DV SSL/TLS Certificate for candy-yarn.com.ua

Certificate is witin its validity period

Issued by ZeroSSL (ZeroSSL RSA Domain Secure Site CA)

About the candy-yarn.com.ua DV SSL/TLS Certificate

This certificate with serial number e7:9d:ad:5d:46:ee:27:06:8c:82:78:84:d0:a2:11:7a for candy-yarn.com.ua was issued on by ZeroSSL.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for candy-yarn.com.ua provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

ZeroSSL

Organization: ZeroSSL
Country: AT

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): e7:9d:ad:5d:46:ee:27:06:8c:82:78:84:d0:a2:11:7a
Serial Number (int): 307870373880137939469685978259355996538
Serial Number Length: 128 bits, 16 octets

Subject Key Identifier: 95:7d:44:00:ca:89:78:c7:2e:f6:b3:47:23:3c:04:e9:93:f0:96:bf
Authority Key Identifier: c8:d9:78:68:a2:d9:19:68:d5:3d:72:de:5f:0a:3e:dc:b5:86:86:a6

Fingerprint (SHA-1): 6f:4d:23:38:e2:62:e9:e3:3a:93:4e:9e:4d:b8:70:2a:d2:54:d2:71
Fingerprint (SHA-256): 11:d0:89:5d:2a:9c:7d:d2:5e:e5:a6:de:d5:33:59:de:ac:a5:d4:7d:43:35:64:6e:8e:6d:ec:5e:6a:ee:0c:b4

Issuing Certificate URL: http://zerossl.crt.sectigo.com/ZeroSSLRSADomainSecureSiteCA.crt

Revocation Information

OCSP Server: http://zerossl.ocsp.sectigo.com

Check the revocation status for certificate candy-yarn.com.ua
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for candy-yarn.com.ua

