www.mmakenya.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:4a:3f:95:db:f9:06:01:86:25:71:0f:e6:a5:d6:c4:84:4f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.mmakenya.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:4a:3f:95:db:f9:06:01:86:25:71:0f:e6:a5:d6:c4:84:4fSerial Number (int): 286602272424973932043711186155692143969359
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 88:91:66:7e:57:9c:87:03:c2:8b:37:44:06:12:26:85:df:f4:bb:87
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 56:36:4e:4a:67:cd:91:44:c1:2a:27:33:d0:51:b3:1f:90:49:e0:dd
Fingerprint (sha256): 88:c6:c4:ac:10:ec:bf:d8:1a:72:1f:84:da:bc:ac:92:80:5c:39:51:f3:35:9f:99:5c:e4:73:fb:51:e6:e0:6c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.mmakenya.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.mmakenya.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.mmakenya.com
Other certificates including the domain name mmakenya.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.mmakenya.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISA0o/ldv5BgGGJXEP5qXWxIRPMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDcxMzU0MTVaFw0y MDA1MDcxMzU0MTVaMBsxGTAXBgNVBAMTEHd3dy5tbWFrZW55YS5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDEYezyq/pCuyZETiilOvNEw2XhKmPZ zs71U1N7ZbuuUa26ALZOJ1Wm3zsgmXll+QnZyjq2WIEsRWUQoOhBfD6qZ6GLc7fc qQWv9DpvrBJtT6F6czxXYTE26LWwduZorSg8xKUdz1WRp12PGDgBOVaoU6em0KO1 OSoo4Ep/fpwM12Guq4pwhtoARnvxJz7Z0mGsk6iiflTt9ZS8xQNVo/W4lexpDVvU 5+HAxe/Vqqky6z3xYgDuwSdUS99P02GLH/TQ+k5Qt7dXjm9k56T3AX44JSVKTnfh Zz3IylNWNput8RI9Yy3q664scr9JW8qoUuZdNIHde5zpBYCaPnTzIXw59cP8zvKW IALX4TNdFv21ZoLUDJKq2w5mZMtiLoufAzvQTY5yfwYxMjWq0+/YBBOU4XVM8OUh ChOIBVrq+z1O8rZfdxbAE0CbGrMv12+seKCBSxIlhJe8s+JbXImMRAgNtUzCvGhe 4AdrlPf0pHMWepT16JaH8W5xgOZUyIQ5MAseXa4G63WmowjFVAG1T4TPtVTnCUjd tPMNxZ0enEc1utoxOr6RsJOWR/8i73+0oxSBPbRrL4tSE/GeLGpw49v8vMeAdRQ6 jZaWvsIBWj6ZdLFM6UyXI7etUP7cfW6dcL0ChP90yYvMV3U9sa279Ci89zJxVfB/ ZsqWpSGbrnpsGQIDAQABo4ICZTCCAmEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSI kWZ+V5yHA8KLN0QGEiaF3/S7hzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5tbWFrZW55YS5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQC BIH1BIHyAPAAdgBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAXAg JOruAAAEAwBHMEUCIQCuFp8lPa+WJmx0cKcFi43yFJ+vb+7qlFOzsDR3/OB8fgIg Z1mfHz/Lk4HVVjO3Ki19mKxVwxm9jBP0gGe+s1+FCRkAdgCyHgXMi6LNiiBOh2b5 K7mKJSBna9r6cOeySVMt74uQXgAAAXAgJOrbAAAEAwBHMEUCIQCuGpLYdPXvM4uv ACIKFbB9Yv2+1nsjWXURvYneCn5A1gIgOXv5QqPxlkKmH4vRH5KJ+6W3qYxxi4oy R2xQyB7CtOIwDQYJKoZIhvcNAQELBQADggEBAJR0EWIcmIPQVhiPP4Xu1S+eeDpr VJCP14vL7l2Vhs9e8TwF/rAcpEZIqrhI2jMLyxglN17WPyv3dFtP6wiZ0o9fpjP6 PZhRRQpNoLp025G54yEQN83XIj7Y2Dq7XU7y5TN3XCwV8SerUlRyi4lMNZtXEB9a hcMRrd4YQTXMmOtztaYxVjZ67g0VUnVG0kEgl03I9JMG2q2rx7hMj3cxKWqkBjze tDj5qVdHykPfsJd3TL1CSVE53KRUpguAgFsles68QdYfC7UkS0oeLFoMsHtciRFT PfIiw7Wa8xFTYuct5wHVElpdnkBKGtPZ2ZoXp/WRjPpD5HEfA3dp+/fr6aU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxGHs8qv6QrsmRE4opTrz