psykana.com

Issued by R3

About this certificate

This digital certificate with serial number 03:de:56:07:18:a3:ee:f0:00:c3:58:7d:27:23:91:69:8e:b6 was issued on by Let's Encrypt.

With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=psykana.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:de:56:07:18:a3:ee:f0:00:c3:58:7d:27:23:91:69:8e:b6
Serial Number (int): 336993893705210559893206844708003571666614
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 7d:c9:dd:cd:94:dd:c6:da:aa:e5:7a:d7:06:d0:08:de:3c:ea:bf:92
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 91:69:eb:37:cd:a7:a0:33:d7:db:b4:58:29:03:2c:48:ff:eb:20:3b
Fingerprint (sha256): 55:3a:09:61:6c:6b:c2:38:7c:7a:1d:47:a5:28:c7:b1:35:3e:e1:e4:9c:0d:68:e4:17:28:3f:6c:ac:2c:48:38

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate psykana.com

9

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for psykana.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

anchoragepartybus.com
avantgardecreations.net.nanovids.net
besthealthcareplansforstartups.com
brandspokespeople.com
edited.app
icreatedailyjournal.com
psykana.com
surreybrazilianbuttlift.com
tinham.com.coastalbendnewhome.com

Other certificates including the domain name psykana.com

(limited to 100 certificates)
pay2.org
arbitragers.ca
arbitrager.ca
psykana.com
info.nangyeuthuong.org
enerpactoolsgroup.asia
www.yeshuaismessiah.org
glimpsevr.com.reclaimcampus.org
athensforvip.com.psykana.com
psykana.com
cannabiscollective.org.psykana.com
macwise.biz.psykana.com

Certificate

The complete raw certificate details for psykana.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt9pes4FjqBq9nbVADv2d
k9p1bsKX3eN74CbennivYMvYOMV9fDjNOuiGy/00ZIUEIpavzXEjUB/6wVhCn161
ocwt2NMTuHXUHNi0XkjD46xAFK1a2kAfzKvE3sNT4CUFjAjJRBjJXT0nPfWmZUFL
tfUpxfBGKUY3vCQ1myILb3EMZn4827OPrDY40t1AvnrLU8tG9cw9W8vodduDOPPJ
437CNSuharLCgPMrohW+CRodUFo890B8B45pGyWuBCT9Pe3rUJ2AVYnFki9A624/
0SRpCWc0auJRvz3mkj2kxlNEf9iUXENq9biDpkj0qHzIubE9uA9RGWk5fPCjdmP4
wwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 336993893705210559893206844708003571666614
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-23 21:43:58 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-22 21:43:57 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'psykana.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23209292032934810915526807309969920516764483671807960919733046867069194472518783299024249973786073835853713614562350808049470330262414002311166748986906769593480702798401820378824438376369871367385695969918767352992419138868743304548932578199792942709677272925990387223197644142247543072240050766907484773704983453736860579414659891848294200320485752382955163658218252953118041939024995254159437263720549122840434258935912881093511057699004807938535798925239364834888006057636831543750472219908145324765549691219481370114667066921302969339518434158025306394672925555960623523495130965477829821898539796445744110762179
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							7dc9ddcd94ddc6daaae57ad706d008de3ceabf92
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (237 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'anchoragepartybus.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'avantgardecreations.net.nanovids.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'besthealthcareplansforstartups.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brandspokespeople.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edited.app'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'icreatedailyjournal.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psykana.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'surreybrazilianbuttlift.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tinham.com.coastalbendnewhome.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018ac436c5b500000403004730450220381eba039122f8925ca8f1dfbf770c2528cabd10ede7619666a70b8444966291022100aa2b60803b28ebc5a0a4af68c5fe87520bc8feac50276af8c71ca3202b6caf99007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018ac436c5c5000004030047304502204366dd99ff9d10045dec20be3b5f4d7bbe08e75705f34344aefd35294a46d74d022100b32217473fde85992efc5b4c0eb4aa22674afc0ad61017a491183dc2b8634d22
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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