paityn.org
Issued by R3
About this certificate
This digital certificate with serial number 04:ef:ee:19:0a:ea:b0:e4:3f:26:d6:04:b5:1c:2e:6f:ca:91 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=paityn.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:ef:ee:19:0a:ea:b0:e4:3f:26:d6:04:b5:1c:2e:6f:ca:91Serial Number (int): 430093115712981784062579422978732672928401
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 04:01:c1:b8:77:d5:49:43:1a:bb:61:7f:62:d0:fe:1c:a4:a5:ef:e0
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 74:1e:2c:0f:4a:56:b5:f3:6e:93:ce:aa:f4:c2:ae:73:fe:fb:37:70
Fingerprint (sha256): 32:3f:40:57:64:97:2b:81:04:1b:2b:1c:20:e5:95:bc:93:38:61:13:0e:30:56:dc:5d:7b:12:b6:58:24:03:9e
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate paityn.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for paityn.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
paityn.org
Other certificates including the domain name paityn.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for paityn.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4jCCBMqgAwIBAgISBO/uGQrqsOQ/JtYEtRwub8qRMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA2MDYxNDQyMDNaFw0yNDA5MDQxNDQyMDJaMBUxEzARBgNVBAMT CnBhaXR5bi5vcmcwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQC+L1U3 ABV5YKuEugR+KniNaLPTpMfh8c0RLDqBfZ3yuOwaK7UUfPVf3DIYFBaZ44GEJpoT fjCJwsr3hM8zhHaIGyZLQYXKvB6I+4gXMyflzVn1fw/zVqTX/LOetpGvorLrD5fY cYWLG+XDFbLf+PskHZ+2y78bmISi0Mw20FwE3JWPBFna2dasciGHE7D9HDEkZGkf uU14LMSiSqVaXe19UQAJ0b5FSAzNl6kEO41JwvhCM/4iF3BVDTc9mbE+cukXrU6t Ih+ci8hrCCl0zLgxzCAXkFzu2ZzYfw8CuqJ8UOYmzKX/snpSenBLU0batRscUqkF RofoiM3sxJfBaXPYBCqmmYK9wuwJb9Bph/xjOrc6TfTfnYzbGvRQJB1txbESDHMR W3IgUj/vzPzF+hWUzAH+fds4Iw8peFqstdDRpV9ouvMAmmeRFvi37vn0FwGH8iPl D10jZY0/lSuvYQr1Go0DW7tFEyhH3sDoiDu4/9gtljkBcm91aKAbSY9PH75O8elZ AiJDEUuylw9cYZVu9BC8VFDb7bCTHbHqddzwvlhDu/9D79SHuWkw1zM4Iv1l1P9S bNNTA9nbBL6/b+BdYZMAi8bTn7YnM8oWWVjCdlo2FATk5Zli/l8qYqgQ+0ZZzJfx UQ3cBacrVpTwVVOBzN1RC/1WsvWlzbP/5FnEcQIDAQABo4ICDTCCAgkwDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB Af8EAjAAMB0GA1UdDgQWBBQEAcG4d9VJQxq7YX9i0P4cpKXv4DAfBgNVHSMEGDAW gBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUH MAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3Iz LmkubGVuY3Iub3JnLzAVBgNVHREEDjAMggpwYWl0eW4ub3JnMBMGA1UdIAQMMAow CAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYASLDja9qmRzQP5WoC +p0w6xxSActW3SyB2bu/qznYhHMAAAGP7jbc1wAABAMARzBFAiEAmzQ2RUu+OrPG L3OJxwovuXzpYLC3LNBDDyH/4JZ+8yQCIF0PleUvf2+QnrouS8v8JHwkoM5X1IxE /WFJby2EgxZvAHcAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGP 7jbc1QAABAMASDBGAiEA/JLFAcIx1kpZYN7YUEX9Qh5fdxRi2hP6yLxKz4HpyKYC IQCNKFfop+M+j6XtkzPCNuqVIZ2RXCjx+HxI3dBfhyUnbTANBgkqhkiG9w0BAQsF AAOCAQEAcgzXl+wk6tDvih/EXHVe+PNpCSnp3WUYK+oPQ+cdHicyGoprS0avE4ua XfD0sVj5mw0bnBoFDmGerjc2cGCgc9voHwjYT4qBMCzQ2Y324DWVJ1slI4b63MuO 7Gm7IDKMBkpxV6QnBDHcxdsX2273lGgIIbi84f5x5HNa9udlA/J9y8qi8Rp0IZM9 8I+ICK9fHCm4+NX5h6RISoUxRDBQR6C298s63pNcxdIdo9qjqWz5WequfifTWD2m pQLYh4WnzXAR9dfiUJ2ihPVmeFB5TYsfVD8ygaB7cc9lXYSrsl+YZfKvR/HV6LVx swm0edpeukqrcJTV//sYaJ1JkR+7Hw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvi9VNwAVeWCrhLoEfip4 jWiz06TH4fHNESw6gX2d8rjsGiu1FHz1X9wyGBQWmeOBhCaaE34wicLK94TPM4R2 iBsmS0GFyrweiPuIFzMn5c1Z9X8P81ak1/yznraRr6Ky6w+X2HGFixvlwxWy3/j7 