lyve.org
Issued by R10
About this certificate
This digital certificate with serial number 04:9a:9f:78:81:c5:64:9e:9c:4d:d4:3b:2e:ef:dc:c2:9f:57 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=lyve.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:9a:9f:78:81:c5:64:9e:9c:4d:d4:3b:2e:ef:dc:c2:9f:57Serial Number (int): 401064601191888262898724472840080381353815
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: db:e3:25:8c:0c:ce:1a:0f:36:ea:ec:34:fd:ac:ba:32:6c:dc:5e:59
AuthorityKeyId: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8
Fingerprint (sha1): fe:06:c3:90:c1:26:a0:88:92:d2:0f:c3:eb:bf:6f:25:25:28:8c:a4
Fingerprint (sha256): 85:a8:d4:ca:eb:66:81:9e:69:b1:dc:c3:69:ae:57:5e:c5:7a:e9:a0:13:61:a5:30:93:b0:d0:e5:d5:4d:03:0e
Issuing Certificate URL: http://r10.i.lencr.org/
Revocation information
OCSP Server: http://r10.o.lencr.orgCheck the revocation status for certificate lyve.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lyve.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.lyve.org
lyve.org
lyve.org
Other certificates including the domain name lyve.org
(limited to 100 certificates)
dumptruck.ca
ebaytes.ca
dumptruck.ca
lyndra.org
dumptruck.ca
dumptruck.ca
dumptruck.ca
musicbingo.ca
dumptruck.ca
lyve.org
dumptruck.ca
lyve.org
dumptruck.ca
proassislife.com.ec.proassislife.com.ec
lyve.org
pandaradio.ca
lyve.org
lyve.org
dumptruck.ca
jimmy.cc
lyve.org
simplyelegantessence.org
lease.club
lyve.org
dumptruck.ca
lyve.org
frflanagan.ie
dumptruck.ca
estate.ninja
lease.club
lyve.org
musicbingo.ca
ebaytes.ca
dumptruck.ca
lyndra.org
dumptruck.ca
dumptruck.ca
dumptruck.ca
musicbingo.ca
dumptruck.ca
lyve.org
dumptruck.ca
lyve.org
dumptruck.ca
proassislife.com.ec.proassislife.com.ec
lyve.org
pandaradio.ca
lyve.org
lyve.org
dumptruck.ca
jimmy.cc
lyve.org
simplyelegantessence.org
lease.club
lyve.org
dumptruck.ca
lyve.org
frflanagan.ie
dumptruck.ca
estate.ninja
lease.club
lyve.org
musicbingo.ca
Certificate
The complete raw certificate details for lyve.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE7TCCA9WgAwIBAgISBJqfeIHFZJ6cTdQ7Lu/cwp9XMA0GCSqGSIb3DQEBCwUA MDMxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQwwCgYDVQQD EwNSMTAwHhcNMjQwNjExMDA1MDQ5WhcNMjQwOTA5MDA1MDQ4WjATMREwDwYDVQQD EwhseXZlLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAIFSOabW 9nSB0PMUr0Ai6ViFWXd3tq+durCjw9024+dKRS8YYZmh3lTVM+mjzk5UsbMAJ04h 6YG8WitcBLD+KBYRMgIBjk6Oe6+HcJ0aUIfPIrM/uo2FPpDj94NaxPoTaPKq4/aJ PI2r/c3Zgp2s/3w5Gyg54CROl77BmCvG8ffMF0rATo/w25KwXJbgcQQrlt4Xoa2U dQugDop4n7ekgs1dvANPRsWgZ1gkUmreJsd90M5HS+7Xh8ep3bDaKTHkN1+C4WlQ ZS3T1S49OIe6X6onPcop54WWck8f7nBlT2lrP4wybWm8UJLRJWp8obldkL/yucmM fhuZTnvMveMkod8CAwEAAaOCAhkwggIVMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU 2+MljAzOGg826uw0/ay6MmzcXlkwHwYDVR0jBBgwFoAUu7zDR6XkvKnGw6RyDBCN ojXhyOgwVwYIKwYBBQUHAQEESzBJMCIGCCsGAQUFBzABhhZodHRwOi8vcjEwLm8u bGVuY3Iub3JnMCMGCCsGAQUFBzAChhdodHRwOi8vcjEwLmkubGVuY3Iub3JnLzAf BgNVHREEGDAWggoqLmx5dmUub3JngghseXZlLm9yZzATBgNVHSAEDDAKMAgGBmeB DAECATCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AEiw42vapkc0D+VqAvqdMOsc UgHLVt0sgdm7v6s52IRzAAABkAT9osQAAAQDAEcwRQIhAL9Me8dNqQxE8K4mZux3 