krugpark.com
Issued by R3
About this certificate
This digital certificate with serial number 04:fa:8a:e0:f7:29:5b:13:7f:76:01:c1:48:13:ba:ae:57:d6 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=krugpark.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:fa:8a:e0:f7:29:5b:13:7f:76:01:c1:48:13:ba:ae:57:d6Serial Number (int): 433704337008221946116637899295740564232150
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: f1:90:b6:e7:90:96:71:e4:e9:25:e7:40:b9:58:a4:a9:97:f2:12:03
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 55:13:1c:60:4f:5f:68:be:d7:e5:ce:db:b4:d1:8b:25:53:94:37:f7
Fingerprint (sha256): 8f:e1:8f:4f:37:d5:52:16:eb:e3:e5:43:c2:6d:29:a6:56:38:22:e5:6d:50:68:98:e6:1c:b6:d6:11:36:14:04
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate krugpark.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for krugpark.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
krugpark.com
Other certificates including the domain name krugpark.com
(limited to 100 certificates)
mondays.krugpark.com
krugpark.com
obw2013.krugpark.com
tinyhousebar.com
krugpark.com
mondays.krugpark.com
mondays.krugpark.com
krugpark.com
mondays.krugpark.com
routineescorts.com
krugpark.com
obw2013.krugpark.com
krugpark.com
krugpark.com
www.glassware.krugpark.com
mondays.krugpark.com
krugpark.com
obw2013.krugpark.com
krugpark.com
krugpark.com
glassware.krugpark.com
coffinclubomaha.com
krugpark.com
obw2013.krugpark.com
tinyhousebar.com
krugpark.com
mondays.krugpark.com
mondays.krugpark.com
krugpark.com
mondays.krugpark.com
routineescorts.com
krugpark.com
obw2013.krugpark.com
krugpark.com
krugpark.com
www.glassware.krugpark.com
mondays.krugpark.com
krugpark.com
obw2013.krugpark.com
krugpark.com
krugpark.com
glassware.krugpark.com
coffinclubomaha.com
Certificate
The complete raw certificate details for krugpark.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgISBPqK4PcpWxN/dgHBSBO6rlfWMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMDcwMDU0MDdaFw0yNDA0MDYwMDU0MDZaMBcxFTATBgNVBAMT DGtydWdwYXJrLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMWm tITMvhh9pkvDbqIvbjp1yCK86YblmehGjfSeBpgjvugaNgQy8V/fh0cffSVJyN0q TowMDJeo+1XKhx24wiVU8uWE64JQ4GO2d5GVQwH+xnCf9EG/J8Kf2oAm2C8YJgBK XM45hIK2riKRk8rS7TbF9zuGOMOnNJhhe8XSzS3O4HUe9krMJb4jTVITbcJzA+n3 jbDfLaxYy52nznmF1oao2wTVqGiYkhiO4pkRNo3wIwniA3QmDq+gPYbEIEu8olZ1 BvdGaQzjHSfjr4BTFpMyHFBoWiRANHmuVgu7GC+UdvTWLp3p2ckj+bH+6M1TvtUm dfsMO0g8WFg+OSzBY+sCAwEAAaOCAg0wggIJMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQU8ZC255CWceTpJedAuVikqZfyEgMwHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w FwYDVR0RBBAwDoIMa3J1Z3BhcmsuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIB AwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB 2bu/qznYhHMAAAGM4aCY4gAABAMARjBEAiAGaOKy0ds9c2JmpO2vP2OuwDjihXsz P0AZQwJpUojFUAIgEeui4xwPVe0JVZ8BhjwRgsICqf2YywYrwryTK2nZWbcAdgDu zdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYzhoJqvAAAEAwBHMEUC IQC63oipEC6D0PSkpoRiEBoEN9yAlk5X8K6wul1J3q6/hwIgCHpXv7Q47BNSnH7/ BBppS5CW6lp6kfRH6fKMMdLHyPkwDQYJKoZIhvcNAQELBQADggEBAG8y1cUrmrFD HowfN+t/7M5tszujWD3+F991OpPWnqlVHJIxDiLBhNN7//kdDscUs/ksh6gkYclK SyEgvLBCQTt0WtxUqhIRxIWZ0tHiVgDoaiDCsSVJJlb5zI0SZM7Q5zIe2f4bLN7C Csx+4nNJzSjwmfcLiqGINUjtzfNNTnv5FnyiMMlGC/WuzcR2DPCkRuasEss7bDzB rCcy3DJ1kbkjAAr+8E3Uk+jkZlbdDLfxBg+9SyhZ45MFK0rlUHmtP/I07fpkGfRF QcpfHMFF20q/BSksuq6EUh+1lQ3seQx0jJ/0lXDmMy9kJdk/wgbBgHo2o0Q/5cD3 I6ogNYWYR/4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxaa0hMy+GH2mS8Nuoi9u OnXIIrzphuWZ6EaN9J4GmCO+6Bo2BDLxX9+HRx99JUnI3SpOjAwMl6j7VcqHHbjC JVTy5YTrglDgY7Z3kZVDAf7GcJ/0Qb8nwp/agCbYLxgmAEpczjmEgrauIpGTytLt NsX3O4Y4w6c0mGF7xdLNLc7gdR72SswlviNNUhNtwnMD6feNsN8trFjLnafOeYXW hqjbBNWoaJiSGI7imRE2jfAjCeIDdCYOr6A9hsQgS7yiVnUG90ZpDOMdJ+OvgFMW kzIcUGhaJEA0ea5WC7sYL5R29NYunenZySP5sf7ozVO+1SZ1+ww7SDxYWD45LMFj 6wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 433704337008221946116637899295740564232150 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-07 00:54:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-06 00:54:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'krugpark.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24951151452287266509585591352664356483011617403809545445213706172141555215422527277606124373654586432057583776062005504480227401014344514710255879667722144573824851545500828218240411727820527420081826984877829525005944615056911478493519574145431806965047964805657478910860022313927181463292095524482237616783239256671445340086545807675929945529290805982487174615648880102440589844371775223960856978160598699318966882625925291624133418891324540108832084641166958445665594185722919927814726798065327168808686295914808183157615363873176032678189435694491207758700222597781750793765388112109058803034195391652704504865771 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f190b6e7909671e4e925e740b958a4a997f21203 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'krugpark.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ce1a098e2000004030046304402200668e2b2d1db3d736266a4edaf3f63aec038e2857b333f40194302695288c550022011eba2e31c0f55ed09559f01863c1182c202a9fd98cb062bc2bc932b69d959b7007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ce1a09aaf0000040300473045022100bade88a9102e83d0f4a4a68462101a0437dc80964e57f0aeb0ba5d49deaebf870220087a57bfb438ec13529c7eff041a694b9096ea5a7a91f447e9f28c31d2c7c8f9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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