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for candy-yarn.com.ua in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGiDCCBHCgAwIBAgIRAOedrV1G7icGjIJ4hNCiEXowDQYJKoZIhvcNAQEMBQAw
SzELMAkGA1UEBhMCQVQxEDAOBgNVBAoTB1plcm9TU0wxKjAoBgNVBAMTIVplcm9T
U0wgUlNBIERvbWFpbiBTZWN1cmUgU2l0ZSBDQTAeFw0yNTA1MjcwMDAwMDBaFw0y
NTA4MjUyMzU5NTlaMBwxGjAYBgNVBAMTEWNhbmR5LXlhcm4uY29tLnVhMIIBIjAN
BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxz5s5/Q3NqfavP+XxUL5uDCfb/pN
+qG31ibfeHdPKi6HadnZCnd83UR658LuqFiuwUcZFbn2ZzHoJTi/0Z91GNynPgow
sywGxSOc4CypmWiQjh09pgHGab/8S6ZJMgcUJCtGUEuZL7UVxbyCgYWiDYvv2Ym3
lCSsn+MOSOROP3u4HvxZevE0qbtiaHoaHU+4dewt7+IQzjiO6Pki64tvWJRnWibZ
pq1zu/iGdlTTQzW8qQlO966OtoDmipaxkz88/jF9l1XYL6BlhOb3qcKCLHMb1isv
av9TwmiBOThLYkczp/4+VKTXGzXKBbWBcwopBxngHtWsPnfrZk5fsJjngQIDAQAB
o4IClDCCApAwHwYDVR0jBBgwFoAUyNl4aKLZGWjVPXLeXwo+3LWGhqYwHQYDVR0O
BBYEFJV9RADKiXjHLvazRyM8BOmT8Ja/MA4GA1UdDwEB/wQEAwIFoDAMBgNVHRMB
Af8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBJBgNVHSAEQjBA
MDQGCysGAQQBsjEBAgJOMCUwIwYIKwYBBQUHAgEWF2h0dHBzOi8vc2VjdGlnby5j
b20vQ1BTMAgGBmeBDAECATCBiAYIKwYBBQUHAQEEfDB6MEsGCCsGAQUFBzAChj9o
dHRwOi8vemVyb3NzbC5jcnQuc2VjdGlnby5jb20vWmVyb1NTTFJTQURvbWFpblNl
Y3VyZVNpdGVDQS5jcnQwKwYIKwYBBQUHMAGGH2h0dHA6Ly96ZXJvc3NsLm9jc3Au
c2VjdGlnby5jb20wggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdQDd3Mo0ldfhFgXn
lTL6x5/4PRxQ39sAOhQSdgosrLvIKgAAAZcSnIbkAAAEAwBGMEQCIGsafcP3HJrs
PF1bOFCkcD6Yp26jFXSpOJ24PsL8txjPAiA7jgnaqeI6jBaD0eDcA7MZ/UqWzehV
t2lkuGurdtH7HwB3AA3h8jAr0w3BQGISCepVLvxHdHyx1+kw7w5CHrR+Tqo0AAAB
lxKchsIAAAQDAEgwRgIhAP+tHnJCG+eToVaARRqNFaMHkYYQY3/9VbCN63eDM1Tv
AiEA+5+I8KF+ZvJIHl362VL6uEL4s2nQ3ObooO9LIATJrogwMwYDVR0RBCwwKoIR
Y2FuZHkteWFybi5jb20udWGCFXd3dy5jYW5keS15YXJuLmNvbS51YTANBgkqhkiG
9w0BAQwFAAOCAgEAA4pNthMEJruXGS2xHQmzu4nDX5eBO75PasfzPdQ/xr7bZDZl
M2T3e3M9YMyW8v7eJpG0tqReUOnoERRDFUDygtW9C47Uc+z7MHcjyiUxNZNJAUTB
HePV2xWjmXiUdhnCHJk6/mB6GkDfnxepBYjs53mk1MnsdN243Z/BbEyBEeVL4yz+
D87NT5zIU89TjsVPWJOCzVFLphsqyfkgDLF3cC7YHBVcG5DuqKkv72bk1naseh9c
uizqEhlMN+w5haqTSBHSfS7Uoo0DJoo42R+ZdT/5vrTylv+jABnD2piPZ+5z0vJF
L5DQLm+VfFo27++kHg82u+Pg3kjS32wukW152ZF1+01bXw812MGrlpMgeil6JcRT
3WvIgUURLx6i5RA5E0BMgnsGKB6S81s++S2nB5Al5JtxtV28qFWwxano0LpXM4lz
OWsfxZNoqQqqgaAFBgQ8ktkx2bUXguT4Zqv0NoDD978xk8AQvwj7cqYQ44Y6n3mJ
hZJ2OO/jmQPTDDVkV9F0ZOHLzZIq/SrO3KFUKp1J9RXsL9ROmHiKNBlYbMt8DxqZ
Xln2nc3E/D7iR/ELip2ObYJEhpxoSxMB8XmrnvHnJUZz2i9Z+MY++/Ynlj7FEdPn
/9KwzPg1gi80nDshCtZizGIXb5fP70y76wWnvB4lv4GNk2tFEJaVzB/roL4=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxz5s5/Q3NqfavP+XxUL5
uDCfb/pN+qG31ibfeHdPKi6HadnZCnd83UR658LuqFiuwUcZFbn2ZzHoJTi/0Z91
GNynPgowsywGxSOc4CypmWiQjh09pgHGab/8S6ZJMgcUJCtGUEuZL7UVxbyCgYWi
DYvv2Ym3lCSsn+MOSOROP3u4HvxZevE0qbtiaHoaHU+4dewt7+IQzjiO6Pki64tv
WJRnWibZpq1zu/iGdlTTQzW8qQlO966OtoDmipaxkz88/jF9l1XYL6BlhOb3qcKC
LHMb1isvav9TwmiBOThLYkczp/4+VKTXGzXKBbWBcwopBxngHtWsPnfrZk5fsJjn
gQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 307870373880137939469685978259355996538
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZeroSSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZeroSSL RSA Domain Secure Site CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-27 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-25 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'candy-yarn.com.ua'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25152205807357635071681005683603776625578369773921918435728898216584355154827355693946039162161222008849894511354179004663597794331611909841018314856721242329680550852256216532312856938023342919559043883821833844125086734357261587621292542928052700082172271945321834267766474045509249503726405957183955633468446202675382022695128364879784227380267922258211588610079844468176356797560768961219741184090142941612590904314030635898404117837673805405733057428192168390972500565746422080382925067011098143977621638032667813532570832538155269200226406758293863339394711054345600940775488432357777211975495411348332537767809
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c8d97868a2d91968d53d72de5f0a3edcb58686a6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							957d4400ca8978c72ef6b347233c04e993f096bf
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.78
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://zerossl.crt.sectigo.com/ZeroSSLRSADomainSecureSiteCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://zerossl.ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007500dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a00000197129c86e4000004030046304402206b1a7dc3f71c9aec3c5d5b3850a4703e98a76ea31574a9389db83ec2fcb718cf02203b8e09daa9e23a8c1683d1e0dc03b319fd4a96cde855b76964b86bab76d1fb1f0077000de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa3400000197129c86c20000040300483046022100ffad1e72421be793a15680451a8d15a307918610637ffd55b08deb77833354ef022100fb9f88f0a17e66f2481e5dfad952fab842f8b369d0dce6e8a0ef4b2004c9ae88
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'candy-yarn.com.ua'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.candy-yarn.com.ua'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		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