ypp.co.za
Issued by R3
About this certificate
This digital certificate with serial number 04:99:25:c0:6f:a3:f8:a7:ad:8c:80:73:82:74:d5:1e:3f:51 was issued on by Let's Encrypt.
With 9 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ypp.co.za
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:99:25:c0:6f:a3:f8:a7:ad:8c:80:73:82:74:d5:1e:3f:51Serial Number (int): 400562526487124063558363306561590685220689
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b8:c5:bd:68:2a:2e:f4:70:3c:0d:dd:e5:a8:57:ac:89:46:62:d1:39
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 9f:46:67:52:ff:61:37:ff:7e:4f:a2:3f:4b:2f:12:b3:b6:66:61:ad
Fingerprint (sha256): 5b:11:2a:e7:33:37:02:f1:b7:80:d6:e3:bd:43:59:cb:a0:87:48:e2:8e:2b:0f:0e:1f:d0:13:91:57:03:c3:b7
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ypp.co.za
9
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ypp.co.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bequart.com
facesofafrica.org
fortworthblogger.com
malouda.com
roma4vip.com
rxsugarswealthyvanillasnax.com
secondstorystudioanddesign.com
vaporrecoveryunits.com
ypp.co.za
facesofafrica.org
fortworthblogger.com
malouda.com
roma4vip.com
rxsugarswealthyvanillasnax.com
secondstorystudioanddesign.com
vaporrecoveryunits.com
ypp.co.za
Other certificates including the domain name ypp.co.za
(limited to 100 certificates)
Certificate
The complete raw certificate details for ypp.co.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFizCCBHOgAwIBAgISBJklwG+j+KetjIBzgnTVHj9RMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMDgxNzE1MTZaFw0yNDA1MDgxNzE1MTVaMBQxEjAQBgNVBAMT CXlwcC5jby56YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKsMOOBb qVwxtxCIPeNMxodwCQJzh+DQ3UMKi1MZViUitZyPRjY1tC7jV+BxD7LJJEM9PWhR XLF/ucFO7lzQKDvTopiUzc77aJtMW1TJkMOMI4x76HIug85nMC05R9TYfJ1FTb8f 1Rv1mPBV3nd93R2nbt9TRedc6qBiJpAm0/7cR5Sgpl+1q8b6w87U/FtQ22gExNCR tdWHZQ8J7TZq7cFOvTSz6T7Ha6HElur25jaLUUnzLcvlMfeGy20Tw25OL1/m38Iq P6UPhSQQLTANa/v/7ZODyAn1gjKIdJcJmWCE2jAK+C58yyfYZme5T9Qsc8fQJh+c gGbN9CZGmuLW0IUCAwEAAaOCArcwggKzMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU uMW9aCou9HA8Dd3lqFesiUZi0TkwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wgb8G A1UdEQSBtzCBtIILYmVxdWFydC5jb22CEWZhY2Vzb2ZhZnJpY2Eub3JnghRmb3J0 d29ydGhibG9nZ2VyLmNvbYILbWFsb3VkYS5jb22CDHJvbWE0dmlwLmNvbYIecnhz dWdhcnN3ZWFsdGh5dmFuaWxsYXNuYXguY29tgh5zZWNvbmRzdG9yeXN0dWRpb2Fu ZGRlc2lnbi5jb22CFnZhcG9ycmVjb3Zlcnl1bml0cy5jb22CCXlwcC5jby56YTAT BgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB1AO7N 0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjYnuX6oAAAQDAEYwRAIg PWHDfPi59FBw1T77KUPVgi5Ew9EoxE7urcLQxDGswMICIFXo53MWKnOlVjoUdkHc k2v1J7t2jWzQfPjVKy1rsK7wAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/ qznYhHMAAAGNie5hmwAABAMASDBGAiEAvnltSyr63G8Bju3WNT/2PJIxQZA0WTcd JKaTbAk4HiYCIQDvU4fz7bivLoMMBiLMEWxxRfiwl06riO6azRilUWKv4DANBgkq hkiG9w0BAQsFAAOCAQEAULUeRPtgxDZZcYGLGVLjnk5QeymUqS7rJ1RFUSK6QnCk 942JaaBlaKXqao9c4iqlC6eJq44ZoC4d1Tt/c4wnlpi3o9mf7xxbSax3LGZknfHb EgIUlPEkEhg1Q+Ys6gL01b34M9VlcF4atd0cpNrsHrJAQB3PleVaHmJZA0SFxEqe D9ztt4lSHJzcyuhgqirJO1wSMUu5dE7qMIWd6r4m8uGqJbXjKmntKImnR7zFKYYi wiiAvd9vL5mc28z7xe34h1YCjbxWAwswEY9CBFZUGoJI4lQjVVen7bYbdDt6T1j9 yv9PMCUl97BRHq9/ZvbBFdpYVtSrCkfnPcLRgnIvIQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqww44FupXDG3EIg940zG h3AJAnOH4NDdQwqLUxlWJSK1nI9GNjW0LuNX4HEPsskkQz09aFFcsX+5wU7uXNAo O9OimJTNzvtom0xbVMmQw4wjjHvoci6DzmcwLTlH1Nh8nUVNvx/VG/WY8FXed33d Hadu31NF51zqoGImkCbT/txHlKCmX7WrxvrDztT8W1DbaATE0JG11YdlDwntNmrt wU69NLPpPsdrocSW6vbmNotRSfMty+Ux94bLbRPDbk4vX+bfwio/pQ+FJBAtMA1r +//tk4PICfWCMoh0lwmZYITaMAr4LnzLJ9hmZ7lP1Cxzx9AmH5yAZs30Jkaa4tbQ hQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 400562526487124063558363306561590685220689 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-08 17:15:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-08 17:15:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ypp.co.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21592777127544003868923208979583369143769317077857033962866859449636359592710532392406349135474096729830029513080689138558663135220231022091929585874938974982506098308362601588382548730203510651118407101199240160085798112623686209325089651644118935881639393204734788636684724555841482259763098103194658032619903957518045291197554459147553156446740429753062432788196497859923749132229976435785558223755436902173050470589089761670784611362655900170392087306484775826377650018464080379210727254433074357218496118914546029079896932800010704746868090519226636213438637550059972430201611288936588148321652091120103978356869 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b8c5bd682a2ef4703c0ddde5a857ac894662d139 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (183 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bequart.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'facesofafrica.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fortworthblogger.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'malouda.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roma4vip.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rxsugarswealthyvanillasnax.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secondstorystudioanddesign.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vaporrecoveryunits.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ypp.co.za' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018d89ee5faa000004030046304402203d61c37cf8b9f45070d53efb2943d5822e44c3d128c44eeeadc2d0c431acc0c2022055e8e773162a73a5563a147641dc936bf527bb768d6cd07cf8d52b2d6bb0aef000770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d89ee619b0000040300483046022100be796d4b2afadc6f018eedd6353ff63c923141903459371d24a6936c09381e26022100ef5387f3edb8af2e830c0622cc116c7145f8b0974eab88ee9acd18a55162afe0 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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