RMNl4Spj2c7O9VNTe2W7rlGtugC2TidVpt87IJl5ZfkJ2co6tliBLEVlEKDoQXw+ qmehi3O33KkFr/Q6b6wSbU+henM8V2ExNui1sHbmaK0oPMSlHc9Vkaddjxg4ATlW qFOnptCjtTkqKOBKf36cDNdhrquKcIbaAEZ78Sc+2dJhrJOoon5U7fWUvMUDVaP1 uJXsaQ1b1OfhwMXv1aqpMus98WIA7sEnVEvfT9Nhix/00PpOULe3V45vZOek9wF+ OCUlSk534Wc9yMpTVjabrfESPWMt6uuuLHK/SVvKqFLmXTSB3Xuc6QWAmj508yF8 OfXD/M7yliAC1+EzXRb9tWaC1AySqtsOZmTLYi6LnwM70E2Ocn8GMTI1qtPv2AQT lOF1TPDlIQoTiAVa6vs9TvK2X3cWwBNAmxqzL9dvrHiggUsSJYSXvLPiW1yJjEQI DbVMwrxoXuAHa5T39KRzFnqU9eiWh/FucYDmVMiEOTALHl2uBut1pqMIxVQBtU+E z7VU5wlI3bTzDcWdHpxHNbraMTq+kbCTlkf/Iu9/tKMUgT20ay+LUhPxnixqcOPb /LzHgHUUOo2Wlr7CAVo+mXSxTOlMlyO3rVD+3H1unXC9AoT/dMmLzFd1PbGtu/Qo vPcycVXwf2bKlqUhm656bBkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 286602272424973932043711186155692143969359 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-07 13:54:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-07 13:54:15 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mmakenya.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 801170790077631833269669624631667978569282510355756333397781005576322426243254689254778980854052095259998768446709279127703093498372394524482892918037769470079578635626667959624669811086667145841464375431393567106863944700114286617247026934625330617448052201314015126662010541230164852411405956099807406430691118694470136865807074582042187014498697304899116185196861830763373042611703374308589427570884935571471470163351924943988889096220153766363513818921310640531008954570026907464047312347199956613346228722267636594794165872925000748001495143903843738363432105211700022882161632189035415220126004422469193852987679965339052432137000416910811881314508674034770596474208903856842436220545459709188731990104618724712379822636242564241285538016836279725103862317654337179217883136245576800701713835550893873893907530891135657242622055502163835822967247737580345166249825887739880843361863753839809922579048940452427650591152129837255381707759360591943644713100347290217682414152016434098367563937222774266895864165598829072194198427594010299446909907241927324140825097940764858891093280364518357551865311163393459061251756147197893654222639318566063264419894902706802377788913107093195853685789737378562100333846061936248915167439897 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8891667e579c8703c28b374406122685dff4bb87 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mmakenya.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a112128418759681714558000001702024eaee0000040300473045022100ae169f253daf96266c7470a7058b8df2149faf6feeea9453b3b03477fce07c7e022067599f1f3fcb9381d55633b72a2d7d98ac55c319bd8c13f48067beb35f850919007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001702024eadb0000040300473045022100ae1a92d874f5ef338baf00220a15b07d62fdbed67b23597511bd89de0a7e40d60220397bf942a3f19642a61f8bd11f9289fba5b7a98c718b8a32476c50c81ec2b4e2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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