olzai.com
Issued by R3
About this certificate
This digital certificate with serial number 04:ea:dd:1b:74:fb:65:f8:f0:e9:99:e6:e5:c3:13:3c:87:c6 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=olzai.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:ea:dd:1b:74:fb:65:f8:f0:e9:99:e6:e5:c3:13:3c:87:c6Serial Number (int): 428369119538301575637129443088372093192134
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 57:c3:71:30:e2:c0:86:2c:1b:ce:de:6a:af:49:9e:83:6a:fc:4f:1f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 5d:1a:a1:ac:55:b2:5b:4b:32:a4:bf:fc:2c:c5:59:16:38:e7:af:e9
Fingerprint (sha256): 61:b0:41:c3:f2:0c:a8:a4:2e:16:1e:72:b9:2c:ef:9f:94:72:43:65:96:86:db:a5:22:ec:12:c8:6f:66:2d:c5
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate olzai.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for olzai.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
olzai.com
Other certificates including the domain name olzai.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for olzai.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3jCCBMagAwIBAgISBOrdG3T7Zfjw6Znm5cMTPIfGMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MDkwODE1MzJaFw0yMzEyMDgwODE1MzFaMBQxEjAQBgNVBAMT CW9semFpLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBALhvzkwI eqMfObuwN6FVPIfEYZcV/Jx4o6AGlubTENZAMV5avOfC1ZoEP2sKL+F4sAM/t2X8 zxhAFuLIuepEKqP/qqBOQKqKckyPKYRRcPjSKoQkpM5dWPxKQPe8WRrAt88xWe3l VOCFD8mT9KqZX3sZQhmke4lSPfasZjAc4Tbr1LKfhJ60NK/LIpwnQeWNWbflHceZ p5izvikitdSY3WSBDgAjqAyhryRosQzbQDsJuV+WxGHIsQsgc3SwKkq9dsOI6o5d 0B19CE4//o1Sy+bSC+np4XveBN2PUZX/ARXQfOMjOKGGaE0V4w7DM8mcOOfo38y2 lLLFhC/+/T+xbySWvTb2o4B81en02M8ftZvBqVKKIAksq0WIWAZPFxI71Xlnk4Lb cH0djMKqzE3j+p+yNovDpVyvYX1yzD2ziheOOwLn7iqGGDOe6jCRSTKlkrlOxM+T Wu8wQybKSEImbi/G48utN10oWlz4gysFaRtX37l4uoSVjfEpugDGgvh3TArGaRrx 3UZwob0yA/ewXlbSQvDSDTANGVVoFIjrs2hgNtE2I4D1dcXDEqiqYUhZYb3bWFIj 0926Cao3sxp87yeK5okUTOjQ0bUAj7QcUE2XrdkliZXwv2BaGrgN+0P6kKHwTUEh NwYjTR+L1JsrUSPa70mNWitA9spUIoMli4C1AgMBAAGjggIKMIICBjAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFFfDcTDiwIYsG87eaq9JnoNq/E8fMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMBQGA1UdEQQNMAuCCW9semFpLmNvbTATBgNVHSAEDDAKMAgG BmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1ALc++yTfnE26dfI5xbpY 9Gxd/ELPep81xJ4dCYEl7bSZAAABink5mZEAAAQDAEYwRAIgWtYCpP7rP30JqIEG DnpUNjF0rPQMNZL+wwGPvTn1k7QCIHtmrBDsU739fiyZO7pdFsu3tP7mHmjYJd4g YmVnrQcSAHYAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGKeTmZ owAABAMARzBFAiEA0p34ruXypGTgMQZxJCx208ezWcl0Hhh5AkwV6/IwyTACIEey 1pC1ZO7ZUwhfpbm63ZgaAAvVOMZ6DS7FPFQES7dgMA0GCSqGSIb3DQEBCwUAA4IB AQB5ke1ueqii6Q51zQXfA+9PF+RsZL1EUYLmq/j64Dxvxg9k57euwZoFmCiWSZEp 6MdLmbkQFmqPyj1Yj8HwZZ4MrGaKzxgJvlNwHz1n5NWtDf4D8feufy03M8FAb3Nw 5KSEboE85VM5npeCSTFQEKjCX4trQxlr8xTGds+vZo2ama4cnbcvRi/NnPzbWPcd ZKWXc2w1s0Y+yw0i2DB4QoqAeopPKdWvsbEJLjz2K6xmj7GhEJSQIBCv0hf8HYvh C8TvunGXmEC3TNL+jojvzzSjz+iqLMpAJRVyk5FwD6mI1xN+AhkfeIGGPYpkrv36 SyU8GJulYArLPBXQwuwcGsSu -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuG/OTAh6ox85u7A3oVU8 h8RhlxX8nHijoAaW5tMQ1kAxXlq858LVmgQ/awov4XiwAz+3ZfzPGEAW4si56kQq o/+qoE5AqopyTI8phFFw+NIqhCSkzl1Y/EpA97xZGsC3zzFZ7eVU4IUPyZP0qplf exlCGaR7iVI99qxmMBzhNuvUsp+EnrQ0r8sinCdB5Y1Zt+Udx5mnmLO+KSK11Jjd