login.kiva.org
Issued by E1
About this certificate
This digital certificate with serial number 04:58:63:df:d8:cb:e3:3d:e5:51:e2:43:f9:95:37:8c:c7:de was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=login.kiva.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:58:63:df:d8:cb:e3:3d:e5:51:e2:43:f9:95:37:8c:c7:deSerial Number (int): 378526747867019850613044531587465819768798
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a9:ab:45:66:cc:52:04:34:21:62:d8:40:9d:a3:6a:06:50:b6:8d:58
AuthorityKeyId: 5a:f3:ed:2b:fc:36:c2:37:79:b9:52:30:ea:54:6f:cf:55:cb:2e:ac
Fingerprint (sha1): 29:10:b1:39:3b:b0:95:f2:03:08:0f:f7:71:b0:e7:ce:a0:3c:95:0d
Fingerprint (sha256): 3a:54:49:ef:e4:c5:2b:a9:63:ff:7d:24:0b:7b:80:9f:f8:5a:f8:76:ed:eb:8f:fb:02:4f:7d:9f:7a:8d:30:8e
Issuing Certificate URL: http://e1.i.lencr.org/
Revocation information
OCSP Server: http://e1.o.lencr.orgCheck the revocation status for certificate login.kiva.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for login.kiva.org
Public Key Algorithm
ECDSA
Key Size
256
Signature Algorithm
ECDSA with SHA384
Key Usage
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
login.kiva.org
Other certificates including the domain name kiva.org
(limited to 100 certificates)
devvm-api.dk1.kiva.org
secure.novica.com
secure.novica.com
*.stage.kiva.org
*.stage.kiva.org
gender.kiva.org
masterbooker.com
lend.kiva.org
groove.ehlinks.com
jespergustafsson.com
secure.novica.com
*.dev.kiva.org
groove.simondata.com
careers.kiva.org
partnerships.kiva.org
sni.cloudflaressl.com
login.kiva.org
www.marlim.co
*.dev.kiva.org
groove.robinpowered.com
*.dev.kiva.org
www.kiva.org
lend.kiva.org
www.gender.kiva.org
sgchuscpje.device.sighub.ch
go.kiva.org
groove.swivl.com
www.gender.kiva.org
groove.lyric.com
partnerships.kiva.org
groove.kiva.org
links.kiva.org
www.starterplus.net
login.kiva.org
groove.ehlinks.com
secure.novica.com
cdn.steviewonder.es
lend.kiva.org
partnerships.kiva.org
groove.jebbit.com
lend.kiva.org
www.refugees.kiva.org
us.kiva.org
groove.jebbit.com
admin-api.k1.kiva.org
go.kiva.org
*.kiva.org
www.kiva.org
groove.adpearance.com
*.stage.kiva.org
*.kiva.org
educathours.com
secure.novica.com
groove.cloudleaf.io
*.kiva.org
secure.novica.com
www.refugees.kiva.org
login.kiva.org
partner-api.k1.kiva.org
novica.com
*.kiva.org
login.kiva.org
www.labs.kiva.org
www.dashboard.geotargetly.com
gender.kiva.org
groove.kiva.org
www.refugees.kiva.org
groove.trustarc.com
novica.com
viska.com
*.kiva.org
sg.travelrank.org
go.kiva.org
secure.novica.com
login.qa.kiva.org
*.qa.kiva.org
branded.grooveapp.com
us.kiva.org
groove.g2.com
groove.uber.com
www.webboot.io
refugees.kiva.org
careers.kiva.org
wordscanner.app
*.kiva.org
*.kiva.org
careers.kiva.org
sdk.sl.kiva.org
*.dev.kiva.org
*.stage.kiva.org
*.kiva.org
us.kiva.org
wordscanner.app
*.dk1.kiva.org
admin-api.dk1.kiva.org
careers.kiva.org
*.dev.kiva.org
*.dev.kiva.org
marketplace-api.k1.kiva.org
bjuttflix.niels.me
secure.novica.com
secure.novica.com
*.stage.kiva.org
*.stage.kiva.org
gender.kiva.org
masterbooker.com
lend.kiva.org
groove.ehlinks.com
jespergustafsson.com
secure.novica.com
*.dev.kiva.org
groove.simondata.com
careers.kiva.org
partnerships.kiva.org
sni.cloudflaressl.com
login.kiva.org
www.marlim.co
*.dev.kiva.org
groove.robinpowered.com
*.dev.kiva.org
www.kiva.org
lend.kiva.org
www.gender.kiva.org
sgchuscpje.device.sighub.ch
go.kiva.org
groove.swivl.com
www.gender.kiva.org
groove.lyric.com
partnerships.kiva.org
groove.kiva.org
links.kiva.org
www.starterplus.net
login.kiva.org
groove.ehlinks.com
secure.novica.com
cdn.steviewonder.es
lend.kiva.org
partnerships.kiva.org
groove.jebbit.com
lend.kiva.org
www.refugees.kiva.org
us.kiva.org
groove.jebbit.com
admin-api.k1.kiva.org
go.kiva.org
*.kiva.org
www.kiva.org
groove.adpearance.com
*.stage.kiva.org
*.kiva.org
educathours.com
secure.novica.com
groove.cloudleaf.io
*.kiva.org
secure.novica.com
www.refugees.kiva.org
login.kiva.org
partner-api.k1.kiva.org
novica.com
*.kiva.org
login.kiva.org
www.labs.kiva.org
www.dashboard.geotargetly.com
gender.kiva.org
groove.kiva.org
www.refugees.kiva.org
groove.trustarc.com
