staging.okra.ng

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:d4:8a:0a:8b:8d:6f:cd:1c:d3:5b:36:fb:6d:47:ab:7c:6c was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=staging.okra.ng

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:d4:8a:0a:8b:8d:6f:cd:1c:d3:5b:36:fb:6d:47:ab:7c:6c
Serial Number (int): 333660207799367304556945874030437465816172
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 05:2b:59:5a:c7:40:29:3b:77:bd:ec:84:9b:05:e3:cf:af:dd:b9:f1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 5d:53:80:35:e9:46:82:0a:ec:f8:27:36:8b:b8:fc:d2:22:b7:cf:b3
Fingerprint (sha256): 80:5d:47:1c:b6:b0:6a:87:ce:be:2a:94:8d:62:14:ae:5e:06:a1:c7:48:5a:aa:27:25:f3:ea:63:b4:a4:f2:23

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate staging.okra.ng

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for staging.okra.ng

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

staging.okra.ng

Other certificates including the domain name okra.ng

(limited to 100 certificates)
okra.ng
capture.okra.ng
okr.to
dashboard.okra.ng
support.okra.ng
staging.okra.ng
dashboard.okra.ng
demo-dev.okra.ng
staging-dashboard.okra.ng
docs.okra.ng
bourne-status.wifinity.net
bourne-status.wifinity.net
okra.ng
dev-dashboard.okra.ng
dev.okra.ng
cdn.okra.ng
demo-dev.okra.ng
okra.ng
okr.to
dev-api.okra.ng
demo.okra.ng
widget.okra.ng
okra.ng
cdn.okra.ng
okra.ng
dev-dashboard.okra.ng
staging-api.okra.ng
okra.ng
okra.ng
get.okra.ng
staging-api.okra.ng
bourne-status.wifinity.net
okra.ng
get.okra.ng
bourne-status.wifinity.net
app-test.okra.ng
staging.okra.ng
support.okra.ng
okra.ng
dev-status.okra.ng
demo.okra.ng
dev-api.okra.ng
bourne-status.wifinity.net
staging.okra.ng
dev.okra.ng
dev-dashboard.okra.ng
staging.okra.ng
bourne-status.wifinity.net
widget.okra.ng
bourne-status.wifinity.net
bourne-status.wifinity.net
dev-api.okra.ng
support.okra.ng
dev-api.okra.ng
dashboard.okra.ng
bourne-status.wifinity.net
staging-dashboard.okra.ng
dev-cdn.okra.ng
staging-api.okra.ng
dev.okra.ng
dashboard.okra.ng
docs.okra.ng
widget.okra.ng
demo-dev.okra.ng
dev-dashboard.okra.ng
okra.ng
dev.okra.ng
support.opinionbuyers.com
staging-api.okra.ng
dash.okra.ng
demo-dev.okra.ng
dev.okra.ng
okra.ng
debug.okra.ng
staging-dashboard.okra.ng
dev-api.okra.ng
okra.ng
docs.okra.ng
bourne-status.wifinity.net
demo.okra.ng
okra.ng
bourne-status.wifinity.net
demo.okra.ng
dash.okra.ng
demo-dev.okra.ng
okra.ng
bourne-status.wifinity.net

