www.kvtco.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:68:18:48:88:2a:6c:7e:7b:97:d8:8e:05:97:70:76:26:cb was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.kvtco.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:68:18:48:88:2a:6c:7e:7b:97:d8:8e:05:97:70:76:26:cb
Serial Number (int): 383870787965860105486817899458673658701515
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 24:5e:e9:f5:80:5f:28:5a:2a:73:54:09:4b:38:ff:9d:0a:87:ef:dd
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 54:05:03:b5:ea:7e:8c:9b:50:98:56:fe:ce:79:e7:cd:c6:45:db:09
Fingerprint (sha256): b9:90:81:21:c2:ee:b6:a8:dd:9d:07:a2:7d:f6:88:bb:dc:41:2e:41:e1:d9:bf:4a:1f:6d:44:9d:de:c7:d2:c6

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.kvtco.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.kvtco.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.kvtco.com

Other certificates including the domain name kvtco.com

(limited to 100 certificates)
www.hotbun.com
austriamma.com
kvtco.com
duilio.org
fortworthjointpain.com
carmenopera.com
telefonando.com
www.kvtco.com
www.kvtco.com
newmomzone.com
kvtco.com
www.kvtco.com
www.kvtco.com
crisprbiotech.com
kvtco.com

Certificate

The complete raw certificate details for www.kvtco.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwugUS2kX8JKbonfat9qf
XX/qrlayZu7i4ykdaNj+0erPEUI5/v7pxtVyyOC29/kTgICTL8UdG+nAoLXFiFHX
NUqPow0KbKlF8iUAQ8DWYK5xfgTkPaEqshrPe+KB/3yq6/zBNugw2jJNjqnHCUiH
uRt9d8bhoADIbMkJCGyeSHHwlQ7uUuuSh1A+x2Jy315xKVvUawNt+e+Tkfz1mtX1
d9TPvWMJFGtXYtzvDxBWGoiq5AWdy8OIbsBvJ1JyCQT89Ak9JVf7kVLnrlHh278l
pQ8BW9ApiQlAs5Mvv3TvDdh+InLP1ppN7ARVpFUVwue5R/5PrVQVyCLDEuWJTVQL
FWUPk1+4rj6Q3I5dOOH0GmoX8/VuS8/yaJnNiFUHYFazvQvbSg3aKpSi9E0rNHiS
Xd8pdDM9Z7qeabcWtUbblfQfnglh9PcSWPMqc+t/ViZcyFHW1p+EkrTOXzR75Ltd
2QJo9JF2YAZWBgQv3aLhadBWU79Mw2sVPW1F8bhD/HZ9odEZOTDfG9g9FK6dTUbi
Iu0qDzcpOHBHtcM65E1vgh1Dy5EROrh6LkVLFa5kjYXK+E4NKouCttwmSgu3PK0K
uwW0NOwVI8d2c0oQsSgFjuXettJ1hpAvp+UyzjRow4O7Dl223ENeDEcG8PtJDG90
DmhSgtBmBgFwrhVlG8udD0sCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 383870787965860105486817899458673658701515
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-18 10:54:50 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-17 10:54:50 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.kvtco.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 795149389978368487896608516443775392671256454353432823360146957033905579570784005300455980092360487671202874558351148091906724920250086724328682209877448065297430753346867994458438140056349839053131199736814429788635384223307671562897561996152238940318225254974197213657131459948791269910033401683954509842399886646005148127874258607037656090368223010514680571082663079516995322226572163896570975494787986926360530252630081380933095820840340175738824144141094517151448534731365211965221130383393493703230345006777640356049024968859268579975873890502120469158134985275691865731695273159178580573362027875654463559359401462324130388625267839466911808265756910531134363608040336176060569679256543082542527255108731708409271926557570086217681215406480393040757647671819005351044346016234135069874907281444780453881234654191545581072370150770815556938212715147734888304214310122657604263446594521130124508287414014993040873278520017890538646499625756381777539515655445134127349901438768280925570380606660347453003792922611303634957524055942404609999651054862490208703881898738550762224326160799072412506776146495342978559635045252855285561960870990119222230968228803001666058308340958223434943602750997403765551378609591756583431929925451
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							245ee9f5805f285a2a7354094b38ff9d0a87efdd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kvtco.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f18dc5598000004030046304402205c0e3f177f67064dad4cb8c3938f29d33fbc8097fbedca9cbfbd5963b6e3345e02203a22294e4951d25fb0de6fcf553eaaac08959e53e74f60f8e2b1e2ff05c4f2df00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f18dc55c1000004030047304502202d0a206560c8ed0a9ddc9d998faad14170fd1b9f9c5c55cf00e8d58e0c42a847022100c06148459342ed3d7b8072bfc52eb8b6f06586ab3f23106397e8f7c4b2f7a91f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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