api-local.pikkop.com
Issued by R3
About this certificate
This digital certificate with serial number 03:2a:ac:b1:da:67:ad:b3:90:b2:bd:d2:e1:88:49:ae:76:b5 was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=api-local.pikkop.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:2a:ac:b1:da:67:ad:b3:90:b2:bd:d2:e1:88:49:ae:76:b5Serial Number (int): 275858267887558673922735291861441165817525
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 04:94:71:8d:a1:34:1e:dc:5d:b4:3d:27:fc:13:c8:76:69:db:a6:af
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 14:4b:34:31:9d:a5:d6:c8:9e:9e:eb:83:d7:c2:78:22:4a:92:8b:90
Fingerprint (sha256): 66:32:50:6c:79:11:aa:8a:0c:c2:cb:1d:5a:77:b0:96:ae:56:9c:c4:ab:50:e7:6c:1c:46:ce:44:33:d3:72:12
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate api-local.pikkop.com
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api-local.pikkop.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api-local.pikkop.com
blog.pikkop.mx
local.pikkop.com
local.pikkop.mx
pikkop.com
pikkop.mx
shopify.pikkop.com
shopify.pikkop.mx
blog.pikkop.mx
local.pikkop.com
local.pikkop.mx
pikkop.com
pikkop.mx
shopify.pikkop.com
shopify.pikkop.mx
Other certificates including the domain name pikkop.com
(limited to 100 certificates)
www.digitall.me
www.russellbenton.co.uk
app.pikkop.com
www.pikkop.com
pikkop.com
thasaltydawg.com
www.pikkop.com
www.car-evolution.de
pikkop.com
www.pikkop.com
pikkop.com
www.pikkop.com
pikkop.com
api-local.pikkop.com
api-local.pikkop.com
www.pikkop.com
pikkop.com
www.pikkop.com
api-local.pikkop.com
api-local.pikkop.com
api-local.pikkop.com
pikkop.com
api-local.pikkop.com
pikkop.com
www.pikkop.com
www.pikkop.com
cory.benbraham.com
www.pikkop.com
app.pikkop.com
www.pikkop.com
www.frontendshere.com
pikkop.com
pikkop.com
www.pikkop.com
www.pikkop.com
www.pikkop.com
pikkop.com
www.russellbenton.co.uk
app.pikkop.com
www.pikkop.com
pikkop.com
thasaltydawg.com
www.pikkop.com
www.car-evolution.de
pikkop.com
www.pikkop.com
pikkop.com
www.pikkop.com
pikkop.com
api-local.pikkop.com
api-local.pikkop.com
www.pikkop.com
pikkop.com
www.pikkop.com
api-local.pikkop.com
api-local.pikkop.com
api-local.pikkop.com
pikkop.com
api-local.pikkop.com
pikkop.com
www.pikkop.com
www.pikkop.com
cory.benbraham.com
www.pikkop.com
app.pikkop.com
www.pikkop.com
www.frontendshere.com
pikkop.com
pikkop.com
www.pikkop.com
www.pikkop.com
www.pikkop.com
pikkop.com
Certificate
The complete raw certificate details for api-local.pikkop.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFaTCCBFGgAwIBAgISAyqssdpnrbOQsr3S4YhJrna1MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MjYxNjA3MDlaFw0yNDA4MjQxNjA3MDhaMB8xHTAbBgNVBAMT FGFwaS1sb2NhbC5waWtrb3AuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAsydyzgSPhjfziBJ7GPgyTpV2Koz7Xt2RKG8U4htHSjT2psKLs7oRPeo4 WTbADvep1mr73KsKBG9Ia5WHvcD4rbpTssOZUXgBj+T93zhnlPSgvhIwIEC7rub9 TVSK+I+P5o9XX6T5MzhUYMUn8FibmUinLDK40Bgs1Gs45Y4QOhJqxod4QbFHoNcX NvryfqgUQLSYEue/prJMZQnrMn11wMtooZ44CyTETzux7pZ8Rt2x2WlvhyqPOSYh NsuaH4ArD4UHK0u3yh66fP+4PbQxrIzBeK8u5XSWazYVa8JBdC+JErzATgIa8l36 1sP9DpYKA+FX9PtHdT0DfLFU/pjoeQIDAQABo4ICijCCAoYwDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBQElHGNoTQe3F20PSf8E8h2adumrzAfBgNVHSMEGDAWgBQULrMX t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0 dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu Y3Iub3JnLzCBkgYDVR0RBIGKMIGHghRhcGktbG9jYWwucGlra29wLmNvbYIOYmxv Zy5waWtrb3AubXiCEGxvY2FsLnBpa2tvcC5jb22CD2xvY2FsLnBpa2tvcC5teIIK cGlra29wLmNvbYIJcGlra29wLm14ghJzaG9waWZ5LnBpa2tvcC5jb22CEXNob3Bp ZnkucGlra29wLm14MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIE AgSB9QSB8gDwAHUAGZgQcQnw1lIuMIDSnj9ku4NuKMz5D1KO7t/OSj8WtMoAAAGP td7SiwAABAMARjBEAiBHpSZzbaj2fo2jpOM3ek/JjFqV7on/6R1LxcaoJYqqJwIg