www.bokomo.co.uk

Issued by R3

About this certificate

This digital certificate with serial number 03:94:b6:68:f6:3d:1e:c2:f7:13:e7:86:8d:a6:e0:83:7e:05 was issued on by Let's Encrypt.

With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.bokomo.co.uk

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:94:b6:68:f6:3d:1e:c2:f7:13:e7:86:8d:a6:e0:83:7e:05
Serial Number (int): 311941112588000975503769387522260937702917
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: e4:ff:0a:a5:1b:c2:dd:41:56:eb:54:64:3b:a1:c2:04:9f:5c:78:b4
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 5a:e8:5d:09:aa:cc:13:53:78:da:08:8e:d3:6a:3f:33:22:0a:f2:62
Fingerprint (sha256): b4:a4:87:48:80:64:c0:75:58:ed:56:5e:4e:04:42:31:25:76:ca:9e:36:61:3d:72:d5:99:26:c5:99:4b:1f:34

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate www.bokomo.co.uk

7

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.bokomo.co.uk

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

bokomo.co.uk
live-pioneer-foods-uk.kissdigital.co.uk
mail.live-pioneer-foods-uk.kissdigital.co.uk
pioneer-foods-uk.com
www.bokomo.co.uk
www.live-pioneer-foods-uk.kissdigital.co.uk
www.pioneer-foods-uk.com

Other certificates including the domain name bokomo.co.uk

(limited to 100 certificates)
pioneer-foods-uk.com
pioneer-foods-uk.com
www.bokomo.co.uk
bokomo.co.uk
www.bokomo.co.uk
bokomo.co.uk
pioneer-foods-uk.com
pioneer-foods-uk.com
pioneer-foods-uk.com
webmail.bokomo.co.uk
bokomo.co.uk
www.pioneer-foods-uk.com
www.bokomo.co.uk
www.bokomo.co.uk
pioneer-foods-uk.com
webmail.bokomo.co.uk

Certificate

The complete raw certificate details for www.bokomo.co.uk in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KeLw5786HpF6yeNwpaR
XoAKH14OqyyBZdVP6XHpPocOtLpfOFqOZhV9Yd4XIU6pB5sxqAerxGinnIEl3s/y
HUZCcm7Tc/CvPgmhM6sQWtUSjgP97sheCX4vLwUwlbLh5JGh9l1firBYNRZw93jp
ussKaNtcxx8KhgdLAKxmIdeMyAmMyWFPixpijFR5PMJxLJmzjL0VOmoUsFrKDofd
mbf4VIO2+KCIchWBltaOgfVWJPaFGEY3Vo9EQ661s/MIKa1UN2mYdNSrDCfoiZ1b
pis5bWrgJRharha8jz3K9XePTvhX78K5cGsM2rImNi5VK4zsf/pUZaHWBii4mxI4
4wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 311941112588000975503769387522260937702917
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-04 01:47:16 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-04 01:47:15 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bokomo.co.uk'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26845140641858269469949568538274345576343362994944790117312369796136945396826802394367989584489644964673733479262195130009555041558641887435174904077460433301107915654646663967007696564370752191390843232175859648982606967040097497741724525620265769373116080257312821669730786335957303907933818288671559514369877446172083301621856942397151494177305950823285550947596388402993274599496049668844873447419342173566518150322417930630216217567271617292243493986372205566712581596074711789511840053383385617970881342265641705159729621331004774377191858919367296537283697603803855511524829840638384978656438836754415598319843
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e4ff0aa51bc2dd4156eb54643ba1c2049f5c78b4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (215 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bokomo.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'live-pioneer-foods-uk.kissdigital.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.live-pioneer-foods-uk.kissdigital.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pioneer-foods-uk.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bokomo.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.live-pioneer-foods-uk.kissdigital.co.uk'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pioneer-foods-uk.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb5200000184db07dde1000004030047304502206ecf82968872060a80b0a53321735df7b74208f907c066155028f7933a1ac8280221008308fa6211dd3b1ea00aa6afc80b892de53b753a0fe6cb276a6a4290d290f4f00077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000184db07de3000000403004830460221008083081397d7d8712eba780314e894485e8d4bcfbb0334246a1e00a1eb0cd67b022100924c7a2cfa4addcf3acf1e6b6ecdb570ddbf1065fc70e45ac6d7c4c58488e3a4
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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