blog.icka.eu

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:c5:aa:88:30:fa:a1:88:bf:25:a8:aa:9a:3a:50:c0:a1:d1 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=blog.icka.eu

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:c5:aa:88:30:fa:a1:88:bf:25:a8:aa:9a:3a:50:c0:a1:d1
Serial Number (int): 328599159983774507684113273867840411181521
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: f9:d7:00:3a:9f:cd:78:52:78:09:d0:a9:e4:57:36:e7:ee:bf:67:0d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 90:81:c0:3c:37:3f:fd:fc:a0:c8:88:89:80:15:8d:b9:50:b9:57:9e
Fingerprint (sha256): a7:55:c0:df:86:3d:40:e0:0b:ff:05:7b:f4:0d:92:a9:20:b4:37:77:a5:84:7f:26:94:5f:0b:5f:58:d3:51:35

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate blog.icka.eu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for blog.icka.eu

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

blog.icka.eu

Other certificates including the domain name icka.eu

(limited to 100 certificates)
blogs.icka.eu
puys.icka.eu
forum.icka.eu
factorio.icka.eu
zimbra.icka.eu
icka.eu
blog.icka.eu
icka.eu
icka.eu
zp1.icka.eu
icka.eu
icka.eu
icka.eu
icka.eu
factorio.icka.eu
icka.eu
test.icka.eu
scp.icka.eu
icka.eu
kf2.icka.eu
forum.icka.eu
sentora.icka.eu
test.icka.eu
zimbra.icka.eu
test.icka.eu
icka.eu
blog.icka.eu
forum.icka.eu
forum.icka.eu
blogs.icka.eu
kf2.icka.eu
blog.icka.eu
chivalry.icka.eu
icka.eu
icka.eu
forum.icka.eu
kf2.icka.eu
zimbra.icka.eu
factorio.icka.eu
forum.icka.eu
forum.icka.eu
blogs.icka.eu
zimbra.icka.eu
blogs.icka.eu
www.icka.eu
icka.eu
puys.icka.eu
factorio.icka.eu
test.icka.eu
icka.eu
test.icka.eu
chivalry.icka.eu
zimbra.icka.eu
forum.icka.eu
blog.icka.eu
forum.icka.eu
blog.icka.eu
scp.icka.eu
scp.icka.eu
forum.icka.eu
icka.eu
forum.icka.eu
puys.icka.eu
blog.icka.eu
icka.eu
kf2.icka.eu
factorio.icka.eu
test.icka.eu
puys.icka.eu
scp.icka.eu
chivalry.icka.eu
icka.eu
icka.eu
forum.icka.eu
scp.icka.eu
icka.eu
chivalry.icka.eu
test.icka.eu
forum.icka.eu
blog.icka.eu
blogs.icka.eu
factorio.icka.eu
icka.eu
kf2.icka.eu
chivalry.icka.eu
icka.eu
forum.icka.eu
chivalry.icka.eu
kf2.icka.eu
forum.icka.eu
blog.icka.eu
scp.icka.eu
chivalry.icka.eu
kf2.icka.eu
icka.eu

Certificate

The complete raw certificate details for blog.icka.eu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArjKp6zfnm2geMPvqHI/w
rZ0dbeM0LINyTjAEAYRaLVwEI4hnsXUVDRFnnhab/SQen6z46Oy9+lUj7qR88s7+
RRm9VvhLJKTsU6lg04KvvqePfVvTsfyWHkyeMg9509C+14RXO3wce0Gm4o5uPa4w
jRicmBPbBWIKYC06s2fm4ju1q6eegZCcB7Cj5bAEWBdg+VqXthtLHBrQIMuuphJv
Fl82rCLlj2IjnwwgoK2Xfm1xKeiYK1fW22eVz6b7xPVu0nDpPzUSIk6duX3y3AyM
QcMbMw0swY4Bdf8Z+5mMkBDxY+T0tgGcDkKkfT6u+9z2525OYOxWPs17KAT3E8MO
GRLSOU/F+Kb1VAMGApKFi//4iMVRwgb/RIY+oSvN6wEPDmmseGEXi2FZWU8LvbEJ
LrhWMnq8+rxzsgQ/vOw8MF0UMkmU5TnUvdVw9FkyRD5MR7q3Yal4wnQndIHweuw3
0xRM9+7oGY4vnXvKQQaI292OvycF6V+Jc5eHSZC9l4VR6nVGklLQk4tFUt00JE7A
UYamG5AcBphPpgK0YeyJ0hzIDPxP0yVLkEH34indcJvSGmp5bbT8vIKv4+TEGDze
s/SOPi1cCBlw3qfzxPve33tt/tR+qNvGNaE10xP6v6PZisaxUOQdMWDFU8MMkwPu
xatwse6mnsQvj522NY3VBI0CAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 328599159983774507684113273867840411181521
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-31 01:01:22 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-29 01:01:22 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'blog.icka.eu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 710665450836967106724760150181988313897905765597986290588810046286975876503419403763039973114493707016143168708145545236723544734585434978464331545058831152678764468669909031071826547852113430015462821182000796317327511218461645684513844162512490314508126548288807984138018394945117404113619210938401085931346029380178784814670057365480015385792961657402222532421875415293309832035740863007427610353371707337217798292245037320085328914701722033394586450846227110594375879781896175335803363016357592617359937076577527899913527768791869798699441339724196491698681983403476436484050172507060587925831770520055057638682565120726334275688670669512416743387153636127387670062794699791519889298659010026108339236444623784675053875729048900863665169778077403607419446573156495071370316787117379658062430282709796112164463917673361207014506160186880872972989771694325541351527889645811302757279854654980971398354326509007782924078711087144033871723353689636006007609187925468226916128847554642834026760257293851052730016355828462246096159224575100240608369507730317521218778215117187354084479320545496767090965341663997020263060703564535517159862493269089290944716864021244865429213961476353924345509508437755894248139586053215650735833023629
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f9d7003a9fcd78527809d0a9e45736e7eebf670d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.icka.eu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016e1f8bc05f0000040300473045022100b532f970adf9276716c518625057b83ee1e6d191239fb9cd05fa53615d94aa4c022045a6319d20e5980f06782ed1a7b5c6aa6929a82e18219cd4bb56c2b8d2d9abe7007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016e1f8bc0520000040300473045022100f92d3d47820e2eab2b35414e68fa36ea56fd7608e8e2805d2311b4dbaa9c8e930220685698bd7a6ff86d930960979cd1b1e5379f8f95909b9480df488e7cec7acc7a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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