dkgf.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:25:70:a5:18:08:0b:eb:ff:53:c1:f4:9a:94:02:63:27:a2 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=dkgf.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:25:70:a5:18:08:0b:eb:ff:53:c1:f4:9a:94:02:63:27:a2Serial Number (int): 274077036123280377338518850869695086798754
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 87:90:66:24:57:68:cc:51:43:d1:3b:52:57:73:7c:90:d7:5b:c7:bb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 60:ae:1d:ee:0f:a0:e6:60:4d:11:9b:42:ba:ac:b1:6f:68:0b:38:9b
Fingerprint (sha256): 61:85:65:8c:76:0c:af:e1:b1:9f:ec:cc:ec:c7:01:31:55:13:28:5a:0b:1a:55:e2:59:cf:0e:3f:89:66:44:9f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate dkgf.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for dkgf.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
dkgf.org
Other certificates including the domain name dkgf.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for dkgf.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRzCCBS+gAwIBAgISAyVwpRgIC+v/U8H0mpQCYyeiMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjYxMDE4MDZaFw0x OTEwMjQxMDE4MDZaMBMxETAPBgNVBAMTCGRrZ2Yub3JnMIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEAuosqm9s4NrLNmbwg/aJWr3TOEQJXFJAbuEbenvHY pco8zYo+W8BUTt+APK6COP4qX1NbJ9Fjxi0tpxonuDXh/fzeGrrwO3S7SuBoO7VB TR6/dsD1QFX5/ZLOAgKBtqSzTIdt/4gkpKwBMjvWc1YBtZ3xqJnRxjzuVI/lOK2e QDT0BA7ppBY1axojVZKU/2EFlbhGmQanL0j89U/IjlPS3rxFWWMtMNoCQUa+9iIn pWMyPcQ8HoaUkCD02EXtBqXoxQ+IWkLBGyRudR3csDMc95SZxTb/U2cjqtZnHE1A m5YyIaVBB0mk1NboMVqW+0mXPpmYZQ1mpVzJrNM33yO4uxdKO+UxzwY26YvKZYXw 7cGEal2iTRKr6y8d+kn9Q4lcp6iQKDoSKRZqnQIK0UeRVHyF6WQHf3fh5Lkm8KA2 9yw53ovT+xdMhTkWf+wbEQiY3FGMCvRYmIcYHXTa49G68YmbDoTJX1fql8EcCyYB Z1EG86rZ1T47MvziE/4NTlasGfDUPudcGpclMB8yyoJOJJSBApW5k/VO+EbD2my7 m0qLf6utQWpthrix+U6LtsiqCvTp2CWpsbzNK1BzBwydpwMGMgluj60T9xoKs3S7 2cRH5Ss1l5T4aJ2+pqJfxhpXNhafvH47DD8Cn8G4XUmd791dWzz1AeKO1vn4iMOS zUcCAwEAAaOCAlwwggJYMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUh5BmJFdozFFD 0TtSV3N8kNdbx7swHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYI KwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0 c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0 c2VuY3J5cHQub3JnLzATBgNVHREEDDAKgghka2dmLm9yZzBMBgNVHSAERTBDMAgG BmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3Bz LmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AOJpS64m 6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d8dv+AAABbC4AmyAAAAQDAEYwRAIgejjJ lOX09iCa+hE1V4YwNFQIrp9ALEhC0Meaj6JwNysCIEUAC9A2wZXCa8StE1iJFfej 83bm3Vb6I2mGt7fyQCGzAHYAY/Lbzeg7zCzPC3KEJ1drM6SNYXePvXWmOLHHaFRL 2I0AAAFsLgCZIAAABAMARzBFAiEAontTieXLA/cXoa4CJJD9RF5d/jD0p5V1A/jd ceqF/4UCIGeQofOTTq3xx7JsfRZL6zrKnJj98EjU85lGqbbeMRrvMA0GCSqGSIb3 DQEBCwUAA4IBAQBN6M+h3K2Ag7eO1kqMCsSZrVwCEOTQKaGdRRSlhx2Qb6BZwjma XovqvAwBOYZ+0c7lsC9xFwHjkxFkCcEB5ggQ3sB3Pssu0GT8Tdw9E7hp4ZuUtQqJ Baql+XBWZhaziLAs4lg9YEjF12gvaAZ+HpK05+hc8H9BYONMvWbJh5r0z9IIYLix fjdLkvGglj8xjyvjnAu/ieGx3En3d0HDeXjcnuZhFp1NvHE/9/8X3/wLNfjNLovi CcgUdXNV8E2QKZcvyKCfG4H0MUjG9T5PnkkWyDU02mPNHimz0UNoiUG0Vk1ilPUb