kotakun.com
Issued by R3
About this certificate
This digital certificate with serial number 03:4b:84:ad:60:1e:16:16:bb:bd:2c:97:b5:a1:cb:ab:aa:9b was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=kotakun.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:4b:84:ad:60:1e:16:16:bb:bd:2c:97:b5:a1:cb:ab:aa:9bSerial Number (int): 287034393626646263099172404476019217246875
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c7:05:9c:c7:46:b3:96:b3:29:18:6f:08:00:e9:ad:7e:68:3d:e1:f8
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d0:02:ed:f9:ec:5e:46:72:d9:e7:f9:6e:68:03:1b:78:1c:59:03:78
Fingerprint (sha256): 3d:7a:8b:60:c6:b0:56:7f:d8:72:a1:23:80:8b:7a:96:47:09:07:1f:35:27:76:a8:ba:6a:cd:e7:8e:61:6f:a1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate kotakun.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kotakun.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kotakun.com
www.kotakun.com
www.kotakun.com
Other certificates including the domain name kotakun.com
(limited to 100 certificates)
www.louisvillepavers.com
minneapolisstemcellcenters.com
www.hotsauce.tv
kotakun.com
pharmaster.com
kotakun.com
immerweiter.com
santafestemcells.com
deepeve.com
glass-restoration.com
www.parafanghi.com
www.hollywoodhillscomingsoon.com
topaffiliatedeals.com
www.bitcointas.com
kotakun.com
www.kotakun.com
www.creditdossier.com
minneapolisstemcellcenters.com
www.hotsauce.tv
kotakun.com
pharmaster.com
kotakun.com
immerweiter.com
santafestemcells.com
deepeve.com
glass-restoration.com
www.parafanghi.com
www.hollywoodhillscomingsoon.com
topaffiliatedeals.com
www.bitcointas.com
kotakun.com
www.kotakun.com
www.creditdossier.com
Certificate
The complete raw certificate details for kotakun.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9DCCBNygAwIBAgISA0uErWAeFha7vSyXtaHLq6qbMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMzAxMzAyMTRaFw0yNDA2MjgxMzAyMTNaMBYxFDASBgNVBAMT C2tvdGFrdW4uY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnPJ7 PUZ8oS0qWSGTBY9ysHviHyMC8muv7xytnJwqFc5Dug9bcQXw5+6ReAtmpuR7MZss HXbzsCxGfkVVvI/blD9CPL2+LWbxXHgXGQYz5TbYDv32s/t3OayLFprDqrnrY0fx vFMJ63w774G+2BEsNl3SDFl/gJR+QraXGbuv5Hc2IdMHBS9XvzjZYXZxdfumZolU DaWKc0OtLG2ZCIgFz0SZWLywwVyoXpD1M1Qq31yZj9atBxhn3Sm4uqYVYv0gZ5Va PCG0wUr01tUyCENWjVTJugmnLwrbj28uYxzobfSyFo0WbZQshZb25fKd31BpsKiL DD2/S2Iu+iOQsjfRj9sBQqCFFSIbgQTEkpdUtNRqu+zh+A513Y70B+nLExG1ifLo oWuTqICAYpwA5rUtDOyVu5YJbcIhUqTsz6qc3tjOYoYiCz1wZEDtAZZ1fi6S5UWb Z1m3BWVAFMVM38G6WBjw1gmRz1/DYQEJdqpI5Gh+esGmcrsaSUuPk/vRbWms6pva ljQgQ6wRYI5CNk9QABfaZ6hw1zndxAAHHi0TZWdFc+7qLnU3FOo5nEKH5KU5WHui 2NEmCAQZSxxM0tX/Zzj7mpKcY8ndxvB1hpPADNsbJRguamVVtN2ijbO1jDF8bg+Y 37ZwGFwsU/NuWCtNd0csXqUPWpfiz9EACCexU48CAwEAAaOCAh4wggIaMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUxwWcx0azlrMpGG8IAOmtfmg94fgwHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wJwYDVR0RBCAwHoILa290YWt1bi5jb22CD3d3dy5rb3Rh a3VuLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUE gfIA8AB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjo+rCCYA AAQDAEgwRgIhAPfa3/pxeHfMX38d1xkhQ7svgZrCzMJA3rUOGugAKP7iAiEA57XU RLwJfnPJAXoDUUpdBqWRq1k2hZwmts0J4bqIGGEAdQB2/4g/Crb7lVHCYcz1h7o0 tKTNuyncaEIKn+ZnTFo6dAAAAY6PqwhoAAAEAwBGMEQCIBFlu1EmMk4zTqloqGf2 T28fJvnFOeQj4qSTG1CaGISVAiBhnv88hef+i2MnvrBszUsWe+uQbskKwuG3q3QU OvcOrjANBgkqhkiG9w0BAQsFAAOCAQEAJ1RO1S9ie8t2Pwy9Iw5BGMpascKgvvIA