jakma.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:25:57:1b:4a:21:85:3f:10:65:79:3a:4c:df:ab:f9:10:6e was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=jakma.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:25:57:1b:4a:21:85:3f:10:65:79:3a:4c:df:ab:f9:10:6e
Serial Number (int): 274043089902558008988562089904990410313838
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 73:2b:28:f9:79:32:5d:6c:be:0d:a1:7c:2a:94:6b:54:e0:0f:7e:55
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): e8:38:a6:ed:c4:c1:79:5e:b1:5b:c0:c0:7c:65:dd:38:2d:ab:41:cf
Fingerprint (sha256): 36:63:e7:47:51:ff:f1:5e:1d:ff:a0:15:ac:1e:97:4c:08:e4:41:3c:5d:be:76:70:a3:fe:c5:91:a3:14:2b:47

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate jakma.org

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for jakma.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

jakma.org
www.jakma.org

Other certificates including the domain name jakma.org

(limited to 100 certificates)

Certificate

The complete raw certificate details for jakma.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 274043089902558008988562089904990410313838
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-31 22:01:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-29 22:01:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'jakma.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 773245476883652882410493079840582746994912438628780480705331334796995035438030647954749786653330167759382441414696492208136782106424039748738427411004549253229640319606021334770364418658917295064874557641373765317054855567991817910260097947917731704022753624915593198318781920104180554557844451070840766317950160692622039582648815951042699589414207472445014216220228178413053213635250541640550445310028554840473608063772630664342906720253474456354883546131526334544114990013573346307827727163152102164932385205468026080547119910781914041111592937348096123172204680059426530014158305814670704503560650392176698836879014135204403009944564441013845283969798024512481099880025667873324799437638521284410191051302391088371625183911267893466037673514453635644225068229769289944636584649912050400520842713561794558854553163882665837631203366542294431112769327312984012182090600287250036647897230466290368833926601531385511665796946875621919926238664759188146282822701365999435943566684962536612884960585117080328743585059137288711108983090910221325463198680607916570829236473217813425920522867278810372304517008624299035395049358192004388431018629946337476686648566844121275557723534321927497275952327649523155751828176767971746351706051191
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							732b28f979325d6cbe0da17c2a946b54e00f7e55
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jakma.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jakma.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		004c704b11ed2abe27c6abd7edab7d682651933d244b657774582eabeb3b54910c4f213e9f29ba6c1be138a73581241810a560c1acfb998ff08300214b7b6309f6c740decc83ee6d6787a10507d996c5d99aa5094d8e52d8f14775d228850dedabcac6cd53641a581c67e62c9bbae0d242d53b0728f418bee9e7dedc4f359e681acdb50f4f068be9ff76a6fdc40359a0aa8caa59b01156d0f913102da244281e3aa95bc81e7210026b6cb2b0bc3450352a38c6d78f845673993b157ffe7371aca7dc407b69c56e2fcef1f4b6de42d6cbc9db91f1099951328fcee58b9926dca0b1ffc8d55a44411bfbd2fe0bd3b63aa65a678738341b538e5190b8ee629e5eb402