novica.com
viska.com
*.kiva.org
sg.travelrank.org
go.kiva.org
secure.novica.com
login.qa.kiva.org
*.qa.kiva.org
branded.grooveapp.com
us.kiva.org
groove.g2.com
groove.uber.com
www.webboot.io
refugees.kiva.org
careers.kiva.org
wordscanner.app
*.kiva.org
*.kiva.org
careers.kiva.org
sdk.sl.kiva.org
*.dev.kiva.org
*.stage.kiva.org
*.kiva.org
us.kiva.org
wordscanner.app
*.dk1.kiva.org
admin-api.dk1.kiva.org
careers.kiva.org
*.dev.kiva.org
*.dev.kiva.org
marketplace-api.k1.kiva.org
bjuttflix.niels.me
Certificate
The complete raw certificate details for login.kiva.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIDfzCCAwSgAwIBAgISBFhj39jL4z3lUeJD+ZU3jMfeMAoGCCqGSM49BAMDMDIx CzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQDEwJF MTAeFw0yMzA4MjYwNTU5MDlaFw0yMzExMjQwNTU5MDhaMBkxFzAVBgNVBAMTDmxv Z2luLmtpdmEub3JnMFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEHtYo1bjo8Ekl +JD1GkGvKhMQ+poFPAToWB9DK46LA3ov7YaV2a5afXwN1iFMAv2rKQ9/Bvc59tWx VzZbd2hi5qOCAhEwggINMA4GA1UdDwEB/wQEAwIHgDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUqatFZsxSBDQh YthAnaNqBlC2jVgwHwYDVR0jBBgwFoAUWvPtK/w2wjd5uVIw6lRvz1XLLqwwVQYI KwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vZTEuby5sZW5jci5vcmcw IgYIKwYBBQUHMAKGFmh0dHA6Ly9lMS5pLmxlbmNyLm9yZy8wGQYDVR0RBBIwEIIO bG9naW4ua2l2YS5vcmcwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEFBgorBgEEAdZ5 AgQCBIH2BIHzAPEAdwC3Pvsk35xNunXyOcW6WPRsXfxCz3qfNcSeHQmBJe20mQAA AYowo7Q3AAAEAwBIMEYCIQDPn1NGCdBCGIII1JpBOF8bX/o42fjiZCfAws6LcE0G sgIhALgRsx4r7gMTvVs1+XBgzFWU3O8VmofwvqqfSKFxBiNXAHYA6D7Q2j71BjUy 51covIlryQPTy9ERa+zraeF3fW0GvW4AAAGKMKO0KgAABAMARzBFAiBGTSuzkH94 +A6hssG1RPIn6O6NYPueK8Ug8zjduYT7SgIhAO7H31eI9X7Povrqus2/duGrdjHq 8mLiWGvcIN2jcBUaMAoGCCqGSM49BAMDA2kAMGYCMQCDZnnJRrdMyDwHDi6QsOBv 4Fj1Gu7Eoi2nHSgFlFxS7dqCx/FvOfm/t3APPXQeFJsCMQDZMLQzU7ZH/RGqVccS vL00IdS+gOcRS+oY04E4rxg6eWEsQArJsFkb530TKn/zwl4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEHtYo1bjo8Ekl+JD1GkGvKhMQ+poF PAToWB9DK46LA3ov7YaV2a5afXwN1iFMAv2rKQ9/Bvc59tWxVzZbd2hi5g== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 378526747867019850613044531587465819768798 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.4.3.3 (ecdsaWithSHA384) . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'E1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-26 05:59:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-24 05:59:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'login.kiva.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.2.1 (ecPublicKey) . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.3.1.7 (prime256v1) . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (520 bits) 00041ed628d5b8e8f04925f890f51a41af2a1310fa9a053c04e8581f432b8e8b037a2fed8695d9ae5a7d7c0dd6214c02fdab290f7f06f739f6d5b157365b776862e6 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits) 0780 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a9ab4566cc5204342162d8409da36a0650b68d58 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5af3ed2bfc36c23779b95230ea546fcf55cb2eac . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://e1.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://e1.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'login.kiva.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a30a3b4370000040300483046022100cf9f534609d042188208d49a41385f1b5ffa38d9f8e26427c0c2ce8b704d06b2022100b811b31e2bee0313bd5b35f97060cc5594dcef159a87f0beaa9f48a171062357007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018a30a3b42a00000403004730450220464d2bb3907f78f80ea1b2c1b544f227e8ee8d60fb9e2bc520f338ddb984fb4a022100eec7df5788f57ecfa2faeabacdbf76e1ab7631eaf262e2586bdc20dda370151a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.4.3.3 (ecdsaWithSHA384) . . . . [c:0|t:3|false] BIT STRING (832 bits) . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20224356522392203809682964458869852523610889011763007509307769824079060704031527940132525840239364857164419636794523 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 33428638914708147062750195546259976303403859301769446792353976958618875541089038069665701931574642685362901555069534