GpUmxwaCGmbLzKYfaDzOmxMp4bLzwD7P2Wr/mTr75K32jBvkN8COsN01CupXid3E yOz6bXJ9F1KPOK/DAUonKUeo2G1hcMvbJRQGbSRnAmtNmlVc7VlF4ZOXijPy4zHH RdC0ZdcmMcPHBbwUlo8mJxIyhq3dZ20G9NtX2f78orDwCqwJ128ct3RY2PkpBgFn DsI2rGWuyv/xyY7PsOu/5OS5h6l+fUbsfImTVQCuWKZPQzbjb122PAboh5lZGi8Q xrhcY6Q4cwoGIDsxh0E3ecjlSOayY7ZltHF2gEptYBW26+BdWFpFqw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnPJ7PUZ8oS0qWSGTBY9y sHviHyMC8muv7xytnJwqFc5Dug9bcQXw5+6ReAtmpuR7MZssHXbzsCxGfkVVvI/b lD9CPL2+LWbxXHgXGQYz5TbYDv32s/t3OayLFprDqrnrY0fxvFMJ63w774G+2BEs Nl3SDFl/gJR+QraXGbuv5Hc2IdMHBS9XvzjZYXZxdfumZolUDaWKc0OtLG2ZCIgF z0SZWLywwVyoXpD1M1Qq31yZj9atBxhn3Sm4uqYVYv0gZ5VaPCG0wUr01tUyCENW jVTJugmnLwrbj28uYxzobfSyFo0WbZQshZb25fKd31BpsKiLDD2/S2Iu+iOQsjfR j9sBQqCFFSIbgQTEkpdUtNRqu+zh+A513Y70B+nLExG1ifLooWuTqICAYpwA5rUt DOyVu5YJbcIhUqTsz6qc3tjOYoYiCz1wZEDtAZZ1fi6S5UWbZ1m3BWVAFMVM38G6 WBjw1gmRz1/DYQEJdqpI5Gh+esGmcrsaSUuPk/vRbWms6pvaljQgQ6wRYI5CNk9Q ABfaZ6hw1zndxAAHHi0TZWdFc+7qLnU3FOo5nEKH5KU5WHui2NEmCAQZSxxM0tX/ Zzj7mpKcY8ndxvB1hpPADNsbJRguamVVtN2ijbO1jDF8bg+Y37ZwGFwsU/NuWCtN d0csXqUPWpfiz9EACCexU48CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 287034393626646263099172404476019217246875 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-30 13:02:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-28 13:02:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kotakun.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 640288684846931939689846923530060398258396551038380515364429342549561279572978425180428819116104356518271081088407293876967436499243842315080758914138574020428488338439104463316020593458448803159236519367881236760505515381439470383443768253021343575956083604630939655370379148421980554807585580448138618462442916529264374659768813067344083041812976488889308851669134185009495583239010746782974782588439855543154292639327033127436151244499544500228152763779878396840740698740680765101889234040833593261706128683523333056708813589259898994035113363525337002872097525787695532345326490158823018976207932293039167693123835396868079400025451056277585831601709470814530061855389577294325241072894797388798169726753598840870456326234910560538356316122286830561224896172047740330162633952382427659300225158947795166775493085866619904617736153175124155798593153673984744809314720272279451466076599750033119234305471274925881096323185966967432212216560665324899071635685286333485045239480494297042695866458287339394687256962094895440934076266769820623803589735058856165886904132679381022495643792592035919691809185313049814523513381805396925330664474333841791919720352309477589927727974343273300076297931963674118920548170325090870250529969039 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c7059cc746b396b329186f0800e9ad7e683de1f8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kotakun.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kotakun.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e8fab08260000040300483046022100f7dadffa717877cc5f7f1dd7192143bb2f819ac2ccc240deb50e1ae80028fee2022100e7b5d444bc097e73c9017a03514a5d06a591ab5936859c26b6cd09e1ba88186100750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e8fab0868000004030046304402201165bb5126324e334ea968a867f64f6f1f26f9c539e423e2a4931b509a1884950220619eff3c85e7fe8b6327beb06ccd4b167beb906ec90ac2e1b7ab74143af70eae . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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