flygold.com
Issued by R3
About this certificate
This digital certificate with serial number 04:e1:e0:cf:4d:d3:c5:33:c3:9b:e6:7a:6b:f6:c9:a7:55:90 was issued on by Let's Encrypt.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=flygold.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:e1:e0:cf:4d:d3:c5:33:c3:9b:e6:7a:6b:f6:c9:a7:55:90Serial Number (int): 425311499739281391628181763673613624890768
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 07:b7:0e:ae:f5:bb:8f:24:11:3b:3e:86:88:f6:99:2f:7a:69:57:42
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e3:4b:a9:21:fd:d9:35:11:95:c7:6a:66:41:10:9c:5a:39:89:fc:70
Fingerprint (sha256): 4a:42:d1:fd:6d:87:c2:f1:ee:c0:c4:77:49:57:f7:72:71:d6:5a:f5:ef:f2:f1:cd:88:4f:3c:ba:9a:c2:04:6c
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate flygold.com
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for flygold.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
adfschoolalliance.sex
allanblock.co.kr
crestprofessional.com
debbiehenline.com
flygold.com
footballcbd.com.mhk.co.in
freesmartcontrols.com.hjfitness.com.demandocrats.com
monacovacations.com.impossible.com.mx
newyorkmedicareadvisors.com
turntabledustcovers.com
wwwaparat.com
allanblock.co.kr
crestprofessional.com
debbiehenline.com
flygold.com
footballcbd.com.mhk.co.in
freesmartcontrols.com.hjfitness.com.demandocrats.com
monacovacations.com.impossible.com.mx
newyorkmedicareadvisors.com
turntabledustcovers.com
wwwaparat.com
Other certificates including the domain name flygold.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for flygold.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgISBOHgz03TxTPDm+Z6a/bJp1WQMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjMyMTIzMDJaFw0yMzEyMjIyMTIzMDFaMBYxFDASBgNVBAMT C2ZseWdvbGQuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2xbr eC2ZQ1ZnezoN6xBG0UINyPQB92wnEOFFaPItv9JReOZ5w/PwA8TvsctF+RVjWEX5 wrRQc0sJnbAkYuk516T7CdkNu5AWQJDroZnrQ9kbCY8uFfJ5/uAjHB12hj6wGXVe C+ZFT+BZifTE1uOVOdxxYWS+/MzFFywXoCvi05tqajkNLElyAPiojGWGYmeiY2FM /voD8oMjUInrKe42QT6VZKHItwsHTr3tKMW+8AmNVTDSMWBQXGjmDdGUrv+QDvSC iicl9L9DCSqAzN8ZTTdVq3Hu968NBmVX3EdQC/ztZXmd2uLDq/1qISILboanUn+P kuXaK24/0XsuRluBwQIDAQABo4IDIzCCAx8wDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBQHtw6u9buPJBE7PoaI9pkvemlXQjAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDm H6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5v LmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzCC ASoGA1UdEQSCASEwggEdghVhZGZzY2hvb2xhbGxpYW5jZS5zZXiCEGFsbGFuYmxv Y2suY28ua3KCFWNyZXN0cHJvZmVzc2lvbmFsLmNvbYIRZGViYmllaGVubGluZS5j b22CC2ZseWdvbGQuY29tghlmb290YmFsbGNiZC5jb20ubWhrLmNvLmlugjRmcmVl c21hcnRjb250cm9scy5jb20uaGpmaXRuZXNzLmNvbS5kZW1hbmRvY3JhdHMuY29t giVtb25hY292YWNhdGlvbnMuY29tLmltcG9zc2libGUuY29tLm14ghtuZXd5b3Jr bWVkaWNhcmVhZHZpc29ycy5jb22CF3R1cm50YWJsZWR1c3Rjb3ZlcnMuY29tgg13 d3dhcGFyYXQuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIE AgSB9QSB8gDwAHcAtz77JN+cTbp18jnFulj0bF38Qs96nzXEnh0JgSXttJkAAAGK xCOdVwAABAMASDBGAiEA/1qX9Qzy2s/l9eYwbk5oBguaFpOW2xPugIV33j9c0E4C IQCf81BElZsd0KWeWQhgq2AAg8Q6N+A3hYyuNov6R/WP8gB1AHoyjFTYty22IOo4 4FIe6YQWcDIThU070ivBOlejUutSAAABisQjnWcAAAQDAEYwRAIgD881FlNTIbcT GruBCAjsISeq/O65HIL2U3WI1WycwvYCIFYTca179slwOZUeCMbdgAvB+lBXcXWq