*.sukorejo.com
Issued by R3
About this certificate
This digital certificate with serial number 03:65:61:6b:9f:85:62:ca:fd:0d:dc:0f:bd:b1:aa:dc:2e:4c was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=*.sukorejo.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:65:61:6b:9f:85:62:ca:fd:0d:dc:0f:bd:b1:aa:dc:2e:4cSerial Number (int): 295834870781121572339905649125905846251084
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 09:48:dc:32:e5:3b:b5:6c:88:72:ec:97:e2:22:98:71:04:22:1f:76
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 3a:de:93:1b:9c:74:90:16:19:df:5c:8b:81:62:c8:12:7b:d0:a4:cc
Fingerprint (sha256): 9d:0b:c5:b4:ed:32:9d:3c:0b:62:7e:59:a0:54:06:f0:b2:62:71:27:37:ce:f3:90:73:0b:2f:40:03:20:a9:41
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate *.sukorejo.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.sukorejo.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.sukorejo.com
sukorejo.com
sukorejo.com
Other certificates including the domain name sukorejo.com
(limited to 100 certificates)
jakarta.iksass.sukorejo.com
pragaan.iksass.sukorejo.com
sukorejo.com
bali.iksass.sukorejo.com
sukorejo.com
sukorejo.com
banyuwangi.iksass.sukorejo.com
iksass.sukorejo.com
banyuwangi.iksass.sukorejo.com
haul.sukorejo.com
surabaya.iksass.sukorejo.com
banyuwangi.iksass.sukorejo.com
surabaya.iksass.sukorejo.com
sumenep.iksass.sukorejo.com
sukorejo.com
sumenep.iksass.sukorejo.com
iksass.sukorejo.com
sukorejo.com
jember.iksass.sukorejo.com
pragaan.iksass.sukorejo.com
iksass.sukorejo.com
mahad-aly.sukorejo.com
bali.iksass.sukorejo.com
mahad-aly.sukorejo.com
jember.iksass.sukorejo.com
*.sukorejo.com
pragaan.iksass.sukorejo.com
jakarta.iksass.sukorejo.com
*.sukorejo.com
iksass.sukorejo.com
mahad-aly.sukorejo.com
situbondo.iksass.sukorejo.com
p2s2sukorejo.meulabohmart.com
mahad-aly.sukorejo.com
sukorejo.com
bali.iksass.sukorejo.com
bali.iksass.sukorejo.com
situbondo.iksass.sukorejo.com
jember.iksass.sukorejo.com
jakarta.iksass.sukorejo.com
surabaya.iksass.sukorejo.com
sumenep.iksass.sukorejo.com
sukorejo.com
situbondo.iksass.sukorejo.com
p2s2sukorejo.meulabohmart.com
pragaan.iksass.sukorejo.com
sukorejo.com
bali.iksass.sukorejo.com
sukorejo.com
sukorejo.com
banyuwangi.iksass.sukorejo.com
iksass.sukorejo.com
banyuwangi.iksass.sukorejo.com
haul.sukorejo.com
surabaya.iksass.sukorejo.com
banyuwangi.iksass.sukorejo.com
surabaya.iksass.sukorejo.com
sumenep.iksass.sukorejo.com
sukorejo.com
sumenep.iksass.sukorejo.com
iksass.sukorejo.com
sukorejo.com
jember.iksass.sukorejo.com
pragaan.iksass.sukorejo.com
iksass.sukorejo.com
mahad-aly.sukorejo.com
bali.iksass.sukorejo.com
mahad-aly.sukorejo.com
jember.iksass.sukorejo.com
*.sukorejo.com
pragaan.iksass.sukorejo.com
jakarta.iksass.sukorejo.com
*.sukorejo.com
iksass.sukorejo.com
mahad-aly.sukorejo.com
situbondo.iksass.sukorejo.com
p2s2sukorejo.meulabohmart.com
mahad-aly.sukorejo.com
sukorejo.com
bali.iksass.sukorejo.com
bali.iksass.sukorejo.com
situbondo.iksass.sukorejo.com
jember.iksass.sukorejo.com
jakarta.iksass.sukorejo.com
surabaya.iksass.sukorejo.com
sumenep.iksass.sukorejo.com
sukorejo.com
situbondo.iksass.sukorejo.com
p2s2sukorejo.meulabohmart.com
Certificate
