www.mmakyrgyzstan.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:49:b9:75:f2:7d:89:79:8d:1a:77:d8:f1:75:ef:2a:32:16 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.mmakyrgyzstan.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:49:b9:75:f2:7d:89:79:8d:1a:77:d8:f1:75:ef:2a:32:16Serial Number (int): 286423990176751096574716695011623420178966
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 67:a6:c2:17:4a:17:a0:13:eb:4c:ff:bf:81:d6:ec:69:43:e4:28:cb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 39:d1:8a:65:19:bf:ab:f2:e1:71:4c:d5:b2:8b:0c:df:ef:6b:be:ff
Fingerprint (sha256): 85:c2:3f:b0:c2:39:5f:c6:f2:9d:97:fa:4f:37:a0:f2:a0:67:89:a7:2b:42:ae:33:59:71:74:02:45:d9:d9:a0
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.mmakyrgyzstan.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.mmakyrgyzstan.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.mmakyrgyzstan.com
Other certificates including the domain name mmakyrgyzstan.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.mmakyrgyzstan.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISA0m5dfJ9iXmNGnfY8XXvKjIWMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MDYxNjA1MTVaFw0x OTEyMDUxNjA1MTVaMCAxHjAcBgNVBAMTFXd3dy5tbWFreXJneXpzdGFuLmNvbTCC AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAO/b6kDVLCc60fivZ/Gj4VBv YoUHSbW/6ib4Z18XkFcljX5poYk/SaPQ0DxtMr5WAe1HNnJLDEe8z+71Afrh5XdU FnvVXjqqJqgKSo7K3nvbRPfEFCuXlLrWC56j1mGJsZH7DsGEVMygE5QVKvdsUy1c IXeMgWf4dJFluQ0mjMoEAiRQkcsIT8YbWcvpooSyfTA9/crdTtLkIai6TQKBGcYl l5oyKAyMbESA2e8MYHWQbWsoI0tX71LQ9JE2+xF2hyjnY48w8tl+fE1MhvLTqdKI u8HAQgW+911YQ/5fBSiBMD1SYZ1F2e0Rl5panZ+5ez+jCdI33MJk+gd8vF1ynG0x dZljiHaBSqF0tA8dECiRdhyMDBtxdUC8WqF6xS+Z4kGWVk2qbmG2xm7dI40AWIgq aWtgO5DOkXjQvtjOOlTfkBGsdKapu8eAzdbjrTjjyVbTvZMHnx9MwJotHYPz0S5V e7yhNPD03kX02jiz634991VC9Vz3+AaPHRUViV4C/Lr0Zy6OSQFpeh8+GDSF3hKg V246Dh5QjzUI6cjmI9sKP89VhE6idIUxAB3ERgCQqk4K5DjNxVMIcSRhDhmAUd33 QFuJ96LosOaC0mINK0pyzQow8PO3Yzoz1pVPsRYjmyKDwHZmLLDJiOaD9U8GmWpa 1rehG+C9B6D7nlh1103hAgMBAAGjggJpMIICZTAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFGemwhdKF6AT60z/v4HW7GlD5CjLMB8GA1UdIwQYMBaAFKhKamMEfd265tE5 t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29j c3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2Nl cnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wIAYDVR0RBBkwF4IVd3d3Lm1tYWt5 cmd5enN0YW4uY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYK KwYBBAHWeQIEAgSB9ASB8QDvAHYAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV5 5hB7zFYAAAFtB4mCowAABAMARzBFAiEA4ORFTJXMJIkLVKc0RoPQANfFSd1DMagu EGnvvRhqifACIEvSbUODFs6DWp/1TKDmNMhxH2sceV6h08z6ZTo41r5uAHUAY/Lb zeg7zCzPC3KEJ1drM6SNYXePvXWmOLHHaFRL2I0AAAFtB4mCmAAABAMARjBEAiBh Y8Otn6P7EQi9q6BT5hca1x29edKukY4WS7x0E+hS/wIgE5PV+6tEG630+2928+ou 8Df6tuWmSMa7Uec5cN0pP8QwDQYJKoZIhvcNAQELBQADggEBACJdr1FnCe45jWVJ TdJbsVs1jTmpDxwaW6KCJMljImJu+G9hzsBGWAmKlM1YYR29ZuHAqW4xnNlSEBS1 owt1ucH82MIzAVftB3xD9LOphebx6bhJ4tDRXrLcxW+zMLd01+8UvY3YL9JE7chD qnlsU6TC+kOrOPanfjCZCeNY6fiL48Wh/Gq+Xk+6r/Fc7XXAYZPxLzLoIXjpnN5g kQ5ZXRYOjH0xH1r8doaJ5eSJ0H5byQg9V6aQ82xEb87TJlzYVa3KsHaDJJbNkvsd