Certificate

The complete raw certificate details for staging.okra.ng in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFVjCCBD6gAwIBAgISA9SKCouNb80c01s2+21Hq3xsMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMDcwNTE0NTRaFw0y
MDA2MDUwNTE0NTRaMBoxGDAWBgNVBAMTD3N0YWdpbmcub2tyYS5uZzCCASIwDQYJ
KoZIhvcNAQEBBQADggEPADCCAQoCggEBALaWGlR4yXYn9i4+O38ieDav9v4cMduI
Z9L/eVj1xbBkhqQqK7gXiw6hKmPe+zMGsHIyTEOJg8IdTrOer4STfVbcGyVtgxjB
R8fqWfWglbAfrEiDLD5MvmjqAdrphLKlkJZ+kDqHvXSUW/MstN3TgEsn0TimUN00
Jv9W7NKpFYE1l51Jf9CaDa7SMhkJnSx6zWGYiUngeJVG115MTpmA53OjGUJUKKoW
oAWa6Fl6pfT3YmTmy4CBLaPCq1tvxE7BZyW4PDjtVzMWvQ/qNY/cAzqnOV7+nAVQ
tTjyOq4sUdj8OgbsNZX1pNy/rySZtz0PTeKopGV6AcuM4jUoiXWFqosCAwEAAaOC
AmQwggJgMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB
BQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUBStZWsdAKTt3veyEmwXjz6/d
ufEwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEE
YzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQu
b3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQu
b3JnLzAaBgNVHREEEzARgg9zdGFnaW5nLm9rcmEubmcwTAYDVR0gBEUwQzAIBgZn
gQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5s
ZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBep3P531bA
57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAXCzod2mAAAEAwBHMEUCIQCVaxBS
lAfbktJsp0YO4aGgkVS8+TccnW9RQg9hQ53G7gIgPZVgDjSyOP+yTR4fPcue2hy0
fJvk0t3q0xir03HhtGYAdgCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQ
XgAAAXCzod2XAAAEAwBHMEUCIDVRfnyiAxPvY7ORIzTTeptvqm+XCddw8ORYmFd2
wfNNAiEAnueVqmZ/HAa9LypA8EtfmtIuMZdFmape3LGCX1eAHL0wDQYJKoZIhvcN
AQELBQADggEBACf7BNSPlXBmD9HOuEjx3BdTl76M6u4I7ns1vEkBLSAPuvZKzGsd
GBZ/aZ8te/5rARFzXipzxVLdbYrYKZKCsz075RPAqEJzmIQkVNScX43WRFjWTrBo
oxJxl2a3Vao4owaYD9To4MVE+/JdjPu3l4ZXPtdT3Kqlzk/z5eCzuWREqrPGx4jL
9T86VHVAy193RmyXWmJhwXEU00FDHxLWNIE1pj8g3X7zqT0YNQn+YZChHSiSGZA8
12XrChyx6oPFv7yelIGTdHv6mY7f40jdzbkzuQ7v1+dE/xRlKik1mBr3VjxQOkdU
mGO1pF4323OI82ugJf9f1kSoJi32404tF+4=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtpYaVHjJdif2Lj47fyJ4
Nq/2/hwx24hn0v95WPXFsGSGpCoruBeLDqEqY977MwawcjJMQ4mDwh1Os56vhJN9
VtwbJW2DGMFHx+pZ9aCVsB+sSIMsPky+aOoB2umEsqWQln6QOoe9dJRb8yy03dOA
SyfROKZQ3TQm/1bs0qkVgTWXnUl/0JoNrtIyGQmdLHrNYZiJSeB4lUbXXkxOmYDn
c6MZQlQoqhagBZroWXql9PdiZObLgIEto8KrW2/ETsFnJbg8OO1XMxa9D+o1j9wD
Oqc5Xv6cBVC1OPI6rixR2Pw6Buw1lfWk3L+vJJm3PQ9N4qikZXoBy4ziNSiJdYWq
iwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 333660207799367304556945874030437465816172
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-07 05:14:54 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-05 05:14:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging.okra.ng'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23049389978572954604002272941804243486652913689500798550442645560951826569871738249590551598257089181384608734394235700418721261961158026404936439807338357851528303759157497277298830824764365323533991306564321048168375080435763211190708505757397442279306205141358944446685605895665123172032381367473552107222914769921102495235789675484957210134252583239639415475162533378260551351035462202930641279691180503622711761699229983266523812836795815062075700080319055135705196704128596017843485018485552498562930289224146575134391291966441334499812673080207725152487998982328514826101445929103329702304732915640431668472459
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							052b595ac740293b77bdec849b05e3cfafddb9f1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.okra.ng'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000170b3a1dda60000040300473045022100956b10529407db92d26ca7460ee1a1a09154bcf9371c9d6f51420f61439dc6ee02203d95600e34b238ffb24d1e1f3dcb9eda1cb47c9be4d2ddead318abd371e1b466007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170b3a1dd970000040300473045022035517e7ca20313ef63b3912334d37a9b6faa6f9709d770f0e458985776c1f34d0221009ee795aa667f1c06bd2f2a40f04b5f9ad22e31974599aa5edcb1825f57801cbd
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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