The complete raw certificate details for *.sukorejo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9jCCA96gAwIBAgISA2Vha5+FYsr9DdwPvbGq3C5MMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMzAxMjQ3MjdaFw0yNDAyMjgxMjQ3MjZaMBkxFzAVBgNVBAMM Diouc3Vrb3Jlam8uY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA 1SpJlkFjF3KnNlMWWNK6xzTcQY2YpSK96nmU9bvJXpqBifT9aJyxw6KB/o/mQj6L 5WRJAYoOjybtDEsVR/eIvqjhkRzj+3qUunuNzQYsSrnBTif1M18UhNwuZDTpMfMv yuSnuFXKaQsLXpWqhPA3pd0qZcDzgeqJ9dPUwCsMbKzMQMVI6OxpvFh6NLPbJplJ XB4SMPFcn9EWd4vX9Lu8i9uUHtEBowF7CVSg42256obUzND6Yq29Hg9S1c2+SKVY 3lcjh3XPj0qCTkSWVoyeoR14SeUlmtTzbE0+0Bl9wyvm+v72FQlf+lXVKp7cvImS s7bj7JQ3RQEgkbzWRlN15QIDAQABo4ICHTCCAhkwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBQJSNwy5Tu1bIhy7JfiIphxBCIfdjAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzAnBgNVHREEIDAegg4qLnN1a29yZWpvLmNvbYIMc3Vrb3Jlam8uY29tMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAO1N3dT4t uYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGMIHwECAAABAMARjBEAiAPr1V1 jJpp+2ERILzlmwvgsBbeoEcH19ln/Pc4QpuR2gIgNur6U0tAccnfo+keOOqKhehm i3nAOJ2t+GVP6bois8YAdgBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+rOdiE cwAAAYwgfAX3AAAEAwBHMEUCIAoLXytqSo8D3WKkkpHY2bgc/co4YIielmfEe22M ODiqAiEAinljCDS5fhLOL9FWya7m0qMohkDa1YCacK5nWvHrJfMwDQYJKoZIhvcN AQELBQADggEBAD35RlvmHaqwT92LXVoYPi1p6If0ahSKS6SqeLTEHnVy8HxzDbKc zt+lcCYeKGR2uvl6sgd1iYUS58u9d/HDnfy4Hqz0WE2Bc9KxrwT12WjLFyE0jA+l fAyxFx2MjtAyYyH0Kjtveswwg75xIOo5sHJB4qRY3+gyrhyb7mvh3A4msfEBzbkC q8GQvrD5vqkX9rnmkG2x0k7WnO4mCXaXS2EI9Ppk/n0+aecD3QPbUax+LeqCIcx0 dVQ4q5t55PHjjFGKbvWQ8IasJmE313KM90/gyweo5RAZBIVnyhBQuTjMzFYjZD/I T3z6qjf1YEwvHXFrRUeBu9+1MnqQ7soTbCc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1SpJlkFjF3KnNlMWWNK6 xzTcQY2YpSK96nmU9bvJXpqBifT9aJyxw6KB/o/mQj6L5WRJAYoOjybtDEsVR/eI vqjhkRzj+3qUunuNzQYsSrnBTif1M18UhNwuZDTpMfMvyuSnuFXKaQsLXpWqhPA3 pd0qZcDzgeqJ9dPUwCsMbKzMQMVI6OxpvFh6NLPbJplJXB4SMPFcn9EWd4vX9Lu8 i9uUHtEBowF7CVSg42256obUzND6Yq29Hg9S1c2+SKVY3lcjh3XPj0qCTkSWVoye oR14SeUlmtTzbE0+0Bl9wyvm+v72FQlf+lXVKp7cvImSs7bj7JQ3RQEgkbzWRlN1 5QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 295834870781121572339905649125905846251084 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-30 12:47:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-28 12:47:26 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.sukorejo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26909611676046942883546113716156735671248385934852045878344940550355939820994788212475894821530625712725098800282527746674400565506154255718502443347990597191002501401991406989717644458649391016615485039729430268291264702042465755838219615019667997133577171031358685018164994179960668085892073894526943410765722108454629043651336649441842636890199189965474933487402523501072483532441901694456875455383482076523748682797425937843671328245577379327823288173432403335448697874003597632399839632650761681303472597929401884686011783837464314130583342042483808089710630032216062610257105545472141962670089559327894284760549 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0948dc32e53bb56c8872ec97e222987104221f76 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sukorejo.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sukorejo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c207c0408000004030046304402200faf55758c9a69fb611120bce59b0be0b016dea04707d7d967fcf738429b91da022036eafa534b4071c9dfa3e91e38ea8a85e8668b79c0389dadf8654fe9ba22b3c600760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018c207c05f7000004030047304502200a0b5f2b6a4a8f03dd62a49291d8d9b81cfdca3860889e9667c47b6d8c3838aa0221008a79630834b97e12ce2fd156c9aee6d2a3288640dad5809a70ae675af1eb25f3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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