www.klopotek.com
Issued by R3
About this certificate
This digital certificate with serial number 04:2b:82:88:9b:5d:33:95:88:e3:cd:d6:43:a4:43:9f:8b:b0 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.klopotek.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:2b:82:88:9b:5d:33:95:88:e3:cd:d6:43:a4:43:9f:8b:b0Serial Number (int): 363254794447623812507183276173108828933040
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 37:ad:9e:d9:21:dc:82:dd:d4:a5:7b:3e:89:cc:7d:57:a5:0c:88:c9
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 73:f3:05:bb:fa:58:1b:1e:fd:be:6b:b6:6c:b2:d4:b2:ba:0d:f2:ec
Fingerprint (sha256): 94:31:4e:ef:06:ee:43:83:de:07:b4:60:c0:58:7e:ff:ae:54:b1:eb:11:70:2e:be:14:a5:b2:22:7b:be:c5:ec
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.klopotek.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.klopotek.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
klopotek.com
www.klopotek.com
www.klopotek.com
Other certificates including the domain name klopotek.com
(limited to 100 certificates)
klopotek.com
webmail.klopotek.de
klopotek.com
*.klopotek.com
klopotek.com
www.klopotek.com
klopotek.com
klopotek.com
klopotek.com
webmail.klopotek.de
klopotek.com
klopotek.com
asp-citrix.klopotek.com
www.klopotek.com
klopotek.com
*.klopotek.com
saas.klopotek.de
klopotek.com
*.klopotek.com
klopotek.com
klopotek.com
www.klopotek.com
sip.klopotek.com
saas.klopotek.de
*.klopotek.com
klopotek.com
autodiscover.klopotek.com
*.klopotek.com
klopotek.com
klopotek.com
mail.klopotek.com
klopotek.com
*.stream.klopotek.com
klopotek.com
klopotek.com
*.klopotek.com
klopotek.com
klopotek.com
*.klopotek.com
*.klopotek.com
klopotek.com
klopotek.com
klopotek.com
klopotek.com
klopotek.com
klopotek.com
klopotek.com
klopotek.com
klopotek.com
www.klopotek.com
webmail.klopotek.de
klopotek.com
*.klopotek.com
klopotek.com
www.klopotek.com
klopotek.com
klopotek.com
klopotek.com
webmail.klopotek.de
klopotek.com
klopotek.com
asp-citrix.klopotek.com
www.klopotek.com
klopotek.com
*.klopotek.com
saas.klopotek.de
klopotek.com
*.klopotek.com
klopotek.com
klopotek.com
www.klopotek.com
sip.klopotek.com
saas.klopotek.de
*.klopotek.com
klopotek.com
autodiscover.klopotek.com
*.klopotek.com
klopotek.com
klopotek.com
mail.klopotek.com
klopotek.com
*.stream.klopotek.com
klopotek.com
klopotek.com
*.klopotek.com
klopotek.com
klopotek.com
*.klopotek.com
*.klopotek.com
klopotek.com
klopotek.com
klopotek.com
klopotek.com
klopotek.com
klopotek.com
klopotek.com
klopotek.com
klopotek.com
www.klopotek.com
Certificate
The complete raw certificate details for www.klopotek.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFNDCCBBygAwIBAgISBCuCiJtdM5WI483WQ6RDn4uwMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMTAxMTQwMDE5MTNaFw0yMTA0MTQwMDE5MTNaMBsxGTAXBgNVBAMT EHd3dy5rbG9wb3Rlay5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQDPr+X38pItpYUWiDhTZBtJ9t2df8Szvu/dfZEdmQZ+8KmK6+prHe3sXKnHQCux QSM6RJojhfm/teXiZ2yDrLUz5omTX8KA9kEXdQR7wQakrwtHiHSwM9sQW90tztsp G0rZcF0T1/bbO3g3p3X6IaTN/UxILDoL5VamuHxWK4atBcwlOHORMBsLKbiJT57p xihBKhhypWOqjibkCqtL8V0CLKA/1LHawMElN2K4/p+FnQB/zqGIyBC4Fwx18GVB fRHQVGaLGEK6WX80KOyQ1W3geBa29HBY+kzZe5cC/MFpbbk3XSdNUfZHShcP0e7E