Rb29aLg31+C+uPHD8YZvDL/P95kzqWqITYLkfuKDQjMAdwB2/4g/Crb7lVHCYcz1 h7o0tKTNuyncaEIKn+ZnTFo6dAAAAY+13tLQAAAEAwBIMEYCIQC0M9Di9CV2bnQp mj63MbC5DYNCoBSgIGQi1naNZaXjdQIhAPVExDIwDeG2M7g9quECc0Pt4Blkl1/t c/PZWZfR9DqjMA0GCSqGSIb3DQEBCwUAA4IBAQAFZNDD44WK9SfeVGZEyVKaKYbX C6yMQVZeIv/FtUPVdhtN2XrTV6b3v5z8HDovo5jNYzGI3JHHWC7XH7jrWq6/gH8K 7X91sfyvHcrHbBkLkpkldwfVey2u9VN0l8O3CzqIT3ul0evWzj+50fsrM5LfP0hV tDxT4K3DOJx/ro2hwauSBKcqvPbd/ko59KP36I7Tou+TQ8MeZnq9Dfe7hWV0DZlZ Q5UY5+tRC5DPF0Cd8eNg1H9YuaIRbayHADM1BLy3KEJ7Oz2FRkPZRrkE3XGJB4qb SR4xEgjCE70KEUJ9vE7e1PDQHnMWL+9yTBmIRxu2dhaiuLxZ1A0y43ax/K/J -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsydyzgSPhjfziBJ7GPgy TpV2Koz7Xt2RKG8U4htHSjT2psKLs7oRPeo4WTbADvep1mr73KsKBG9Ia5WHvcD4 rbpTssOZUXgBj+T93zhnlPSgvhIwIEC7rub9TVSK+I+P5o9XX6T5MzhUYMUn8Fib mUinLDK40Bgs1Gs45Y4QOhJqxod4QbFHoNcXNvryfqgUQLSYEue/prJMZQnrMn11 wMtooZ44CyTETzux7pZ8Rt2x2WlvhyqPOSYhNsuaH4ArD4UHK0u3yh66fP+4PbQx rIzBeK8u5XSWazYVa8JBdC+JErzATgIa8l361sP9DpYKA+FX9PtHdT0DfLFU/pjo eQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 275858267887558673922735291861441165817525 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-26 16:07:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-24 16:07:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api-local.pikkop.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22616109347632961932436350854390909721430293566088274824300433261481609182107554007631484540268918557638505971732180125877574603063107119605450903905823089112012658784560413870923497053940079738776894063774885648067680559271303845000395590140416932129663915769756242541722339055895608188996342792547685416740828588575166144851719688835006749943435870233341572639771025038342055638763301956202113188604689541511828822700661526836399078724722205438598015027173892823621216273129272954515766723685132289138185387693599698493763899206905340054795870605258896426425877357551845822816561181521046699489577621300811826522233 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0494718da1341edc5db43d27fc13c87669dba6af . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (138 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-local.pikkop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.pikkop.mx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'local.pikkop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'local.pikkop.mx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pikkop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pikkop.mx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shopify.pikkop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shopify.pikkop.mx' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00075001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018fb5ded28b0000040300463044022047a526736da8f67e8da3a4e3377a4fc98c5a95ee89ffe91d4bc5c6a8258aaa27022045bdbd68b837d7e0beb8f1c3f1866f0cbfcff79933a96a884d82e47ee283423300770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018fb5ded2d00000040300483046022100b433d0e2f425766e74299a3eb731b0b90d8342a014a0206422d6768d65a5e375022100f544c432300de1b633b83daae1027343ede01964975fed73f3d95997d1f43aa3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 000564d0c3e3858af527de546644c9529a2986d70bac8c41565e22ffc5b543d5761b4dd97ad357a6f7bf9cfc1c3a2fa398cd633188dc91c7582ed71fb8eb5aaebf807f0aed7f75b1fcaf1dcac76c190b9299257707d57b2daef5537497c3b70b3a884f7ba5d1ebd6ce3fb9d1fb2b3392df3f4855b43c53e0adc3389c7fae8da1c1ab9204a72abcf6ddfe4a39f4a3f7e88ed3a2ef9343c31e667abd0df7bb8565740d9959439518e7eb510b90cf17409df1e360d47f58b9a2116dac8700333504bcb728427b3b3d854643d946b904dd7189078a9b491e311208c213bd0a11427dbc4eded4f0d01e73162fef724c1988471bb67616a2b8bc59d40d32e376b1fcafc9