ybp.co.za
Issued by R3
About this certificate
This digital certificate with serial number 03:a1:e5:ef:6b:5d:07:56:9f:4a:dc:66:fc:24:44:1a:eb:94 was issued on by Let's Encrypt.
With 11 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ybp.co.za
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a1:e5:ef:6b:5d:07:56:9f:4a:dc:66:fc:24:44:1a:eb:94Serial Number (int): 316427955217124085935654967437781880204180
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: cf:8d:e6:45:1c:d6:97:39:31:b1:9a:d8:4d:54:59:05:f4:82:6a:8d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d2:2a:2a:39:30:22:22:a5:80:ac:b3:24:a3:40:59:2c:50:05:08:f7
Fingerprint (sha256): 5c:d1:85:65:ab:bf:62:da:e5:6e:99:49:8e:13:da:27:cb:6c:db:b1:2c:b7:57:97:72:d6:85:38:a6:e6:62:f6
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ybp.co.za
11
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ybp.co.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
atlantaforvip.com
cbbt.bible.the50statesclub.com.adftruthandtriumph.com
fromrivertotheseapalestinewillbefree.com
horseshoers.com.allsidegigs.com
planetracing.com
sacondodirectory.com
sourmoon.com
survivaldownrange.com
wharf.website
www.wellthadvisor.co.riberries.com
ybp.co.za
cbbt.bible.the50statesclub.com.adftruthandtriumph.com
fromrivertotheseapalestinewillbefree.com
horseshoers.com.allsidegigs.com
planetracing.com
sacondodirectory.com
sourmoon.com
survivaldownrange.com
wharf.website
www.wellthadvisor.co.riberries.com
ybp.co.za
Other certificates including the domain name ybp.co.za
(limited to 100 certificates)
Certificate
The complete raw certificate details for ybp.co.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+jCCBOKgAwIBAgISA6Hl72tdB1afStxm/CREGuuUMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMzAxMDEyNDlaFw0yNDAzMjkxMDEyNDhaMBQxEjAQBgNVBAMT CXlicC5jby56YTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALuRtLTH F5rxxDeVRaouRb3IHVZ4dE2tYcz0VFFJjWcHo5V8zxBAm8VzLlRjevKIIbltSWnu WBdjx1M3fSGZvJVv80HjBr/CcZHU4g857DlCy+hdnXe0yHjCeZpTQCH2qvpfYkGK APPJXQLyl9THp13Thb9Jr7jb0acfzJkfMc9PQUfg7+pMlmTWBCw6/WLXegg7z0+h 5A7LNZbbj1ri16wYSssLSnI5G7YrVpjYqdDwfd0R4TeJeVCG65MZj8nDA8tt3oOg ntRhSeg7VKUH47zTu5xa0sjFU4VenVeXwuTqeZU3UWgm1MUbAT1woDKW4P52YkBq EnXoVrhB29PWHZsCAwEAAaOCAyYwggMiMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU z43mRRzWlzkxsZrYTVRZBfSCao0wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+v nYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5s ZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wggEt BgNVHREEggEkMIIBIIIRYXRsYW50YWZvcnZpcC5jb22CNWNiYnQuYmlibGUudGhl NTBzdGF0ZXNjbHViLmNvbS5hZGZ0cnV0aGFuZHRyaXVtcGguY29tgihmcm9tcml2 ZXJ0b3RoZXNlYXBhbGVzdGluZXdpbGxiZWZyZWUuY29tgh9ob3JzZXNob2Vycy5j b20uYWxsc2lkZWdpZ3MuY29tghBwbGFuZXRyYWNpbmcuY29tghRzYWNvbmRvZGly ZWN0b3J5LmNvbYIMc291cm1vb24uY29tghVzdXJ2aXZhbGRvd25yYW5nZS5jb22C DXdoYXJmLndlYnNpdGWCInd3dy53ZWxsdGhhZHZpc29yLmNvLnJpYmVycmllcy5j b22CCXlicC5jby56YTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkC BAIEgfUEgfIA8AB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAAB jLptO0gAAAQDAEgwRgIhAJ6vInf4nVIQA0rkYtzZ5zxJStPV6lkoGp6noNO1T6vn AiEAzC8MTLn3zDuPRq/qhYx0sfp8UnbJuXFMXOMx4jU5jekAdQBIsONr2qZHNA/l agL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAYy6bTzKAAAEAwBGMEQCIFZczzg5PUeK k2jgQll8tGOcVpwjJ8u2obWNcKLFdXjJAiB6RqzyAUspGWyjq9/vmLJbgMfvNyyB