www.kingfirm.com
Issued by R3
About this certificate
This digital certificate with serial number 04:28:e3:1a:c7:3f:33:90:72:5e:07:c6:d0:7a:3d:12:25:13 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=www.kingfirm.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:28:e3:1a:c7:3f:33:90:72:5e:07:c6:d0:7a:3d:12:25:13Serial Number (int): 362362312199846866659682402396487306847507
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: c7:78:9d:c6:00:c9:0a:fe:cb:43:99:55:3b:7c:85:0c:96:6c:38:4a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 88:37:e7:48:95:10:89:f7:98:a5:d6:0a:f2:a8:e2:a5:5c:73:93:5b
Fingerprint (sha256): 3a:0d:a0:99:37:cc:e4:d0:35:90:71:91:37:18:a3:53:e3:aa:89:a8:a2:95:a1:4c:eb:69:df:61:9f:e2:69:0d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.kingfirm.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.kingfirm.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kingfirm.com
www.kingfirm.com
www.kingfirm.com
Other certificates including the domain name kingfirm.com
(limited to 100 certificates)
scope.claims
www.comma.ai
sanexa.ai
www.linkyro.com
www.kingfirm.com
ntmdev.com
sanexa.ai
wylynko.com
www.kingfirm.com
www.comma.ai
conscoach.com.br
staging.accordeguitar.com
wylynko.com
www.carechampapp.com
www.kingfirm.com
fire.ioo.li
www.kingfirm.com
www.rochedorural.com.br
www.carechampapp.com
kingfirm.com
www.aerialbeaches.com
www.dashboard.abdi.app
tools.imobzi.app
kingfirm.com
www.comma.ai
sanexa.ai
www.linkyro.com
www.kingfirm.com
ntmdev.com
sanexa.ai
wylynko.com
www.kingfirm.com
www.comma.ai
conscoach.com.br
staging.accordeguitar.com
wylynko.com
www.carechampapp.com
www.kingfirm.com
fire.ioo.li
www.kingfirm.com
www.rochedorural.com.br
www.carechampapp.com
kingfirm.com
www.aerialbeaches.com
www.dashboard.abdi.app
tools.imobzi.app
kingfirm.com
Certificate
The complete raw certificate details for www.kingfirm.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+zCCBOOgAwIBAgISBCjjGsc/M5ByXgfG0Ho9EiUTMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMTQwNDEyNTVaFw0yNDAyMTIwNDEyNTRaMBsxGTAXBgNVBAMT EHd3dy5raW5nZmlybS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC AQCcomDvvOLUoqgmT6Rnxk5+ur4ZwYZvierAlfl+Y3vRIEY5aciBwt78YNhASZCP IJwScxRFYRwOmF72V57qIP0b8SpdH+5l9FDbrPcqzvYuCeuPBMe/d7q3oPldXrNs XmE2U49fneqhzaqDdhLI8C5rBEcrB/7iZ7CKQ4QkwMWrevnWloTVTjXIrm1K6yzc SeztZBNYW13S6be1VHEA2xyUT4NY2mWYYYzv2OM3CijLkZjNm0DzogYQAvQfREcs CZGORGBATCqrn+FpXVbu6BpOztbAoSkrFXGDxj5HEgolP0+5c9+Tv9/ZkwG7M11n WPhSO8t8rF/l6ojpf8YvnPk+88IZrm3UtxQmk2ErxS7Pqf2VmqgOMne45pGPamFh jKFNUtuhgg+8G8IG3MxJWtqpIEl35nTzWCpgVBd40qRakFWrlZmX2YI2A8io32B7 /er/u1g1whnn5iNdJd5CBQ1zFsnICyODviY2nW9k4KPddy7cbODaCrCFSm5ssz75 ngT20qJpm80GJnTWAwiaE81E3OTSEMZi7qvzG3YuKRjWzFDivwYcrnnB/GTLTR/N oKiYccjle7MnOb7PA0H3ENeKCuSy0kZMs7NpyoCBail2v9dEAAgA2998FMJ8Eojb 3Bt7hK2rF8cFnHrVzyEivI1kRF1eDuwac7O9fxdy8ohLwQIDAQABo4ICIDCCAhww DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTHeJ3GAMkK/stDmVU7fIUMlmw4SjAfBgNV HSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYI KwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0 cDovL3IzLmkubGVuY3Iub3JnLzApBgNVHREEIjAgggxraW5nZmlybS5jb22CEHd3 dy5raW5nZmlybS5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5 AgQCBIH1BIHyAPAAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiEcwAA AYvMPzLlAAAEAwBHMEUCIE9PS7tC8XPoy0gTqLD2b8gAq+sQEsbJuSCR3Gnw67oG AiEAzWD9PPUHxtMnLWMoRBafoeC6g0iRQqAhQ1C5DPlgQl0AdgA7U3d1Pi25gE6L MFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYvMPzLsAAAEAwBHMEUCIBKS6Ycomz5v