knightswap.financial

Issued by R3

About this certificate

This digital certificate with serial number 03:37:53:63:b9:03:99:4f:11:bc:aa:11:1e:c0:b7:dd:80:e5 was issued on by Let's Encrypt.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=knightswap.financial

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:37:53:63:b9:03:99:4f:11:bc:aa:11:1e:c0:b7:dd:80:e5
Serial Number (int): 280163231689502406354248251920242395939045
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 81:93:14:4e:a0:79:55:ec:c7:14:a8:8f:94:8f:1c:ba:8a:25:0a:16
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 1b:47:13:0f:9d:31:44:d2:83:23:fd:f5:3e:37:32:cc:e9:3b:e5:4b
Fingerprint (sha256): a0:d6:d8:22:55:b9:74:6a:19:76:8a:5c:02:02:dc:0f:a3:b9:0b:66:37:57:e8:1c:68:6d:64:5a:55:eb:2a:21

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate knightswap.financial

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for knightswap.financial

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

knightswap.financial

Other certificates including the domain name knightswap.financial

(limited to 100 certificates)

Certificate

The complete raw certificate details for knightswap.financial in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIE9DCCA9ygAwIBAgISAzdTY7kDmU8RvKoRHsC33YDlMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDAzMzAwNzEyMDNaFw0yNDA2MjgwNzEyMDJaMB8xHTAbBgNVBAMT
FGtuaWdodHN3YXAuZmluYW5jaWFsMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB
CgKCAQEA+OJHsGuAqjzCM34w2s9VPpycbVPz1L77JPwDrRQTBGyluL3MuyUdnz8X
xG6CopiwRMC0zTF+95UIOrRsJlwj5i+hmli8oO29cWSV8GEhKSEWditd0icISP8h
dlixDsEMEpyQ+MvWPemsRBFgjoCq8W/MtJ//DY1wb/+TS4Ie31p7MxzFQEmGSfvP
joAYwLD5v4otxJNT3ACk5yVB2VXJ9jC7hwqq6QoIbesu/j/uWj/fc2zn+NBnP/rj
XuUcwwmGWhJ7LPPO4m3kB9dRxs2JtFpr/dd2elY+E1/LzU7gf6oON+YxPbq9Lffe
JUS34OVxb2CyUmn8UGhMRc9m+RWHGwIDAQABo4ICFTCCAhEwDgYDVR0PAQH/BAQD
AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA
MB0GA1UdDgQWBBSBkxROoHlV7McUqI+Ujxy6iiUKFjAfBgNVHSMEGDAWgBQULrMX
t1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0
dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVu
Y3Iub3JnLzAfBgNVHREEGDAWghRrbmlnaHRzd2FwLmZpbmFuY2lhbDATBgNVHSAE
DDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2AEiw42vapkc0
D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjo5qbIEAAAQDAEcwRQIhANxWsrtG
zPfClf+JXsGhNJB0IYbPPYNrLT2TOvbWF4xyAiBd+U/BiWcjsR5LZFphlaop2cIU
dCE1Zl9FBc2idNY1OQB1AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfY
AAABjo5qbJ4AAAQDAEYwRAIgeLyicWfHLpVvxukiU+rZkFsH3KR6811aP4BSqk6d
OrACIDIOoIjwfLKrkET8HTmb+YiJyszYddkQ+5kiSDn8zhbRMA0GCSqGSIb3DQEB
CwUAA4IBAQAm2Efs7XDAXZL9uknrnBETsgo/7ZHsI7i1DyFbhRmtERyDfkZFChiH
eMGM1qR3LPFh7cCI4cgsKIQuLzXTG2KzUWKyRyeXlZ67dHfplSqG6RnqMM6gp3eS
1yvTWX4ReWWjwyQAhEz8+7Pm2AoJD7kjgc0oq+QfIdySSTBGWOmazqldzSdpGIGL
RE96aFkRVTShda7n51b45n6cFu/Nj1PmHo1yzmDKOfeGvr+S5HeJ/+kFXCr9vwhM
VYIPKrshD+soVNBR1RgHBls59XV3Hf070+bspKFSVC/Soud9jJ1df7PDViiFbDpQ
F1N7474D3DQzUpjULJ0GsbJDOW8DaeCy
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+OJHsGuAqjzCM34w2s9V
PpycbVPz1L77JPwDrRQTBGyluL3MuyUdnz8XxG6CopiwRMC0zTF+95UIOrRsJlwj
5i+hmli8oO29cWSV8GEhKSEWditd0icISP8hdlixDsEMEpyQ+MvWPemsRBFgjoCq
8W/MtJ//DY1wb/+TS4Ie31p7MxzFQEmGSfvPjoAYwLD5v4otxJNT3ACk5yVB2VXJ
9jC7hwqq6QoIbesu/j/uWj/fc2zn+NBnP/rjXuUcwwmGWhJ7LPPO4m3kB9dRxs2J
tFpr/dd2elY+E1/LzU7gf6oON+YxPbq9LffeJUS34OVxb2CyUmn8UGhMRc9m+RWH
GwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 280163231689502406354248251920242395939045
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-30 07:12:03 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-28 07:12:02 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'knightswap.financial'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31418682475938003102683971410211481918394466658306815697471041302642020045534007090751002102809182258040435639704767724941133584019731600663182867404850328060206076569061113541074249420925899750312794197376006964069494151261740998491043495557268839595290019359573395303219041730357738226583825757159985693910870332503774213510085675277861223446681818701480617511068475748294455490093399276858133525451115770191991919667857747443861076454931749544617918808104625549710925128240840353796266990973725106712581241846082886582714712551393433913145334048726052784321322486423668607867477456324751615567884455375546095077147
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							8193144ea07955ecc714a88f948f1cba8a250a16
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knightswap.financial'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e8e6a6c810000040300473045022100dc56b2bb46ccf7c295ff895ec1a13490742186cf3d836b2d3d933af6d6178c7202205df94fc1896723b11e4b645a6195aa29d9c214742135665f4505cda274d63539007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018e8e6a6c9e0000040300463044022078bca27167c72e956fc6e92253ead9905b07dca47af35d5a3f8052aa4e9d3ab00220320ea088f07cb2ab9044fc1d399bf98889caccd875d910fb99224839fcce16d1
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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