efk7xp+Gcq5l6TANBgkqhkiG9w0BAQsFAAOCAQEAuj9LsqbouYzcKQNCIqpBT4qZ XrZ6NtFmGhxbglKTOtDTvNlNQFMJJnCKF38KqgGzlSalMMGoc1m8luDL1Y0WeyAQ e3cD9PA4FZbzdVa5LS6f/0PlCaJA+F+KQfDYUvyW5O9crJOjgjvRLSNSZOcvuq/C KBpocu4T6rNeLZbzpXKKKeReXa2EVHPSDMNrKelmITvPRJv2/Yp1CMb2eGhnocSY N1OQV8Gp69dcn9FiMWkPoIGfYvk0oXn84LYTGuR4Q4IjaLZ/WzDhG719bBrNqlEJ fRe+bDGM2xwtCKyuU/vir60A3zgEmPHkUYCMQ0h5trYgW4yDpNW42iGX5vySCg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAu5G0tMcXmvHEN5VFqi5F vcgdVnh0Ta1hzPRUUUmNZwejlXzPEECbxXMuVGN68oghuW1Jae5YF2PHUzd9IZm8 lW/zQeMGv8JxkdTiDznsOULL6F2dd7TIeMJ5mlNAIfaq+l9iQYoA88ldAvKX1Men XdOFv0mvuNvRpx/MmR8xz09BR+Dv6kyWZNYELDr9Ytd6CDvPT6HkDss1ltuPWuLX rBhKywtKcjkbtitWmNip0PB93RHhN4l5UIbrkxmPycMDy23eg6Ce1GFJ6DtUpQfj vNO7nFrSyMVThV6dV5fC5Op5lTdRaCbUxRsBPXCgMpbg/nZiQGoSdehWuEHb09Yd mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 316427955217124085935654967437781880204180 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-30 10:12:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-29 10:12:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ybp.co.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23678413277677044864244296539613483227612630906945419165671321025356008801448883201468078786331717207711369098901447728721982521013554582341669918423056245859927751230052341679684017487339965302183638011963261049178605236881579839579073510643072801024260521314879793095411381843721447761592616933105241753777366536689570042091194609888145939335495383028618724382281173202275441323115790312261517367598992295233450549842992277182070831261226172929148301627247785453324859089277850332687686880773006210282348126195400323502166613499525658459396827618987129555363200960278551829821251074221313379097261103636833077960091 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cf8de6451cd6973931b19ad84d545905f4826a8d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (292 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'atlantaforvip.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cbbt.bible.the50statesclub.com.adftruthandtriumph.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fromrivertotheseapalestinewillbefree.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'horseshoers.com.allsidegigs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'planetracing.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sacondodirectory.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sourmoon.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'survivaldownrange.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wharf.website' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wellthadvisor.co.riberries.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ybp.co.za' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018cba6d3b4800000403004830460221009eaf2277f89d5210034ae462dcd9e73c494ad3d5ea59281a9ea7a0d3b54fabe7022100cc2f0c4cb9f7cc3b8f46afea858c74b1fa7c5276c9b9714c5ce331e235398de900750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018cba6d3cca00000403004630440220565ccf38393d478a9368e042597cb4639c569c2327cbb6a1b58d70a2c57578c902207a46acf2014b29196ca3abdfef98b25b80c7ef372c8179f93bc69f8672ae65e9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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