pdVeYq4NgcMosqoRygwvCfAr1puubPfcxxPalPMFA7VSgnDKjI7bnO9UmxSXtdmf EEG5HRY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA79vqQNUsJzrR+K9n8aPh UG9ihQdJtb/qJvhnXxeQVyWNfmmhiT9Jo9DQPG0yvlYB7Uc2cksMR7zP7vUB+uHl d1QWe9VeOqomqApKjsree9tE98QUK5eUutYLnqPWYYmxkfsOwYRUzKATlBUq92xT LVwhd4yBZ/h0kWW5DSaMygQCJFCRywhPxhtZy+mihLJ9MD39yt1O0uQhqLpNAoEZ xiWXmjIoDIxsRIDZ7wxgdZBtaygjS1fvUtD0kTb7EXaHKOdjjzDy2X58TUyG8tOp 0oi7wcBCBb73XVhD/l8FKIEwPVJhnUXZ7RGXmlqdn7l7P6MJ0jfcwmT6B3y8XXKc bTF1mWOIdoFKoXS0Dx0QKJF2HIwMG3F1QLxaoXrFL5niQZZWTapuYbbGbt0jjQBY iCppa2A7kM6ReNC+2M46VN+QEax0pqm7x4DN1uOtOOPJVtO9kwefH0zAmi0dg/PR LlV7vKE08PTeRfTaOLPrfj33VUL1XPf4Bo8dFRWJXgL8uvRnLo5JAWl6Hz4YNIXe EqBXbjoOHlCPNQjpyOYj2wo/z1WETqJ0hTEAHcRGAJCqTgrkOM3FUwhxJGEOGYBR 3fdAW4n3ouiw5oLSYg0rSnLNCjDw87djOjPWlU+xFiObIoPAdmYssMmI5oP1TwaZ alrWt6Eb4L0HoPueWHXXTeECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 286423990176751096574716695011623420178966 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-06 16:05:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-05 16:05:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mmakyrgyzstan.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 978539522633435285385420723199225714418074202274442106252018069721892539079654132241762207887356340982749252800031308303723657126910819404267159828365456255680018922499605437938555290978977418773268780295436256955496919236129401700621354139503635500671445119805471795867094829105925163778739341513539858153089597234252899963580049329020662752859942730081318734954495315298830590961714264094647805696700321285423039745668123458251603219558010996895217224573975560612177035917385592940619119547292264465269614625152432794330384888301748637749740298251233525791701672667980468628124364401885552781014978676110456911905836024159304138358350314839969719187490285056207555242125956918696325144781731701045564954262308279437576507465526694238617236658598448164401830200673225756467803307022349534380806998853327003678603709804063136230209986292445684320879693800894331414961074049129528861331287297348098688649098921245818452148235149362698683910866454312066574760814678047722324844863749778755750517777645385826096483980348111331046627824656998015099670770747400640769764080546273556696705061975358128423250557130586645712149066009312465287022385277722448349998590492894970945968852620248897988841906627999431792511031581038025843993431521 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 67a6c2174a17a013eb4cffbf81d6ec6943e428cb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mmakyrgyzstan.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d078982a30000040300473045022100e0e4454c95cc24890b54a7344683d000d7c549dd4331a82e1069efbd186a89f002204bd26d438316ce835a9ff54ca0e634c8711f6b1c795ea1d3ccfa653a38d6be6e00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d07898298000004030046304402206163c3ad9fa3fb1108bdaba053e6171ad71dbd79d2ae918e164bbc7413e852ff02201393d5fbab441badf4fb6f76f3ea2ef037fab6e5a648c6bb51e73970dd293fc4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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