ZIEOACOoDKGvJGixDNtAOwm5X5bEYcixCyBzdLAqSr12w4jqjl3QHX0ITj/+jVLL 5tIL6enhe94E3Y9Rlf8BFdB84yM4oYZoTRXjDsMzyZw45+jfzLaUssWEL/79P7Fv JJa9NvajgHzV6fTYzx+1m8GpUoogCSyrRYhYBk8XEjvVeWeTgttwfR2MwqrMTeP6 n7I2i8OlXK9hfXLMPbOKF447AufuKoYYM57qMJFJMqWSuU7Ez5Na7zBDJspIQiZu L8bjy603XShaXPiDKwVpG1ffuXi6hJWN8Sm6AMaC+HdMCsZpGvHdRnChvTID97Be VtJC8NINMA0ZVWgUiOuzaGA20TYjgPV1xcMSqKphSFlhvdtYUiPT3boJqjezGnzv J4rmiRRM6NDRtQCPtBxQTZet2SWJlfC/YFoauA37Q/qQofBNQSE3BiNNH4vUmytR I9rvSY1aK0D2ylQigyWLgLUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 428369119538301575637129443088372093192134 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-09 08:15:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-08 08:15:31 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'olzai.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 752436258762697830705686633906265971029040263977620019283586613881160662025510002256803768189526602895166191740930727904876352138877753817172308658535371998134406047570231720802720382064772863744331890984972035240625131988942245688593149805611361129363424137387675203833239057507694152143666380838263075788019973267426284361379665749086340361890989041206977779477911473096591123862371194250554145416566895082258368656999308976122250295388030527141524241229080949623619487470560448678067658459666305911434889572105734560932445021077008905669718068897072258076711980778918169079343323364209436294651173295351663156991207277775420950879802250243964272443488728359787087690835074331812694858546081540748222577497581275896676111443560784156547550779647209008565974771424040918671599827697262441909924878514242053088720845345757757912375184433818432464494130057852270846371549256875226694355327280147806942274708390100654706483227012223608929407167181012682950597779028691199562098011579976721645306734788765621121984341058852268047161993098924717219423090322692453187982951504827258808416192714457947219648787438818386966264963000689861802438131201308421053463203543174439730833390882057205196982230509359022754782621633109202466614509749 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 57c37130e2c0862c1bcede6aaf499e836afc4f1f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'olzai.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a79399991000004030046304402205ad602a4feeb3f7d09a881060e7a54363174acf40c3592fec3018fbd39f593b402207b66ac10ec53bdfd7e2c993bba5d16cbb7b4fee61e68d825de20626567ad07120076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a793999a30000040300473045022100d29df8aee5f2a464e0310671242c76d3c7b359c9741e1879024c15ebf230c930022047b2d690b564eed953085fa5b9badd981a000bd538c67a0d2ec53c54044bb760 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 007991ed6e7aa8a2e90e75cd05df03ef4f17e46c64bd445182e6abf8fae03c6fc60f64e7b7aec19a05982896499129e8c74b99b910166a8fca3d588fc1f0659e0cac668acf1809be53701f3d67e4d5ad0dfe03f1f7ae7f2d3733c1406f7370e4a4846e813ce553399e978249315010a8c25f8b6b43196bf314c676cfaf668d9a99ae1c9db72f462fcd9cfcdb58f71d64a597736c35b3463ecb0d22d83078428a807a8a4f29d5afb1b1092e3cf62bac668fb1a11094902010afd217fc1d8be10bc4efba71979840b74cd2fe8e88efcf34a3cfe8aa2cca402515729391700fa988d7137e02191f7881863d8a64aefdfa4b253c189ba5600acb3c15d0c2ec1c1ac4ae