my.okhi.co
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:74:2c:30:da:5d:a3:89:21:d1:bb:74:7f:b3:dd:d3:c5:20 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=my.okhi.co
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:74:2c:30:da:5d:a3:89:21:d1:bb:74:7f:b3:dd:d3:c5:20Serial Number (int): 300868352049157472220792963218955155260704
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3c:19:63:c7:36:08:4c:fc:ab:db:1a:0e:72:5e:56:c7:9e:3b:87:53
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a3:47:ef:cd:fd:f3:ee:7a:51:ae:d3:5b:32:c6:e5:c7:d3:0c:b2:4b
Fingerprint (sha256): 53:92:1e:be:b6:e3:0e:fe:d5:de:09:f4:ac:05:2f:35:e0:7f:a6:77:39:cb:1a:f9:9c:9b:cb:86:38:a4:b5:42
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.org/Check the revocation status for certificate my.okhi.co
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for my.okhi.co
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
my.okhi.co
Other certificates including the domain name okhi.co
(limited to 100 certificates)
docs.okhi.co
my.okhi.co
*.okhi.co
cdn.okhi.co
otwsg.com
docs.okhi.co
am-sig-sectional-config-cert.3dcloud.io
learning.ovb.at
eagle.okhi.co
pokemonbrowser.com
*.okhi.co
docs.okhi.co
www.kyber.space
cdn.okhi.co
my.okhi.co
stage-admin.usefelix.com
cdn.okhi.co
*.api.okhi.co
my.okhi.co
agent.assisthub.io
*.api.okhi.co
*.okhi.co
*.okhi.co
www.encount-attendance.com
docs.okhi.co
*.okhi.co
cdn.okhi.co
cdn.okhi.co
matthewdmurphy.com
cdn.okhi.co
eagle.okhi.co
idanbirman.dev
putproyectosdelnoreste.com.mx
my.okhi.co
*.okhi.co
my.okhi.co
okhi.co
*.okhi.co
cdn.okhi.co
cdn.okhi.co
docs.okhi.co
pinhasov.com
cdn.okhi.co
*.api.okhi.co
docs.okhi.co
play.yooz.plus
docs.okhi.co
my.okhi.co
*.okhi.co
cdn.okhi.co
otwsg.com
docs.okhi.co
am-sig-sectional-config-cert.3dcloud.io
learning.ovb.at
eagle.okhi.co
pokemonbrowser.com
*.okhi.co
docs.okhi.co
www.kyber.space
cdn.okhi.co
my.okhi.co
stage-admin.usefelix.com
cdn.okhi.co
*.api.okhi.co
my.okhi.co
agent.assisthub.io
*.api.okhi.co
*.okhi.co
*.okhi.co
www.encount-attendance.com
docs.okhi.co
*.okhi.co
cdn.okhi.co
cdn.okhi.co
matthewdmurphy.com
cdn.okhi.co
eagle.okhi.co
idanbirman.dev
putproyectosdelnoreste.com.mx
my.okhi.co
*.okhi.co
my.okhi.co
okhi.co
*.okhi.co
cdn.okhi.co
cdn.okhi.co
docs.okhi.co
pinhasov.com
cdn.okhi.co
*.api.okhi.co
docs.okhi.co
play.yooz.plus
docs.okhi.co
Certificate
The complete raw certificate details for my.okhi.co in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE+DCCA+CgAwIBAgISA3QsMNpdo4kh0bt0f7Pd08UgMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNjA0MTcxMDA5MDBaFw0x NjA3MTYxMDA5MDBaMBUxEzARBgNVBAMTCm15Lm9raGkuY28wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQD1zyhI4AcR6vR3IjCOSIc0SZfEpoY0XAdR2v2O yN3L88llnT30X4xb6RbUbQ06w0CUBqYbp4sKdXB47/bJsaMPF3+ajUaeODc++iS/ g3pS3Ge4KOMb6mCMwmafeViYYyY57wCDY/bGxcIxqwEDWb6yumfY3J06/0Bt+5cm