NljKpoDE85cMMA0GCSqGSIb3DQEBCwUAA4IBAQBPQwao7n13qOvuxKm+NzcWg8tM /FdcVKOCIKMx9k1mzaqSi6P1pk9NH+zBe2tDo1rB2QBe2gkHxr+0o7qMWkawLAlD 8uryZjWHopXSXhXyz0fzRAj+8eeCtEIHISYRsp39ubAZL8mwLYkxGjrEu781X25N njyavNl+vKHtEhSmTnqKZXTmpB2DVwdoHBxBu2+0OdFKJIuEOy5gBj2FdXgLxwjn BG5RKhTPMqk9E/gGY0rFHLXgwRC2R0ImeOc78rpqOdakFS6cAOTEfxCQCoDmgwxH CLdmGNCBupsk8Hwf65mGaqoj59J6SMuQ6f6Bjo+eG/cpyDP9/mIyQ1CwXPle -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2xbreC2ZQ1ZnezoN6xBG 0UINyPQB92wnEOFFaPItv9JReOZ5w/PwA8TvsctF+RVjWEX5wrRQc0sJnbAkYuk5 16T7CdkNu5AWQJDroZnrQ9kbCY8uFfJ5/uAjHB12hj6wGXVeC+ZFT+BZifTE1uOV OdxxYWS+/MzFFywXoCvi05tqajkNLElyAPiojGWGYmeiY2FM/voD8oMjUInrKe42 QT6VZKHItwsHTr3tKMW+8AmNVTDSMWBQXGjmDdGUrv+QDvSCiicl9L9DCSqAzN8Z TTdVq3Hu968NBmVX3EdQC/ztZXmd2uLDq/1qISILboanUn+PkuXaK24/0XsuRluB wQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 425311499739281391628181763673613624890768 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-23 21:23:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-22 21:23:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'flygold.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27657490963428585935419832940852381426408493190523575079244872158628462744868208978725495016649747614427823156369652061780443745330422430622626310776998903272442184575978180272133974746743351203349072313838755776075232861624257817153328696702071862909862818820196084349107865488085647615329870803194059506352424551710587146418499798178261139632932148483770023944735220631643242942786237211117084678671508402288012043648963218937386636885022693753962520286350143891455492854548021354329992149536935856083734825867603760136471891500613267231034443732383740759814849558311581885990258444330418274775683002115057017127361 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 07b70eaef5bb8f24113b3e8688f6992f7a695742 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (289 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfschoolalliance.sex' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allanblock.co.kr' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crestprofessional.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'debbiehenline.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flygold.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'footballcbd.com.mhk.co.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freesmartcontrols.com.hjfitness.com.demandocrats.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monacovacations.com.impossible.com.mx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newyorkmedicareadvisors.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'turntabledustcovers.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwwaparat.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018ac4239d570000040300483046022100ff5a97f50cf2dacfe5f5e6306e4e68060b9a169396db13ee808577de3f5cd04e0221009ff35044959b1dd0a59e590860ab600083c43a37e037858cae368bfa47f58ff20075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018ac4239d67000004030046304402200fcf3516535321b7131abb810808ec2127aafceeb91c82f6537588d56c9cc2f60220561371ad7bf6c97039951e08c6dd800bc1fa50577175aa3658caa680c4f3970c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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