JB2ftsu/G5iEotDMNtBcBNyVjwRZ2tnWrHIhhxOw/RwxJGRpH7lNeCzEokqlWl3t fVEACdG+RUgMzZepBDuNScL4QjP+IhdwVQ03PZmxPnLpF61OrSIfnIvIawgpdMy4 McwgF5Bc7tmc2H8PArqifFDmJsyl/7J6UnpwS1NG2rUbHFKpBUaH6IjN7MSXwWlz 2AQqppmCvcLsCW/QaYf8Yzq3Ok30352M2xr0UCQdbcWxEgxzEVtyIFI/78z8xfoV lMwB/n3bOCMPKXharLXQ0aVfaLrzAJpnkRb4t+759BcBh/Ij5Q9dI2WNP5Urr2EK 9RqNA1u7RRMoR97A6Ig7uP/YLZY5AXJvdWigG0mPTx++TvHpWQIiQxFLspcPXGGV bvQQvFRQ2+2wkx2x6nXc8L5YQ7v/Q+/Uh7lpMNczOCL9ZdT/UmzTUwPZ2wS+v2/g XWGTAIvG05+2JzPKFllYwnZaNhQE5OWZYv5fKmKoEPtGWcyX8VEN3AWnK1aU8FVT gczdUQv9VrL1pc2z/+RZxHECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 430093115712981784062579422978732672928401 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-06 14:42:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-04 14:42:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'paityn.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 775886674737536465694112474126275871493704253532578234019052595147709146746049390591630843191608571055140530180306537135931769414506856562724317517341780559046050364628468425840352846276986510949938051070752130785388034489036955274359491702826104021095334814486622091165028098627053386301588699000226989479544440160108197398330507159338914482781944897834517077419368868198822281069337479195590988363804336592833974944732514528867631953221730864846955141691757106693329113391775542964026291317784346838355545738378066750818074734424019409671990372569640670636049498659045270489420230625613377719993182313069430500649930364232107826388741619384031742660018124221922548026859931777616973147159561423547070806688331192394272846465869266283552069668077481001400654798730618036029159411283513079184700674680969837251074888237500443597564170688391743066348583380913634487364660555458663149811544889667179212953603139918641264564778696778610116124519827665825725661795855538208421231103718535593291917903002858197524508899080931413270805055407774341498837128233946791209546866546759752226968912546813666274337796886505646274650471474679416969906473124510640170515252549941864603937579933794922233528142214454433158134812506438058614552380529 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0401c1b877d549431abb617f62d0fe1ca4a5efe0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'paityn.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018fee36dcd700000403004730450221009b3436454bbe3ab3c62f7389c70a2fb97ce960b0b72cd0430f21ffe0967ef32402205d0f95e52f7f6f909eba2e4bcbfc247c24a0ce57d48c44fd61496f2d8483166f0077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018fee36dcd50000040300483046022100fc92c501c231d64a5960ded85045fd421e5f771462da13fac8bc4acf81e9c8a60221008d2857e8a7e33e8fa5ed9333c236ea95219d915c28f1f87c48ddd05f8725276d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00720cd797ec24ead0ef8a1fc45c755ef8f3690929e9dd65182bea0f43e71d1e27321a8a6b4b46af138b9a5df0f4b158f99b0d1b9c1a050e619eae37367060a073dbe81f08d84f8a81302cd0d98df6e03595275b252386fadccb8eec69bb20328c064a7157a4270431dcc5db17db6ef794680821b8bce1fe71e4735af6e76503f27dcbcaa2f11a7421933df08f8808af5f1c29b8f8d5f987a4484a853144305047a0b6f7cb3ade935cc5d21da3daa3a96cf959eaae7e27d3583da6a502d88785a7cd7011f5d7e2509da284f5667850794d8b1f543f3281a07b71cf655d84abb25f9865f2af47f1d5e8b571b309b479da5eba4aab7094d5fffb18689d49911fbb1f