M0U4wdfCt9tpQ99csUgRDBE9AiApSNBG5hK/2dVgOgKntirqzJxpQZcbIjNEZICS mR48JQB3AHb/iD8KtvuVUcJhzPWHujS0pM27KdxoQgqf5mdMWjp0AAABkAT9owMA AAQDAEgwRgIhALMZCmaXZiXV2xw/FRbkuzaGeuyhaPy0neuEh1QPnJvKAiEAqbKp MQKgTFIq6BOpYV9zTsHHtu1D4aN5G8sdVSNSWSMwDQYJKoZIhvcNAQELBQADggEB AB6L+qgkDPzWVJbZJM//FafajHn0RbB/a/lXxCztV1YlzsCzg02y/tEh34VSJSXf pKlpsAKoWd3ubKLqiCj41v3mV9/ZB4+sG2yzjI18rDjBQ+Mw1GTKGl6mTHhwON1M VnG+OAlOAOGCYc2ozu+TFyh27adF17OjpOw4mcpmmanbsyK7CAJfzu2s/SLVWxeC eyyWwRU49Kny5EgRYJNILGgGqSo8BL0wx3UEt9C4P2cQBvx1Ztz4L6PzjqwYyhXH jqRY1WS0CuP/D6zWpggNPUwQHaJ/JMF/D6f+a4rXRby3w3ISxts7lsmEa03Z+eGP vZy6c30gL9HFXZ5W/TTtFmM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgVI5ptb2dIHQ8xSvQCLp WIVZd3e2r526sKPD3Tbj50pFLxhhmaHeVNUz6aPOTlSxswAnTiHpgbxaK1wEsP4o FhEyAgGOTo57r4dwnRpQh88isz+6jYU+kOP3g1rE+hNo8qrj9ok8jav9zdmCnaz/ fDkbKDngJE6XvsGYK8bx98wXSsBOj/DbkrBcluBxBCuW3hehrZR1C6AOinift6SC zV28A09GxaBnWCRSat4mx33QzkdL7teHx6ndsNopMeQ3X4LhaVBlLdPVLj04h7pf qic9yinnhZZyTx/ucGVPaWs/jDJtabxQktElanyhuV2Qv/K5yYx+G5lOe8y94ySh 3wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 401064601191888262898724472840080381353815 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-11 00:50:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-09 00:50:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lyve.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16325288098936870092636642299870638387909298650336098814317287303320699232063139137952920892400830336622579075827175895444551389964604354736400314440621506227750274843083323016877962817320334221534050195886902335398966290811912891920630795299939469952816383347038566626783218368283589018754320028132358217031256542157162096873675686031389905146489657481264484070793572013530275858576454397739101699828730709542939052364969272095018518394393007108199029615952884852648036106840174183347763656960149511960305781306485668661060690702673891159211596447872038479984147028014541086993313249941566160467991431822535880384991 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dbe3258c0cce1a0f36eaec34fdacba326cdc5e59 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lyve.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lyve.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000019004fda2c40000040300473045022100bf4c7bc74da90c44f0ae2666ec77334538c1d7c2b7db6943df5cb148110c113d02202948d046e612bfd9d5603a02a7b62aeacc9c6941971b223344648092991e3c2500770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000019004fda3030000040300483046022100b3190a66976625d5db1c3f1516e4bb36867aeca168fcb49deb8487540f9c9bca022100a9b2a93102a04c522ae813a9615f734ec1c7b6ed43e1a3791bcb1d5523525923 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001e8bfaa8240cfcd65496d924cfff15a7da8c79f445b07f6bf957c42ced575625cec0b3834db2fed121df85522525dfa4a969b002a859ddee6ca2ea8828f8d6fde657dfd9078fac1b6cb38c8d7cac38c143e330d464ca1a5ea64c787038dd4c5671be38094e00e18261cda8ceef93172876eda745d7b3a3a4ec3899ca6699a9dbb322bb08025fceedacfd22d55b17827b2c96c11538f4a9f2e448116093482c6806a92a3c04bd30c77504b7d0b83f671006fc7566dcf82fa3f38eac18ca15c78ea458d564b40ae3ff0facd6a6080d3d4c101da27f24c17f0fa7fe6b8ad745bcb7c37212c6db3b96c9846b4dd9f9e18fbd9cba737d202fd1c55d9e56fd34ed1663