demo-dev.okra.ng

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:32:2c:f4:fa:9f:0d:a9:20:15:32:8c:23:bb:ed:90:c4:2d was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=demo-dev.okra.ng

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:32:2c:f4:fa:9f:0d:a9:20:15:32:8c:23:bb:ed:90:c4:2d
Serial Number (int): 278410734176779588427173137256218553795629
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 4e:54:89:f9:48:c7:91:99:fd:57:43:c0:07:ca:d3:92:14:10:18:a0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 6e:09:48:6b:e2:0d:33:f6:54:fc:72:a5:60:43:9a:20:d4:b1:ad:45
Fingerprint (sha256): b2:4f:6a:0c:72:84:38:d6:0a:47:9c:35:df:29:23:6b:06:b5:2a:03:f3:e1:30:61:c6:78:6d:2f:83:e0:eb:85

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate demo-dev.okra.ng

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for demo-dev.okra.ng

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

demo-dev.okra.ng

Other certificates including the domain name okra.ng

(limited to 100 certificates)
okra.ng
capture.okra.ng
okr.to
dashboard.okra.ng
support.okra.ng
staging.okra.ng
dashboard.okra.ng
demo-dev.okra.ng
staging-dashboard.okra.ng
docs.okra.ng
bourne-status.wifinity.net
bourne-status.wifinity.net
okra.ng
dev-dashboard.okra.ng
dev.okra.ng
cdn.okra.ng
demo-dev.okra.ng
okra.ng
okr.to
dev-api.okra.ng
demo.okra.ng
widget.okra.ng
okra.ng
cdn.okra.ng
okra.ng
dev-dashboard.okra.ng
staging-api.okra.ng
okra.ng
okra.ng
get.okra.ng
staging-api.okra.ng
bourne-status.wifinity.net
okra.ng
get.okra.ng
bourne-status.wifinity.net
app-test.okra.ng
staging.okra.ng
support.okra.ng
okra.ng
dev-status.okra.ng
demo.okra.ng
dev-api.okra.ng
bourne-status.wifinity.net
staging.okra.ng
dev.okra.ng
dev-dashboard.okra.ng
staging.okra.ng
bourne-status.wifinity.net
widget.okra.ng
bourne-status.wifinity.net
bourne-status.wifinity.net
dev-api.okra.ng
support.okra.ng
dev-api.okra.ng
dashboard.okra.ng
bourne-status.wifinity.net
staging-dashboard.okra.ng
dev-cdn.okra.ng
staging-api.okra.ng
dev.okra.ng
dashboard.okra.ng
docs.okra.ng
widget.okra.ng
demo-dev.okra.ng
dev-dashboard.okra.ng
okra.ng
dev.okra.ng
support.opinionbuyers.com
staging-api.okra.ng
dash.okra.ng
demo-dev.okra.ng
dev.okra.ng
okra.ng
debug.okra.ng
staging-dashboard.okra.ng
dev-api.okra.ng
okra.ng
docs.okra.ng
bourne-status.wifinity.net
demo.okra.ng
okra.ng
bourne-status.wifinity.net
demo.okra.ng
dash.okra.ng
demo-dev.okra.ng
okra.ng
bourne-status.wifinity.net

Certificate

The complete raw certificate details for demo-dev.okra.ng in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAt0GY+7FtFZ7aMiWwQ8tf
qtl/QXKvbef/itFquwdtVuCK0foL3o+ECeGY4ToQiguZY4JZYsCUoLLvJ14k2WG3
OT8TJ1o4sHLzuyAiEzgoj/8335sPu+gxEm95HLK54eKnt5RB/zm+d1cx6f2xylwI
+2IGGQJqv9aLSQ90H4Okl3MibskwhYYe4aY6DVXRrFr0fxvc9KOXgdN9KJ4aTzDY
sQLYhMQDqI6Lii0wOcg57VqkgrKoR3e+ym7XNp1En8pKoEOZzsMNeGSlo3m88dx9
r/4oLf7U0RDYe7Ya3FnuTNyMDxWlGnDW5IdK0jvssnG9QvnqhXvqtKlyCgajVwmg
7wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 278410734176779588427173137256218553795629
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-15 11:38:32 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-14 11:38:32 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demo-dev.okra.ng'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23133957186283067651108596235578557622428137638748359361024981954225509285480754707169982480420516154098190446156594189057281294846482612189687309306023538284960438143087439755890213144964430835063024905575507114116657261162069468404916295115814111598783056926263822938629821487288739356390991100926991432993069020015527615780250989247776709525186414372082930607563280153192087190615455177727921208672925037381506449144811119662975446238639644943328932731697265211033035991709812194297533829290266031024358663503742563638678100193585409671737176118102872347476893581904007619202948620134849199136289028117716554850543
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							4e5489f948c79199fd5743c007cad392141018a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demo-dev.okra.ng'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d34ee905a00000403004730450220529fbc06210d13f1a066e64c8b56cf5eacc8ae3eefcd31fa88ea7f3a3922b9cc022100c035d3d884907091c85219ea7095c6d036c13087dc14cd724a3b754dec7786bf00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d34ee8e880000040300463044022018c0f71447790f77b747658852bde4c7e460284811a8708a1efdcc77be1f25d10220081d7014dc01c9b5c309306bf9effbb334bcb73504097bd374e5997537800bca
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		002fb3e5869fd3a93001b4c7be61e26f94330c18162ed91ad1cc9475dde3e2c6fb252e3020753fcaeb97ee961497b85f4ed6ffc4cd92c7a20979cab71d34f35cde17d9561e95698b14d665181ad95d92f480f9044d4e9e746f4bfd67574bc0f7eea5c500f4cef00bb22d8394ab5ad2dbe658d1aba6cf1308754556acf48e8f9e2af4ce027270644d979835b5df7a1a5a9e7d7781ea70db15f917c669c6d9a12f69b4f950528060680869f91844221fb0e56a63665b88e35b3b8b1be7985217459a3b969159c670900340a7e67a34276296d60948eddccb7b7d2ab8dead3972335dfaca2c74531fd9180c3767e01b17fc6b75cb818929ec7995a0066ff4525d4b2f