mLEoEf3Ol0HA56chJa+VejBdktxO1VlwriBf -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuosqm9s4NrLNmbwg/aJW r3TOEQJXFJAbuEbenvHYpco8zYo+W8BUTt+APK6COP4qX1NbJ9Fjxi0tpxonuDXh /fzeGrrwO3S7SuBoO7VBTR6/dsD1QFX5/ZLOAgKBtqSzTIdt/4gkpKwBMjvWc1YB tZ3xqJnRxjzuVI/lOK2eQDT0BA7ppBY1axojVZKU/2EFlbhGmQanL0j89U/IjlPS 3rxFWWMtMNoCQUa+9iInpWMyPcQ8HoaUkCD02EXtBqXoxQ+IWkLBGyRudR3csDMc 95SZxTb/U2cjqtZnHE1Am5YyIaVBB0mk1NboMVqW+0mXPpmYZQ1mpVzJrNM33yO4 uxdKO+UxzwY26YvKZYXw7cGEal2iTRKr6y8d+kn9Q4lcp6iQKDoSKRZqnQIK0UeR VHyF6WQHf3fh5Lkm8KA29yw53ovT+xdMhTkWf+wbEQiY3FGMCvRYmIcYHXTa49G6 8YmbDoTJX1fql8EcCyYBZ1EG86rZ1T47MvziE/4NTlasGfDUPudcGpclMB8yyoJO JJSBApW5k/VO+EbD2my7m0qLf6utQWpthrix+U6LtsiqCvTp2CWpsbzNK1BzBwyd pwMGMgluj60T9xoKs3S72cRH5Ss1l5T4aJ2+pqJfxhpXNhafvH47DD8Cn8G4XUmd 791dWzz1AeKO1vn4iMOSzUcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 274077036123280377338518850869695086798754 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-26 10:18:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-24 10:18:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'dkgf.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 761031568308707613266722271307137298027382045903846216975560592086817425202071698232694862076167442868256322003668915894755936315502882529848035182960299269963317551937255297252937222299546971082595917605028544370554932562802646398984984622938341285680197108397229893074564310932488396028181794241164416846851099596768756634368454658414065720297897885907498109746135373875551118665573517952793427882483376263962753418824954503320675405388861687720532993663377017234016644503612535666303949255791026848733670313772449111643542967262712627250723774675872684864835459170045051499316271930393227759599041863051446051936732538653742251543501450219047903954752249862103211796780016554042272874718408812062998828657558253449070333917757279019316850887317744487219740585935564286162909821424355790744079886500739598781094850854790878196788899843274349556660466512583956332684153682726864332710876384054025975265039883222807782604717319532542678863162171067213980223978249947741786097061440829567512496813774857967913868819528920167225024623585686650629931831496379389185220241820703384319824463438540609146975780197822666364181151147242584743442684749711323389386110019040397649676007707664682076703007267537188824062250313769815219081760071 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 879066245768cc5143d13b5257737c90d75bc7bb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dkgf.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c2e009b20000004030046304402207a38c994e5f4f6209afa1135578630345408ae9f402c4842d0c79a8fa270372b022045000bd036c195c26bc4ad13588915f7a3f376e6dd56fa236986b7b7f24021b300760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c2e0099200000040300473045022100a27b5389e5cb03f717a1ae022490fd445e5dfe30f4a7957503f8dd71ea85ff8502206790a1f3934eadf1c7b26c7d164beb3aca9c98fdf048d4f39946a9b6de311aef . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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