1oaksl.com
Issued by R3
About this certificate
This digital certificate with serial number 04:e2:88:80:a2:dd:79:53:e5:06:62:6b:10:9f:33:16:6a:af was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=1oaksl.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:e2:88:80:a2:dd:79:53:e5:06:62:6b:10:9f:33:16:6a:afSerial Number (int): 425534401575895049161663763830508831009455
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: f4:94:94:3e:48:c5:77:29:93:32:d6:2f:43:37:8f:c7:61:1d:b0:a7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 0a:5a:0e:7d:fe:e8:03:4a:e0:a5:82:86:28:bd:f7:83:af:50:62:8a
Fingerprint (sha256): a6:0c:19:f7:db:69:87:18:43:ba:88:eb:71:cf:62:aa:a8:3c:97:46:4a:29:9b:71:25:6a:70:74:11:2f:7d:8a
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate 1oaksl.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for 1oaksl.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
1oaksl.com
Other certificates including the domain name 1oaksl.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for 1oaksl.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFGjCCBAKgAwIBAgISBOKIgKLdeVPlBmJrEJ8zFmqvMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA1MTQxMDU2MDVaFw0yMzA4MTIxMDU2MDRaMBUxEzARBgNVBAMT CjFvYWtzbC5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCwcDMb M5Y20/pD5XbWucYM9OSpyJ4FW8y6AbNXdKYegMcPhO0vjvlzndTDJOUKPBMciHMX Mf5BnhH7DdxdyrdU2tO1/+f8/+H3aW3XC9EA6bWXfmQ2S0XELmKKZvZlZhVz+hGg nPL3Z04ANh4QDXa6IC+Yczx69UM8D7sXNUSaKDhUHOWSS5hf9V4A4jdg2KX2scLN yRgWk4vUTe4VPDL1gZth+5199jja7D1aurcSvVf2u5BU7R+NcoTMWxT6TAZ69vuv B5tEP7nHoT54P59g42FFx+VluQbmY4OxrkzPJf6F7KOlPI/BNzBd7QMaBTtqG21/ fX4R5xK3B1zCwasTAgMBAAGjggJFMIICQTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FPSUlD5IxXcpkzLWL0M3j8dhHbCnMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMBUG A1UdEQQOMAyCCjFvYWtzbC5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYB BAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5v cmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdwC3Pvsk35xNunXyOcW6WPRsXfxC z3qfNcSeHQmBJe20mQAAAYgaHi95AAAEAwBIMEYCIQDwJD22D5hSttlpUGodtKlf 3vRD4If025SiS6Xlszoo9wIhAJfw4zFev0YoRhPDaqVQyOaKOdVw6sdvOW42xl85 UEN0AHUAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGIGh4vgAAA BAMARjBEAiBglevKZ6/lPD8hylHPCNyNGB1nbXBnKuD8V+KjkKroyQIgHvWuFiWn uvVTkmQTJGVyB2F0BfzcXX5x+izxC+0gsJwwDQYJKoZIhvcNAQELBQADggEBAEyy fLe70PKQS6+h0v5qCI5vKYDXbN27Gfy7k7q9jC1cQX6TyHa/1okhm5RbDjh6xV+3 VDy9YYSV8FwKxGi0H7mtrGruVAWAzLbqS6Rcdw9GFcvLctTKvEfcDqkYjYUUn9Wz JaudA/VMH4IOzFqSaY93ccsqgIt6EQT3dFnnPwZK5DM9h9G+KWcwf2U8lSAzL7h5 8W2LkH1vffy2Wm0p5gXatjv33UbG/rSf2lEk75yvsUhp6vsKaZ0dvn1QFWui83IE HrqLA0Sj051m1FGHa+SNAjYK674NJUe9MkduQxSu3XzppT7Zd49jBJkooymIvKtF Z7PpBBO+m2up9J9cKwo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsHAzGzOWNtP6Q+V21rnG DPTkqcieBVvMugGzV3SmHoDHD4TtL475c53UwyTlCjwTHIhzFzH+QZ4R+w3cXcq3 VNrTtf/n/P/h92lt1wvRAOm1l35kNktFxC5iimb2ZWYVc/oRoJzy92dOADYeEA12 uiAvmHM8evVDPA+7FzVEmig4VBzlkkuYX/VeAOI3YNil9rHCzckYFpOL1E3uFTwy 9YGbYfudffY42uw9Wrq3Er1X9ruQVO0fjXKEzFsU+kwGevb7rwebRD+5x6E+eD+f YONhRcflZbkG5mODsa5MzyX+heyjpTyPwTcwXe0DGgU7ahttf31+EecStwdcwsGr EwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 425534401575895049161663763830508831009455 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-05-14 10:56:05 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-12 10:56:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '1oaksl.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22273269375550747231614551324590480416940173924919093231683620299143361271982851771044860437898814731728652058749983370539714766529655719834965723027824271266923798002930981874053483799326558130897647024436474082444025709126328062273756618034934433942532880272187866595418910662298904940081208813639697967987893677975273453639029675816920200985839461351562996113590452868340865396982540155345835328412346634850511397270365568875594582337174344067195174021113473451442763720226194287221479109429126439276631978975834198515621953120241881427816219125056938032920342564424071195741638247569919989358777513680864417000211 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f494943e48c577299332d62f43378fc7611db0a7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '1oaksl.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb499000001881a1e2f790000040300483046022100f0243db60f9852b6d969506a1db4a95fdef443e087f4db94a24ba5e5b33a28f702210097f0e3315ebf46284613c36aa550c8e68a39d570eac76f396e36c65f395043740075007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb52000001881a1e2f80000004030046304402206095ebca67afe53c3f21ca51cf08dc8d181d676d70672ae0fc57e2a390aae8c902201ef5ae1625a7baf55392641324657207617405fcdc5d7e71fa2cf10bed20b09c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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