lake-titicaca.com
Issued by R3
About this certificate
This digital certificate with serial number 04:dc:71:cb:16:70:fa:89:2f:1e:87:03:b8:61:52:67:44:81 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=lake-titicaca.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:dc:71:cb:16:70:fa:89:2f:1e:87:03:b8:61:52:67:44:81Serial Number (int): 423462521704597529191826067981813542241409
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 49:86:bb:c0:75:97:fe:9e:65:06:c5:5b:4f:87:60:7f:17:f5:a3:12
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 9f:41:68:4a:39:ca:82:dc:82:c8:ab:29:3e:42:eb:97:39:ec:08:a5
Fingerprint (sha256): 73:1e:a6:45:e3:1c:b6:63:b0:30:41:9f:de:dc:5f:7e:a7:2b:a9:79:1c:51:cc:22:4f:40:99:14:73:3f:76:81
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate lake-titicaca.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lake-titicaca.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lake-titicaca.com
Other certificates including the domain name lake-titicaca.com
(limited to 100 certificates)
www.poisonivymedica.com
121.cards
www.goddessmedia.org
www.pittsburghsportsmed.com
www.bogogrille.com
www.selfsovereignty.org
unitedstatesofamericarealestate.mobi
www.symphonynovascotia.com
prodajanekretnina.com
www.lachiropractic.com
almapowell.com
www.suspension.wiki
www.coolerthanourkids.io
lake-titicaca.com
globalrelo.com
lake-titicaca.com
radhakrishnamandir.org
www.adultwares.com
www.hybridrackmountcases.com
www.hepato-gastroenterology.org
prpminnesota.com
www.rarecollectiblestamps.com
www.dermatologistintampa.com
lake-titicaca.com
www.geekyriot.com
121.cards
www.goddessmedia.org
www.pittsburghsportsmed.com
www.bogogrille.com
www.selfsovereignty.org
unitedstatesofamericarealestate.mobi
www.symphonynovascotia.com
prodajanekretnina.com
www.lachiropractic.com
almapowell.com
www.suspension.wiki
www.coolerthanourkids.io
lake-titicaca.com
globalrelo.com
lake-titicaca.com
radhakrishnamandir.org
www.adultwares.com
www.hybridrackmountcases.com
www.hepato-gastroenterology.org
prpminnesota.com
www.rarecollectiblestamps.com
www.dermatologistintampa.com
lake-titicaca.com
www.geekyriot.com
Certificate
The complete raw certificate details for lake-titicaca.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7zCCBNegAwIBAgISBNxxyxZw+okvHocDuGFSZ0SBMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjMxNTExMDZaFw0yNDAyMjExNTExMDVaMBwxGjAYBgNVBAMT EWxha2UtdGl0aWNhY2EuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKC AgEAmlAcXJVJmuwNa2NYXfYdA671T3E/dhHySPjpO0S/OF/gRJq5OEtN53duGGQK uPlpzoba8KN7L0Qf3O3wR0WFPOsZQ7t8a5RhETnY43+FmIc9uAjJEkaIFAspwAh0 ZLbzYLxbtMnW+Op0dVHAIPYrkG78o2ZujUnW5nS4Sx6QNPMNMItXO2scgJgVewsH z+PxoT6i6fBrnerAlId6Cf7JS6vx/Qw1Ioa4I/+72C7FKVUZkMZO9g1qNbeRd7tB EvBzlMr4Orb74Ds8u/BWAn11UKAisoxCeEW/23Mj0fljeut2BtyJZrjZGUu9LRtH N/OGOzW2jZVzczh0NkoWs9W0Cb6SVmuwmxCLGvH7deXp9limUZaH6JgPDEb8Ivtp Iia6HCt+yMIwQ65goS7lemlvpgHuNjhEpq2wCpmDbaDcvN2IUnAqjO47w8TlPBAY AmRcEJjVNGwGRjDSJIjxX+f03Lxnn3iYHCIjj085mY/s4BoCDE7qoOt9mEwx0QNy hXnNFGW/MGFHURjN2E2T3AtbBzbtCe8vDQ99ag67PhmBXAVfhJV04dL4uQLH7Gx5 ngPRcLIOmBBSWSRsJW57UKQbSyvRq/dinFnlNihXZoDzzzasUnxC401L0zXQWots BUq4w2zRkDj3xM3L5L7eS2IGEkFKFQd5myX5eoWltDx7p+8CAwEAAaOCAhMwggIP MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUSYa7wHWX/p5lBsVbT4dgfxf1oxIwHwYD VR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEG CCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0 dHA6Ly9yMy5pLmxlbmNyLm9yZy8wHAYDVR0RBBUwE4IRbGFrZS10aXRpY2FjYS5j b20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAA dQA7U3d1Pi25gE6LMFsG/kA7Z9hPw/THvQANLXJv4frUFwAAAYv88wbWAAAEAwBG MEQCIGtT9UKpX/Sotgw4kqDFQ99anPLx+tkk7bB5sQUdso2IAiAhSrMHKKFd/jNp