mikisgym.com
Issued by R3
About this certificate
This digital certificate with serial number 03:fe:40:72:7e:bb:33:8a:43:e2:9d:a0:d5:82:b4:78:13:bd was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=mikisgym.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:fe:40:72:7e:bb:33:8a:43:e2:9d:a0:d5:82:b4:78:13:bdSerial Number (int): 347854244077186444583905121714326205895613
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 6c:28:cc:d0:78:ab:4a:7c:c3:8b:6b:db:14:93:6b:29:7a:c7:3c:57
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 89:32:cc:c0:88:1a:e2:d3:86:0a:2f:0d:c3:65:0a:04:59:6f:fc:88
Fingerprint (sha256): 73:48:82:25:26:63:43:99:54:2f:c2:7e:db:0f:ed:f5:37:7b:44:da:89:65:e4:4e:3d:c9:ad:84:b6:70:91:55
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate mikisgym.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mikisgym.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mikisgym.com
www.mikisgym.com
www.mikisgym.com
Other certificates including the domain name mikisgym.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for mikisgym.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgISA/5Acn67M4pD4p2g1YK0eBO9MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMzAwNjMzNTJaFw0yNDA0MjkwNjMzNTFaMBcxFTATBgNVBAMT DG1pa2lzZ3ltLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAM9F 5b45F/rdTPEI7Xt1u3AAw/AtcJ9/g/+rK1rOY0dhORDTmjs1Wxv1tWDbHVX3yH0X A9v69Lx8ZlRfuqcnCc1QPAWlnUTzK/tCgwr6H9bZLQkcTJKZAAmIO5jvM5RA42M7 5V2XaJvy2XN7T1H5X+61Av0lHYcHbTb3xz8o++7ElVZcm0cRj6cP4Sx4k2F0JFtt e3CWz3mnpypWFcI4U+tbz3O0iaUojnxvZN/cq4QLDr7O+Nhvz/daY5lbUGNt5XUr nAaQrQyGZe5mMfn9rrnVUhQPDwTNgoTsmnen+ytjeEcD+Ma73QH+m7JakDKCAIkN J8oWbiXj/iqWuAqizWsCAwEAAaOCAh8wggIbMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUbCjM0HirSnzDi2vbFJNrKXrHPFcwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w KQYDVR0RBCIwIIIMbWlraXNneW0uY29tghB3d3cubWlraXNneW0uY29tMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYASLDja9qm RzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGNWUnpCgAABAMARzBFAiEA31rU 14wo4bQbqo+iA4nhSYiMgdXXZIa450O2AShlbkkCIAGvgLGdS9/gXRzgnq736Nq2 P4slV6dhqQ/5P/xkrBlRAHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xa OnQAAAGNWUnpUgAABAMARjBEAiBx0NgODSVVoEB5DYePnGNWQtMtmKHJ8r/wg/gm 3CL4agIgQrvcmcdmqPKGT9bJDsqFJYRy0Rj2vWpkjNuIzFH8gFUwDQYJKoZIhvcN AQELBQADggEBAC1k3vT1WfjA1O7kdbQxSm4BzSFzLn5Ogjnx0qO9SMecEAO69AMo QSjKwSFMMhaNOxWOYRgCKQb8JBtGDDujd1yBRpXwVRdIpaF52FcZlXvQsYPTFF4q qLKDm7yOTIi4JKuVp/MEwPzmyLu1B3Ev4Nj1prJgeHqjqf1gIHQtcmv/nkTaZf+2 cJTAfU8hvMJoX0tFJKClP5LQy/iR/zlQvW+YzO5d6Dd4MNckumQSVWrAPhXJbzWU piszrO8QL+sIUZFHsdtDKaW1ucQmnbJF9AK88THqzFlAYuPbe8FI9ZX1rQwA6O21 avyJQWKAE2hc4cSv7rkMJckqSl6eliE2AVc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz0XlvjkX+t1M8Qjte3W7 cADD8C1wn3+D/6srWs5jR2E5ENOaOzVbG/W1YNsdVffIfRcD2/r0vHxmVF+6pycJ zVA8BaWdRPMr+0KDCvof1tktCRxMkpkACYg7mO8zlEDjYzvlXZdom/LZc3tPUflf 7rUC/SUdhwdtNvfHPyj77sSVVlybRxGPpw/hLHiTYXQkW217cJbPeaenKlYVwjhT 61vPc7SJpSiOfG9k39yrhAsOvs742G/P91pjmVtQY23ldSucBpCtDIZl7mYx+f2u udVSFA8PBM2ChOyad6f7K2N4RwP4xrvdAf6bslqQMoIAiQ0nyhZuJeP+Kpa4CqLN awIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 347854244077186444583905121714326205895613 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-30 06:33:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-29 06:33:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mikisgym.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26165796837221357364308160271274329994538812288633347413536299625030860953757302790047264210763227290992148334649167431806965768381727917527324223371771513319630041730756925137175321570667550388446595704521229163451821118666788573640108650852127905877390892859407985392789088464697157598434582892355831863777434291426610274071949145673068842216047095834831299561535708316927290282269331663631748729976162761301279035248999324481272766079643601636095547717018091480615274628330197316364867427561276271720582792830740750459512990276586253891076326597410227280945050062519284301030618167019485718514865908853015643868523 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6c28ccd078ab4a7cc38b6bdb14936b297ac73c57 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mikisgym.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mikisgym.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d5949e90a0000040300473045022100df5ad4d78c28e1b41baa8fa20389e149888c81d5d76486b8e743b60128656e49022001af80b19d4bdfe05d1ce09eaef7e8dab63f8b2557a761a90ff93ffc64ac195100750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d5949e9520000040300463044022071d0d80e0d2555a040790d878f9c635642d32d98a1c9f2bff083f826dc22f86a022042bbdc99c766a8f2864fd6c90eca85258472d118f6bd6a648cdb88cc51fc8055 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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