www.mykot.be

Issued by R3

About this certificate

This digital certificate with serial number 04:1f:00:9f:c6:0e:93:c8:52:23:0c:08:f9:e8:8a:e5:b0:2c was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=www.mykot.be

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 04:1f:00:9f:c6:0e:93:c8:52:23:0c:08:f9:e8:8a:e5:b0:2c
Serial Number (int): 358998726693862618259171807363830831755308
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 84:fd:da:43:2d:5f:8e:f7:b6:f1:2c:21:30:27:c2:10:c6:5e:6b:ce
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 56:58:5f:19:8c:27:95:ba:a5:6f:42:bd:eb:a5:df:11:70:7b:7c:b4
Fingerprint (sha256): 9a:de:62:0c:9e:dc:c6:50:a1:1c:bb:bb:c6:fd:f5:b4:92:de:ad:fa:46:db:91:b9:5d:3f:4d:51:95:5d:17:00

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate www.mykot.be

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.mykot.be

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

mykot.be
www.mykot.be

Other certificates including the domain name mykot.be

(limited to 100 certificates)
mykot.be
ple.mykot.be
*.mykot.be
brik.mykot.be
ple.mykot.be
brik.mykot.be
brik.mykot.be
ple.mykot.be
mykot.be
mykot.be
brik.mykot.be
mykot.be
ple.mykot.be
ple.mykot.be
mykot.be
ple.mykot.be
brik.mykot.be
brik.mykot.be
mykot.be
mykot.be
brik.mykot.be
brik.mykot.be
*.mykot.be
ple.mykot.be
www.mykot.be
mykot.be
ple.mykot.be
ple.mykot.be
mykot.be
brik.mykot.be
ple.mykot.be
mykot.be
mykot.be
brik.mykot.be
mykot.be
brik.mykot.be
ple.mykot.be
mykot.be
ple.mykot.be
mykot.be
ple.mykot.be
*.mykot.be
ple.mykot.be
www.mykot.be
mykot.be
ple.mykot.be
www.mykot.be
brik.mykot.be
www.mykot.be
brik.mykot.be

Certificate

The complete raw certificate details for www.mykot.be in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3oC/UE7EPjthH7yVZ45d
HVW85OQ1JBi/lS5c2kv7T8eKUIIIjcJ1VXB/N+aM8tqmMsUr+LBeoEB69hov5Tfc
1+IyAxBS+96fcmdHBQ5zKm43y4kNyjvO1xOF9/j220IrXYsbV7vR4P2Pjs3eBaVT
5C4YDHew+iTPyP1pVRq5kdgo8dsUCC16wQsx9oa689/TjyZQIEXL7A54Lmm5819E
I4r0a1Bqi4WlzzW4a/VUGfb2lLg/AtytyOrBZlE54jbkkKqH3uN/w0yu8kyc3Mrs
kLLWmq/YqFiExTl/89X+ajSgDg2IT1TcUK4sAnVb5RdzmMrrYgaYYF2PFdwRyxdP
yd09X+PbXLNpgdSSHJI7h1d4Rhx4LquTC3N3v7OhBrpOncu7Di4HmsSJp6xaoBQK
gVTGvjpNFkBbttSvh8pPTSg526b08e4UrygUYIAf0d31CQHWd3FRodWZLZNhj0am
1NT2qMpiYkbS7XYAyYCmSQq16mVo1OaEWW4VDPI4vyhBB2WqeW5+4ag42/jzVYXC
3soUQhk0eNnKiWK0ark1Oqay4HqX4RquOCbnWnUFdOzibRPi784f7mNqNcF+O409
faENqncEWdz046ixxIs+cRcL1gB099zMZ9ZV7X9Ng+J+10tfsmcgF8+sfeBSMfq/
Yko5vfqploOrIz2JTZo1A0kCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 358998726693862618259171807363830831755308
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-07 21:50:09 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-05 21:50:08 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mykot.be'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 907732714494357038635795590880987432754298522651513303325433209453770421099936987684437304730272325741952837080133636450325668718246497634655612622690441591889792992337559673138063299614174968239809338275381551569471629999713275127512042676498650702652268791807455193850901082677189887747234937648636268030440715708585553966647046139043355233007940896176991361542708599949733381894057602425948082902568678211267345679383126823797853600300588584324646545000177696377596569552196349352035063587330669880358449529748645772519188897559980133002808170640385479888978179933400306443740248547744397344872219305652359538991968279232412816203118721253379446502353783480108276687754143498739829539003815680307519992835765752113554300128342053093923333768887361840086400197384951420984169726703420146619045914136532033857213403819460382800574142455728908136464603872279939392459405852508217261998328874942670959803489062945556748148284497961823361317901983837910193312331250249514387715018219902358795298816907161640196448739781223942332521305968609224604411322269223680284824841461753956920485077422595167351506168035170463839805238618037606630896972879204686124507377005312832843711076086690074833165561405278489421632209961639207047215252297
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							84fdda432d5f8ef7b6f12c213027c210c65e6bce
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mykot.be'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mykot.be'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e1b1c19ce0000040300473045022031f507548e65480f4e45121bf6a86f0c56777f7f9250946ef08ad72c0f345e0f022100b5e93f14da499b7916b4dd21183c3e87eeac4c42e3b9af037dadb8f08b5716f4007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e1b1c19cf0000040300473045022021a2d1cb6d150179350c949f2a4083f194532bcccf1afa780052f23c9f98be3a022100ab031818d90ab098cb5ac0889150c31072c3c5859d1f78484a9310bd735e75db
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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