kz45gyF4JOtrExAITWJUEIozAgMBAAGjggJZMIICVTAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFDetntkh3ILd1KV7PonMfVelDIjJMB8GA1UdIwQYMBaAFBQusxe3WFbL rlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDov L3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5v cmcvMCkGA1UdEQQiMCCCDGtsb3BvdGVrLmNvbYIQd3d3Lmtsb3BvdGVrLmNvbTBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUE gfIA8AB2AJQgvB6O1Y1siHMfgosiLA3R2k1ebE+UPWHbTi9YTaLCAAABdv55o20A AAQDAEcwRQIhAKW5Uengx7BTN7Sg8k3XLWk/Qrn1yw4FhzgpqDYJYPFKAiB7ylvO zEqjCU46IOw3mq3JNUc/AkdWPT1c/Qdy+gApLwB2APZclC/RdzAiFFQYCDCUVo7j TRMZM7/fDC8gC8xO8WTjAAABdv55o2QAAAQDAEcwRQIgcChUsL2EN3qUEVKTRHIs d5+U/1YhnUNG+TZjEAuTDNkCIQCBgRIq3MFavl8Ioe13NKQwo19KBZfak0G0Jj1r xJKgmTANBgkqhkiG9w0BAQsFAAOCAQEAqG2USWu6H965voTslztg3wNWN7CsqIVV 4ZnaO49CpkKEa4oo+W02v4G9Ydcv5nw+mB2oVfEt5BDLrsJPI3y4PQwLdkq1LtkS 1HkPMc48gpzWliNnKj298qUK3oX0o7vETztsMvjhLhUcgG03Ez4TB2kyXV/qio1u ub5mDxkA/B/ExtmpCNUzoDxn8E4EYAqH0dex7hfJ/FXqHYla/rLQgtLE543YdZ25 WYH0M6Cju5rbSAdsPrB/EtRT48ex/mMEQZlmsvPw4Yg2EfCDXhkvTdGa15fwFct0 RBixIhcklG5A0jYTVAK2maEJxYpfY3WWFV7Xk610g3J1HMRxmsQoNg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz6/l9/KSLaWFFog4U2Qb SfbdnX/Es77v3X2RHZkGfvCpiuvqax3t7Fypx0ArsUEjOkSaI4X5v7Xl4mdsg6y1 M+aJk1/CgPZBF3UEe8EGpK8LR4h0sDPbEFvdLc7bKRtK2XBdE9f22zt4N6d1+iGk zf1MSCw6C+VWprh8ViuGrQXMJThzkTAbCym4iU+e6cYoQSoYcqVjqo4m5AqrS/Fd AiygP9Sx2sDBJTdiuP6fhZ0Af86hiMgQuBcMdfBlQX0R0FRmixhCull/NCjskNVt 4HgWtvRwWPpM2XuXAvzBaW25N10nTVH2R0oXD9HuxJM+OYMheCTraxMQCE1iVBCK MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 363254794447623812507183276173108828933040 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-01-14 00:19:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-04-14 00:19:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.klopotek.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26218067819713134454399152193111201049707564558307519707649763130393162719842457441407552336984735161331789474896577083676623353261003565072207795725221064120891793664782554057013060602722450876105637933057614751115995154539591671945721581596138602995187563256202588478624305192946753544641298923623310891256064357555453649082588125897134244447530285188689608086651525671689047985470602458782965571948894147998508398423231308839460229160932933165214483965847312095003315930051849716518612399951696915256409237294356770517339626559947842179855458309057032171283136900771282146985757918536665087648514284795185496885811 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 37ad9ed921dc82ddd4a57b3e89cc7d57a50c88c9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'klopotek.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.klopotek.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076009420bc1e8ed58d6c88731f828b222c0dd1da4d5e6c4f943d61db4e2f584da2c200000176fe79a36d0000040300473045022100a5b951e9e0c7b05337b4a0f24dd72d693f42b9f5cb0e05873829a8360960f14a02207bca5bcecc4aa3094e3a20ec379aadc935473f0247563d3d5cfd0772fa00292f007600f65c942fd1773022145418083094568ee34d131933bfdf0c2f200bcc4ef164e300000176fe79a36400000403004730450220702854b0bd84377a9411529344722c779f94ff56219d4346f93663100b930cd90221008181122adcc15abe5f08a1ed7734a430a35f4a0597da9341b4263d6bc492a099 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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