8xOS5jcmwwggECBgor
BgEEAdZ5AgQCBIHzBIHwAO4AdQDM+w9qhXEJZf6Vm1PO6bJ8IumFXA2XjbapflTA
/kwNsAAAAZa9LRJ9AAAEAwBGMEQCIDfZYEdKeYBj9g+/Jv9Nx5W7I59bHtl8wOGb
r3tzOFLVAiB1mjBATvZaIgtZ27IoIUHB2bJTGCUmQPzxjEmPD4+jugB1AK8YGijW
jKPgqYpMnGerCfi7vCK6rryxOKOhndP5tgMNAAABlr0tFIUAAAQDAEYwRAIgP1q+
pvMc0frkVkcqLpK6L09p9wzoiIk5VJAejHW9/UoCIAdhq3j6dyp33tTgO/poN5dJ
QfhoK8gQD+zgJ7imTDIIMA0GCSqGSIb3DQEBCwUAA4IBAQBT+k+R1ypoCQULwMIs
gtnL8zZBh/a2u/qpapIlZaapnQM3Pe8jZK4fnb42B4q4RW1yTXq5sdQVDPscRAhA
F1sO+Z9ZIt8rUltemQbvx7yLmhDIMN7QFfMhI1Q+vXR+ngnfSL32TnaXJ6uqSJa2
eVJh3k+y+PNw20f1M3Z7aHHToDcSalc2eKCjkyggf1hCKl/S5nB30fxReTQtNC92
1apMLIEDHyjpgGrOJZaFoECiZAo29YZ1Fi7pA2f3xIXI3YkBHEtRt6W09BMpiBAO
VF9Nkj+naX1oj3Zt2lt9YJ5DWeeH8yVSMxz1XAxWW0qs+/omQ4zqc8ceEpM27xWE
f5Mv
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxhgIUWseeEkxh35FAXz5
+LEy1R2FG7FyboZpwF/WIzU/qx2XtxdLSJnrG7VZsJ0dXOdbS9tDAO0l8ilXcRis
8mGxzKZQJ5DQ9TjlXSZdj9sM1Ac+vzo3BX5gbQlRjZ6M+c+9eq2Lz6fXL528ashM
8zUrKSoVFluoPGHBQphqo0H1DH4JU1rx4IdrRmv7iSqVPKq2TE0qXa2LjxMtfIto
8tHHBFOKIjqFntgOZIOg9bKSKSHP1I/PZoreAoIzhS7uivEg1sc15cszLlROUzu9
/GQWWJNgAJcv8gAI+e56JvXeZA72ptfnHxEwOFFQR7OthO3OO6cInV+JqcxEI7gc
WwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 522323139485464430890351759010977844329490
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-11 01:30:59 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-09 01:30:58 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.reflexconcepts.co.ke'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25007035246943505109995614512161199238820573616788200235265013402402325450005702280378835010214298199329132700724516163445706937508281142821785026544766392314498209891712167389449507784705702490111030794079317568785593703476805076848475849607146722561921588070468932450231734458420450018103424645854558403060211974914095947279947512071253168512411223213978940492695616565988731162120957314411605214008558688227312606420005816147608778098968091225428624744053713261907342317666893020962347359262762983776666443364779191022688041650457649817144528395707552107923094615345443422125629228647043757815549980404172897918043
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							b5ee36d642ee34ee910b161a0399906641315764
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (319 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.reflexconcepts.co.ke'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'reflexconcepts.co.ke'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.blogs.reflexconcepts.co.ke'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dakshi.reflexconcepts.co.ke'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.eugean.reflexconcepts.co.ke'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gists.reflexconcepts.co.ke'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iojiambo.reflexconcepts.co.ke'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.robercick.reflexconcepts.co.ke'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sms.reflexconcepts.co.ke'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.stannyshoes.reflexconcepts.co.ke'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/19.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee007500ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000196bd2d127d0000040300463044022037d960474a798063f60fbf26ff4dc795bb239f5b1ed97cc0e19baf7b733852d50220759a30404ef65a220b59dbb2282141c1d9b25318252640fcf18c498f0f8fa3ba007500af181a28d68ca3e0a98a4c9c67ab09f8bbbc22baaebcb138a3a19dd3f9b6030d00000196bd2d1485000004030046304402203f5abea6f31cd1fae456472a2e92ba2f4f69f70ce888893954901e8c75bdfd4a02200761ab78fa772a77ded4e03bfa6837974941f8682bc8100fece027b8a64c3208
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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