xP8L66CJsI4BcSjDwflbWUc9nOz9j1ypePRtZ5/mCDkcigq+gZy/G5EaArD4qzW9 srBxuecOE+ZCjxncxNa6i7XAx66PQbmksiPRp/zBvBzDAAt4/CHxS1DkrkIli9Kb OlYqyBaXufNzR4IXJ4MmINRHgZUvjo3oNOQtUZylej7TM9gBAgMBAAGjggILMIIC BzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFDwZY8c2CEz8q9saDnJeVseeO4dTMB8G A1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMHAGCCsGAQUFBwEBBGQwYjAv BggrBgEFBQcwAYYjaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8w LwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcv MBUGA1UdEQQOMAyCCm15Lm9raGkuY28wgf4GA1UdIASB9jCB8zAIBgZngQwBAgEw geYGCysGAQQBgt8TAQEBMIHWMCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNl bmNyeXB0Lm9yZzCBqwYIKwYBBQUHAgIwgZ4MgZtUaGlzIENlcnRpZmljYXRlIG1h eSBvbmx5IGJlIHJlbGllZCB1cG9uIGJ5IFJlbHlpbmcgUGFydGllcyBhbmQgb25s eSBpbiBhY2NvcmRhbmNlIHdpdGggdGhlIENlcnRpZmljYXRlIFBvbGljeSBmb3Vu ZCBhdCBodHRwczovL2xldHNlbmNyeXB0Lm9yZy9yZXBvc2l0b3J5LzANBgkqhkiG 9w0BAQsFAAOCAQEAfP+PePBb3uUzoGDWo4x+G71bomRPyHW1nPCoWSSMIYQWgNh4 bo7Ieryo+xIt/r/jWfiIFpdoMbTRyyBBJdzJU95luJ5VEz8nl093vIBi4EyqluKL vrP+yxEvvOLvjmJN0oJHKFY3CdxmVubHWNIRbZl3w01WIt9rCT3NHBOLMPu6SX3/ LT8aS+kLiPgH3TdOJ8DdvWsqkbEySd0JtF4psFJzOreKZItrypjJV17UjFnnNJcu zQ7tGVe1NYlQ7V6+fekkyUSk3yIEqAizJsIYevAsglAltYYsHs0c0mDFAh7L/JY1 In91RSEJXu5sm7iVL6g+i3ZbScqDf70V7Pl1fw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9c8oSOAHEer0dyIwjkiH NEmXxKaGNFwHUdr9jsjdy/PJZZ099F+MW+kW1G0NOsNAlAamG6eLCnVweO/2ybGj Dxd/mo1Gnjg3Pvokv4N6UtxnuCjjG+pgjMJmn3lYmGMmOe8Ag2P2xsXCMasBA1m+ srpn2NydOv9AbfuXJsT/C+ugibCOAXEow8H5W1lHPZzs/Y9cqXj0bWef5gg5HIoK voGcvxuRGgKw+Ks1vbKwcbnnDhPmQo8Z3MTWuou1wMeuj0G5pLIj0af8wbwcwwAL ePwh8UtQ5K5CJYvSmzpWKsgWl7nzc0eCFyeDJiDUR4GVL46N6DTkLVGcpXo+0zPY AQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 300868352049157472220792963218955155260704 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-04-17 10:09:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-07-16 10:09:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'my.okhi.co' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31030537819177878559197541700485326665525414767862219101719145874299513582052365567911346353912658638811188588066393027869412598512697291715835757986539089509786263780242292307773522886475983829130428733131196643094629428921142283191077838926745894046021453164806623536778175329294861637668029916832717154721607106761306737309911717108114618430657728005035716047324641197377239535408375135629454556442500966868194482806341742912727698556555841588999947476363476208941484967017128665021121566659870959603334383233480198963845647599566644098910481641336483136412791516298797548214258321853041387374522903545307307694081 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3c1963c736084cfcabdb1a0e725e56c79e3b8753 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'my.okhi.co' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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