KHCOCmjpZW4pUr0D3al3PhGq7bgaH5B5AiEAhRNrBd+kPQ1AbM7sCXMH80ymyCDi HHxYQgV8/+LVSoswDQYJKoZIhvcNAQELBQADggEBAFf9gsAwGjv8BG5kLX+hABLv mI2vA3vnIyXWz9AWk4Hmxy1qz5oQmSmFHbIY+Jspi/i+QXhbKC0KsrMkr52p+Zu+ CAMSl88RPMVG3jR143KN2FWVysPo6c3Zqlx1mERw9k1IBcfIjg+Zs6KaqpdpOYVv J0TGV1pUdjGnEo6zLwa+g+97VQ9hlH2hwm0vj6POOE1r+3FsRhYq8XzU5IfzLTue 6nuJLyBf6UgTO0bCYIaqRBvuVTKVyCJexmWzf9gO/D/+Voa6X3JBSnrQuVPqyf9n MJI2q94fXIlThdQG0GaVXMt7fYP3Z4TLGDzPfEQLFqAMJ4ZpImdvxPrRcLzNO2o= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnKJg77zi1KKoJk+kZ8ZO frq+GcGGb4nqwJX5fmN70SBGOWnIgcLe/GDYQEmQjyCcEnMURWEcDphe9lee6iD9 G/EqXR/uZfRQ26z3Ks72LgnrjwTHv3e6t6D5XV6zbF5hNlOPX53qoc2qg3YSyPAu awRHKwf+4mewikOEJMDFq3r51paE1U41yK5tSuss3Ens7WQTWFtd0um3tVRxANsc lE+DWNplmGGM79jjNwooy5GYzZtA86IGEAL0H0RHLAmRjkRgQEwqq5/haV1W7uga Ts7WwKEpKxVxg8Y+RxIKJT9PuXPfk7/f2ZMBuzNdZ1j4UjvLfKxf5eqI6X/GL5z5 PvPCGa5t1LcUJpNhK8Uuz6n9lZqoDjJ3uOaRj2phYYyhTVLboYIPvBvCBtzMSVra qSBJd+Z081gqYFQXeNKkWpBVq5WZl9mCNgPIqN9ge/3q/7tYNcIZ5+YjXSXeQgUN cxbJyAsjg74mNp1vZOCj3Xcu3Gzg2gqwhUpubLM++Z4E9tKiaZvNBiZ01gMImhPN RNzk0hDGYu6r8xt2LikY1sxQ4r8GHK55wfxky00fzaComHHI5XuzJzm+zwNB9xDX igrkstJGTLOzacqAgWopdr/XRAAIANvffBTCfBKI29wbe4StqxfHBZx61c8hIryN ZERdXg7sGnOzvX8XcvKIS8ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 362362312199846866659682402396487306847507 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-14 04:12:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-12 04:12:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.kingfirm.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 639012158710076312598289843083002625283464477046179661638048644695516024077057142540227885835188334843340335376817365439139579934975658829005097510465919933378691960689180118278650467428082826801082670780820117305591907424990629463199760581166480828834419993587302121531600408689127039992664860321040719298262237754398898500045706246742410564752914007559126732266866798914608028919315926799717440558835166940368543971571581221384040182509114796168661404901898550274722903893869434119423596468873132311753396181503128751331639837583176861797556020067365454830876324791286325023721625165610336597241441813624381954871797939641665813753492161083370050206423500354722182096094097745172514758524241950705307033462156483244164532600727675414231602581719364699462379702066142553160367213671836212268735441917983244711224889394516954991817191100209421771228516209315403908409926811200190717685007379759666372927785498342896514819517590402066581599121038779378981835608538901415572479791502523024108308079610028279924346803285542859298547351858462503311032277350479953464159373430727642706895238267385581830571802569931942968241037274139002166407974959794088684710262175037506633276782455425827848542247146499949159286231401924703240397016001 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c7789dc600c90afecb4399553b7c850c966c384a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kingfirm.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kingfirm.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018bcc3f32e5000004030047304502204f4f4bbb42f173e8cb4813a8b0f66fc800abeb1012c6c9b92091dc69f0ebba06022100cd60fd3cf507c6d3272d632844169fa1e0ba83489142a0214350b90cf960425d0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bcc3f32ec000004030047304502201292e987289b3e6f28708e0a68e9656e2952bd03dda9773e11aaedb81a1f907902210085136b05dfa43d0d406cceec097307f34ca6c820e21c7c5842057cffe2d54a8b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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