psykana.com
Issued by R3
About this certificate
This digital certificate with serial number 03:de:56:07:18:a3:ee:f0:00:c3:58:7d:27:23:91:69:8e:b6 was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=psykana.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:de:56:07:18:a3:ee:f0:00:c3:58:7d:27:23:91:69:8e:b6Serial Number (int): 336993893705210559893206844708003571666614
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 7d:c9:dd:cd:94:dd:c6:da:aa:e5:7a:d7:06:d0:08:de:3c:ea:bf:92
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 91:69:eb:37:cd:a7:a0:33:d7:db:b4:58:29:03:2c:48:ff:eb:20:3b
Fingerprint (sha256): 55:3a:09:61:6c:6b:c2:38:7c:7a:1d:47:a5:28:c7:b1:35:3e:e1:e4:9c:0d:68:e4:17:28:3f:6c:ac:2c:48:38
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate psykana.com
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for psykana.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
anchoragepartybus.com
avantgardecreations.net.nanovids.net
besthealthcareplansforstartups.com
brandspokespeople.com
edited.app
icreatedailyjournal.com
psykana.com
surreybrazilianbuttlift.com
tinham.com.coastalbendnewhome.com
avantgardecreations.net.nanovids.net
besthealthcareplansforstartups.com
brandspokespeople.com
edited.app
icreatedailyjournal.com
psykana.com
surreybrazilianbuttlift.com
tinham.com.coastalbendnewhome.com
Other certificates including the domain name psykana.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for psykana.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFwzCCBKugAwIBAgISA95WBxij7vAAw1h9JyORaY62MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MjMyMTQzNThaFw0yMzEyMjIyMTQzNTdaMBYxFDASBgNVBAMT C3BzeWthbmEuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9pe s4FjqBq9nbVADv2dk9p1bsKX3eN74CbennivYMvYOMV9fDjNOuiGy/00ZIUEIpav zXEjUB/6wVhCn161ocwt2NMTuHXUHNi0XkjD46xAFK1a2kAfzKvE3sNT4CUFjAjJ RBjJXT0nPfWmZUFLtfUpxfBGKUY3vCQ1myILb3EMZn4827OPrDY40t1AvnrLU8tG 9cw9W8vodduDOPPJ437CNSuharLCgPMrohW+CRodUFo890B8B45pGyWuBCT9Pe3r UJ2AVYnFki9A624/0SRpCWc0auJRvz3mkj2kxlNEf9iUXENq9biDpkj0qHzIubE9 uA9RGWk5fPCjdmP4wwIDAQABo4IC7TCCAukwDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBR9yd3NlN3G2qrletcG0AjePOq/kjAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDm H6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5v LmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzCB 9QYDVR0RBIHtMIHqghVhbmNob3JhZ2VwYXJ0eWJ1cy5jb22CJGF2YW50Z2FyZGVj cmVhdGlvbnMubmV0Lm5hbm92aWRzLm5ldIIiYmVzdGhlYWx0aGNhcmVwbGFuc2Zv cnN0YXJ0dXBzLmNvbYIVYnJhbmRzcG9rZXNwZW9wbGUuY29tggplZGl0ZWQuYXBw ghdpY3JlYXRlZGFpbHlqb3VybmFsLmNvbYILcHN5a2FuYS5jb22CG3N1cnJleWJy YXppbGlhbmJ1dHRsaWZ0LmNvbYIhdGluaGFtLmNvbS5jb2FzdGFsYmVuZG5ld2hv bWUuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB 8gDwAHYAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGKxDbFtQAA BAMARzBFAiA4HroDkSL4klyo8d+/dwwlKMq9EO3nYZZmpwuERJZikQIhAKorYIA7 KOvFoKSvaMX+h1ILyP6sUCdq+MccoyArbK+ZAHYAtz77JN+cTbp18jnFulj0bF38 Qs96nzXEnh0JgSXttJkAAAGKxDbFxQAABAMARzBFAiBDZt2Z/50QBF3sIL47X017 vgjnVwXzQ0Su/TUpSkbXTQIhALMiF0c/3oWZLvxbTA60qiJnSvwK1hAXpJEYPcK4 Y00iMA0GCSqGSIb3DQEBCwUAA4IBAQBy7Q/A0aX9H63R+OSqEeM6Np6nri6rueny 3/M4jBCr8tJ7GiJJPpfFg90IpxajesO6X2ZfBOdL5tLR2GrWiW5Zv73kh4NpRguH yWKeTsuTkRtjIbkJ0OBpyZXiP4PEVyYhlJJdmvMAC7EZ3gtvAtMTkyLf69ryQapV Lv3i/COzarz68rlceUo+2Czz8x/kBSPo4oCDhlRj7LM+rvh56YrBZLfXQJCHFs+8 wyO6TATOAgThJ2SL8c3RbICNadzM0PiQd5V6RjJRp7GzzTS19Y/d8GzLqTCRLt0n Q74eMQaZij65ucx4qxs6dDia90nfLec1USReuRJryKcmVgrsG5rs -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9pes4FjqBq9nbVADv2d k9p1bsKX3eN74CbennivYMvYOMV9fDjNOuiGy/00ZIUEIpavzXEjUB/6wVhCn161 ocwt2NMTuHXUHNi0XkjD46xAFK1a2kAfzKvE3sNT4CUFjAjJRBjJXT0nPfWmZUFL tfUpxfBGKUY3vCQ1myILb3EMZn4827OPrDY40t1AvnrLU8tG9cw9W8vodduDOPPJ 437CNSuharLCgPMrohW+CRodUFo890B8B45pGyWuBCT9Pe3rUJ2AVYnFki9A624/ 0SRpCWc0auJRvz3mkj2kxlNEf9iUXENq9biDpkj0qHzIubE9uA9RGWk5fPCjdmP4 wwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 336993893705210559893206844708003571666614 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-23 21:43:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-22 21:43:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'psykana.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23209292032934810915526807309969920516764483671807960919733046867069194472518783299024249973786073835853713614562350808049470330262414002311166748986906769593480702798401820378824438376369871367385695969918767352992419138868743304548932578199792942709677272925990387223197644142247543072240050766907484773704983453736860579414659891848294200320485752382955163658218252953118041939024995254159437263720549122840434258935912881093511057699004807938535798925239364834888006057636831543750472219908145324765549691219481370114667066921302969339518434158025306394672925555960623523495130965477829821898539796445744110762179 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7dc9ddcd94ddc6daaae57ad706d008de3ceabf92 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (237 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'anchoragepartybus.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avantgardecreations.net.nanovids.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'besthealthcareplansforstartups.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brandspokespeople.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edited.app' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'icreatedailyjournal.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psykana.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'surreybrazilianbuttlift.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tinham.com.coastalbendnewhome.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018ac436c5b500000403004730450220381eba039122f8925ca8f1dfbf770c2528cabd10ede7619666a70b8444966291022100aa2b60803b28ebc5a0a4af68c5fe87520bc8feac50276af8c71ca3202b6caf99007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018ac436c5c5000004030047304502204366dd99ff9d10045dec20be3b5f4d7bbe08e75705f34344aefd35294a46d74d022100b32217473fde85992efc5b4c0eb4aa22674afc0ad61017a491183dc2b8634d22 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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