flygold.com

Issued by R3

About this certificate

This digital certificate with serial number 04:e1:e0:cf:4d:d3:c5:33:c3:9b:e6:7a:6b:f6:c9:a7:55:90 was issued on by Let's Encrypt.

With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=flygold.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:e1:e0:cf:4d:d3:c5:33:c3:9b:e6:7a:6b:f6:c9:a7:55:90
Serial Number (int): 425311499739281391628181763673613624890768
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 07:b7:0e:ae:f5:bb:8f:24:11:3b:3e:86:88:f6:99:2f:7a:69:57:42
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): e3:4b:a9:21:fd:d9:35:11:95:c7:6a:66:41:10:9c:5a:39:89:fc:70
Fingerprint (sha256): 4a:42:d1:fd:6d:87:c2:f1:ee:c0:c4:77:49:57:f7:72:71:d6:5a:f5:ef:f2:f1:cd:88:4f:3c:ba:9a:c2:04:6c

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate flygold.com

11

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for flygold.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

adfschoolalliance.sex
allanblock.co.kr
crestprofessional.com
debbiehenline.com
flygold.com
footballcbd.com.mhk.co.in
freesmartcontrols.com.hjfitness.com.demandocrats.com
monacovacations.com.impossible.com.mx
newyorkmedicareadvisors.com
turntabledustcovers.com
wwwaparat.com

Other certificates including the domain name flygold.com

(limited to 100 certificates)
flygold.com
castaways.org
flygold.com
flygold.com
eastcoasthd.com
strandhotel.co.za
strandhotel.co.za
pavliska.com
transcendcontent.com.flygold.com
flygold.com
tunnel.vc
fmcap.vc
chillermedia.com
standforrfra.org
healthyhomecleanair.org
zan.co.za
landbug.xyz.acheter.bible

Certificate

The complete raw certificate details for flygold.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2xbreC2ZQ1ZnezoN6xBG
0UINyPQB92wnEOFFaPItv9JReOZ5w/PwA8TvsctF+RVjWEX5wrRQc0sJnbAkYuk5
16T7CdkNu5AWQJDroZnrQ9kbCY8uFfJ5/uAjHB12hj6wGXVeC+ZFT+BZifTE1uOV
OdxxYWS+/MzFFywXoCvi05tqajkNLElyAPiojGWGYmeiY2FM/voD8oMjUInrKe42
QT6VZKHItwsHTr3tKMW+8AmNVTDSMWBQXGjmDdGUrv+QDvSCiicl9L9DCSqAzN8Z
TTdVq3Hu968NBmVX3EdQC/ztZXmd2uLDq/1qISILboanUn+PkuXaK24/0XsuRluB
wQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 425311499739281391628181763673613624890768
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-23 21:23:02 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-22 21:23:01 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'flygold.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27657490963428585935419832940852381426408493190523575079244872158628462744868208978725495016649747614427823156369652061780443745330422430622626310776998903272442184575978180272133974746743351203349072313838755776075232861624257817153328696702071862909862818820196084349107865488085647615329870803194059506352424551710587146418499798178261139632932148483770023944735220631643242942786237211117084678671508402288012043648963218937386636885022693753962520286350143891455492854548021354329992149536935856083734825867603760136471891500613267231034443732383740759814849558311581885990258444330418274775683002115057017127361
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							07b70eaef5bb8f24113b3e8688f6992f7a695742
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (289 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adfschoolalliance.sex'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'allanblock.co.kr'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'crestprofessional.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'debbiehenline.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'flygold.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'footballcbd.com.mhk.co.in'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freesmartcontrols.com.hjfitness.com.demandocrats.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'monacovacations.com.impossible.com.mx'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'newyorkmedicareadvisors.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'turntabledustcovers.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwwaparat.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018ac4239d570000040300483046022100ff5a97f50cf2dacfe5f5e6306e4e68060b9a169396db13ee808577de3f5cd04e0221009ff35044959b1dd0a59e590860ab600083c43a37e037858cae368bfa47f58ff20075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018ac4239d67000004030046304402200fcf3516535321b7131abb810808ec2127aafceeb91c82f6537588d56c9cc2f60220561371ad7bf6c97039951e08c6dd800bc1fa50577175aa3658caa680c4f3970c
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		004f4306a8ee7d77a8ebeec4a9be37371683cb4cfc575c54a38220a331f64d66cdaa928ba3f5a64f4d1fecc17b6b43a35ac1d9005eda0907c6bfb4a3ba8c5a46b02c0943f2eaf2663587a295d25e15f2cf47f34408fef1e782b44207212611b29dfdb9b0192fc9b02d89311a3ac4bbbf355f6e4d9e3c9abcd97ebca1ed1214a64e7a8a6574e6a41d835707681c1c41bb6fb439d14a248b843b2e60063d8575780bc708e7046e512a14cf32a93d13f806634ac51cb5e0c110b647422678e73bf2ba6a39d6a4152e9c00e4c47f10900a80e6830c4708b76618d081ba9b24f07c1feb99866aaa23e7d27a48cb90e9fe818e8f9e1bf729c833fdfe62324350b05cf95e