TEUEYZVBpDRr3eUf+b7JWHP2ORQ0FwB3AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOze w1FIWUZxH7WbAAABi/zzBucAAAQDAEgwRgIhAP8TDWlp3sgTHFQQL0Fj8qjbBEo6 aaUYAsiW0y1SwK2IAiEAnr0QLMY/WD+mQWHBxIthQcjs3atWsH+0V0Qu3Q1JoD8w DQYJKoZIhvcNAQELBQADggEBAF9wFhSyDjPtAHRNJRf+v/xfkL1hbn9jNeZyHNei NkNz0MT02y40bp1/fWYVPAN8v+SKphxBUA/S2ybwLU0Ahs7qzh1L8iOlCbY/B5R1 UjieWgqtITlr04Tbvbze83BXJE2TagBQy/DQVNvObl0pP4oMAL5ymrTpGzALdiAR dzB0MlwKL9g/xNGhj65mM5Ji68jTTDOVBA9FJOrnorXB+3FN/5KZtBhcPIw62HBs xPD/b0qt+pQkZubB2+F2USdsModXCue1r2jSwfQtJfsoj+U+Y0j/0xugo5pwv03c ZvzNfdsdrqtNMtG9NupbS9j9W2sW3lK6cunQoupbiwGkoE0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAmlAcXJVJmuwNa2NYXfYd A671T3E/dhHySPjpO0S/OF/gRJq5OEtN53duGGQKuPlpzoba8KN7L0Qf3O3wR0WF POsZQ7t8a5RhETnY43+FmIc9uAjJEkaIFAspwAh0ZLbzYLxbtMnW+Op0dVHAIPYr kG78o2ZujUnW5nS4Sx6QNPMNMItXO2scgJgVewsHz+PxoT6i6fBrnerAlId6Cf7J S6vx/Qw1Ioa4I/+72C7FKVUZkMZO9g1qNbeRd7tBEvBzlMr4Orb74Ds8u/BWAn11 UKAisoxCeEW/23Mj0fljeut2BtyJZrjZGUu9LRtHN/OGOzW2jZVzczh0NkoWs9W0 Cb6SVmuwmxCLGvH7deXp9limUZaH6JgPDEb8IvtpIia6HCt+yMIwQ65goS7lemlv pgHuNjhEpq2wCpmDbaDcvN2IUnAqjO47w8TlPBAYAmRcEJjVNGwGRjDSJIjxX+f0 3Lxnn3iYHCIjj085mY/s4BoCDE7qoOt9mEwx0QNyhXnNFGW/MGFHURjN2E2T3Atb BzbtCe8vDQ99ag67PhmBXAVfhJV04dL4uQLH7Gx5ngPRcLIOmBBSWSRsJW57UKQb SyvRq/dinFnlNihXZoDzzzasUnxC401L0zXQWotsBUq4w2zRkDj3xM3L5L7eS2IG EkFKFQd5myX5eoWltDx7p+8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 423462521704597529191826067981813542241409 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-23 15:11:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-21 15:11:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lake-titicaca.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 629541840771398623670742839271013133990485293104767131511908971557590158997187496924667193353545873499126235837580139267884367307598228695917626927805389651387699769908247655895414801842158496094625143962567050247004341822904120625339266333220067574105069540984872600977993279601475145279543112197613948117070488471973186726816907385209672261229601668747814104884462709826427401584617342607850197377042657455990793269484370230889379807003832571668001328623779470010000485288259859412628139449241245754196613052205873632485544570319934974944284564693480939011742943193386070260024111475504081126385114216491701914139692281082574172069766460432500238081564175406240091466493992896852123108763237753555837604889324301200226672107974905196655545520488124511441504342351270914500049773908443267098126097856067627395678367018906296415305424044771690402997484905253676694828909679711953075537407874757715954705363135338384870817551097569337746483125862168413896515530404921215523104049940246382554941059217864237784832734163607090083637377196606972152814173011388723250293978021157348074819882144991138559661321044592605541166120425964056912073351155749064440402776344032799307120946576653817423708748234170476096293980247843469738959939567 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4986bbc07597fe9e6506c55b4f87607f17f5a312 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lake-titicaca.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018bfcf306d6000004030046304402206b53f542a95ff4a8b60c3892a0c543df5a9cf2f1fad924edb079b1051db28d880220214ab30728a15dfe33694c4504619541a4346bdde51ff9bec95873f639143417007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018bfcf306e70000040300483046022100ff130d6969dec8131c54102f4163f2a8db044a3a69a51802c896d32d52c0ad880221009ebd102cc63f583fa64161c1c48b6141c8ecddab56b07fb457442edd0d49a03f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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