kirisame.net

Issued by Let's Encrypt Authority X1

About this certificate

This digital certificate with serial number 01:ea:2a:96:b9:59:56:c5:e7:4a:c2:e8:47:a2:f8:e1:24:9f was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=kirisame.net

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 01:ea:2a:96:b9:59:56:c5:e7:4a:c2:e8:47:a2:f8:e1:24:9f
Serial Number (int): 166794969970935531888665212505018020734111
Serial Number lenght: 137 bits, 18 octets

SubjectKeyId: 90:8e:8b:bd:f6:8b:b5:33:17:be:1f:cd:dd:65:49:f2:19:f7:87:b0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): a4:9f:b7:bb:ab:da:4a:c9:d2:68:97:7d:9e:62:b9:db:58:2a:8f:67
Fingerprint (sha256): 6f:6f:cd:de:b7:2d:34:94:93:89:1b:48:b3:b3:c5:50:08:17:15:47:e9:ff:b2:ae:f6:13:e9:67:97:46:6c:58

Issuing Certificate URL: http://cert.int-x1.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x1.letsencrypt.org/

Check the revocation status for certificate kirisame.net

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for kirisame.net

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

kirisame.net
www.kirisame.net

Other certificates including the domain name kirisame.net

(limited to 100 certificates)
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
staging.kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
3939.kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net
kirisame.net

Certificate

The complete raw certificate details for kirisame.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 166794969970935531888665212505018020734111
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-11-20 05:48:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-02-18 05:48:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kirisame.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 778603356542092447294894891545732665229257641782512777060828175550395659357475965863013014691496267932544340701776603419268359616334040103045242034379258487549350017763988915315209040213586186693491178021064694629819223005819783042779581009909987716306593871028936882919705911355547989391952595738428186241550900699585871238477953085168304922204531761537517421172680964698119062691779886877844879994857679224413352977731647440082439771656565786223076077574764240868166518028317861783918193542291811555622728733386161732603188465807808806809434395553916193197743251155859336737927611450118268810306867084628577741925069342581820855517629211576395812462430105039496655894297822446313287882807880255803630548586364816222943022938390233489292011721412024761884825320212203557534409980803866482255621690058814851323333071880560176074455726379112346543971050049733064516053197873909237384524120124342038371636248281563999605068992729006614994155059876651271520733495594209029812708572692020186853444823871014119076062931408761162041080246990663297028684902243775200924644916823464414898502616923366377870478517618832845272647978019401048694763146118825997698136225030935137676669708346234277222537320176534273158980710574636403227652106551
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							908e8bbdf68bb53317be1fcddd6549f219f787b0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x1.letsencrypt.org/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x1.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kirisame.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kirisame.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (248 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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