www.lyoka.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:f3:0b:50:9b:fc:25:b0:9d:d2:12:0a:92:93:8c:13:36:7a was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.lyoka.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f3:0b:50:9b:fc:25:b0:9d:d2:12:0a:92:93:8c:13:36:7aSerial Number (int): 344040513012521753403481777237179835299450
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 35:55:bf:a3:3b:89:3a:3e:ee:a7:0c:8f:d9:97:46:b0:91:6c:dc:9a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 39:0c:16:2c:8e:aa:75:f0:a2:8e:67:16:b6:73:bf:1c:a6:d5:1a:7f
Fingerprint (sha256): cc:b1:82:cc:f6:eb:b2:01:a9:a1:f6:5a:d3:4e:82:10:32:b7:00:08:a0:21:a0:f7:50:3b:8b:df:89:84:c7:3a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.lyoka.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.lyoka.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.lyoka.org
Other certificates including the domain name lyoka.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.lyoka.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISA/MLUJv8JbCd0hIKkpOMEzZ6MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjMyMDEzNDRaFw0x OTA2MjEyMDEzNDRaMBgxFjAUBgNVBAMTDXd3dy5seW9rYS5vcmcwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCv7/uKN3ZTpB8Y8KB+g3H6CiOY0+S/VeEq 2kZquwS8++RugF2ZJepYsNx9oOvqCl6ZFh1R6A03+CA11PKJ/jUw0cNKsT3lzgza A2OycxS6DpRgOAoPTHP2W51ofBjHIkzRkcvZMotpcVlIMHSCM47b3OgpjdsNUA0R 2wkgt0FqWWze8jnoy+9zhoqQJJFecst9YsMEE1AIAokIHpKyUWWRL2mSN/2inouB h/8biEnFGtn/b7FfoWwazY7gHg6AwsDoNH9vefpDZtMSj0Y0jqiJfhvOInpJHxeB gZ+YVRSrEgRrsEeSG/F88oqAyQhMUULQCjAVMK3h/RfKi5ht/hHeWGvsi0QjwxPl T0wRQWjyRdQHxjFmQUE+2f8rYNabGBxERLaGVWvEqVBk++rRO3FnMLmmNnfMu2Ia 1zgNaqdXc3bB4E4IaBRlTxJLAfQ3jcSQi001MG3eFMf1v9hPbZWiNysZ3p5LTdSM miMKwHfPrnpeiwEMxWnowe9j43fTpme/IPRrXlgU8l2LhUtu/C99jWAMlYxWG2bC N4B8vM1OqIHJ4OTzIWkkHpdyeMw6s9cln9Kn/LDwQ278AcvKqBXZ9M7rzF8z8RjK Dbew5d992zbFwIjWSwh0dKGX2hFuvk+MwiWbP/b/2t1RdwMWRurRYHyNm3HOkhb2 TkizRiy2lwIDAQABo4ICYTCCAl0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ1Vb+j O4k6Pu6nDI/Zl0awkWzcmjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy5seW9rYS5vcmcwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHx AO8AdgB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWmsZv8YAAAE AwBHMEUCIAC20hwS5eO6FOE0kYLr9Zf5/0xYEvYftTITWUPPL6qbAiEAkMB4eljg 5QySrDYHNhy+KnBauITdg5sS2b/JF6+YctAAdQApPFGWVMg5ZbqqUPxYB9S3b79Y eily3KTDDPTlRUf0eAAAAWmsZv6iAAAEAwBGMEQCIG1oJUgRfauiTI6TDlS18R9l yn2nDVIs1rsYHH4UPVWAAiA9HonCaSpFM1Drsx6aXC1amGIU1Edp6fij9cWSHvpy 5zANBgkqhkiG9w0BAQsFAAOCAQEAe5c3QIsFQ3k/egC+SHLJP2sEWtNUQpG3Zo7V Ua+sHbquHA/k5Zl8xoQdwDXONH6X1tt0EDnuYgDa96ygs3NVWlogVPJOc8XHXLdE G96bOTUrUiYUIXAnKf1lSqD4+bt+4NMcxtdfQViQRZ2emypAkKqz0B8YYE7jGuGw lDkTXBCFy5oWPXRbztO3mMi9J05c9cHPuyrNczlnSHVKmf+8jeFHxx4tFxVbPGth l4iFgNSAh0FSzl9bOLmk4wWrNFMsn3lCj7QdHH/Jo+Zbq7B11mCJAHm05IA95Jqf BzFm3a2iqjxN2EusuveeFeo8/4X/INmVb5JC/1Wg2cqLx8Htxg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAr+/7ijd2U6QfGPCgfoNx +gojmNPkv1XhKtpGarsEvPvkboBdmSXqWLDcfaDr6gpemRYdUegNN/ggNdTyif41 MNHDSrE95c4M2gNjsnMUug6UYDgKD0xz9ludaHwYxyJM0ZHL2TKLaXFZSDB0gjOO 29zoKY3bDVANEdsJILdBalls3vI56Mvvc4aKkCSRXnLLfWLDBBNQCAKJCB6SslFl kS9pkjf9op6LgYf/G4hJxRrZ/2+xX6FsGs2O4B4OgMLA6DR/b3n6Q2bTEo9GNI6o iX4bziJ6SR8XgYGfmFUUqxIEa7BHkhvxfPKKgMkITFFC0AowFTCt4f0XyouYbf4R 3lhr7ItEI8MT5U9MEUFo8kXUB8YxZkFBPtn/K2DWmxgcRES2hlVrxKlQZPvq0Ttx ZzC5pjZ3zLtiGtc4DWqnV3N2weBOCGgUZU8SSwH0N43EkItNNTBt3hTH9b/YT22V ojcrGd6eS03UjJojCsB3z656XosBDMVp6MHvY+N306ZnvyD0a15YFPJdi4VLbvwv fY1gDJWMVhtmwjeAfLzNTqiByeDk8yFpJB6XcnjMOrPXJZ/Sp/yw8ENu/AHLyqgV 2fTO68xfM/EYyg23sOXffds2xcCI1ksIdHShl9oRbr5PjMIlmz/2/9rdUXcDFkbq 0WB8jZtxzpIW9k5Is0YstpcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 344040513012521753403481777237179835299450 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-23 20:13:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-21 20:13:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.lyoka.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 717762100574702846956145421429388669474706564754965219545953333362641054029275559622521375960026236648189963995130922316842087315987770790841397052913336577214162372947418057473044001958304043945344536987729193426730154168758743831120460270860105854921102066265233006961847932712601822868041635139448956610595657000405739062988355997606709358443109024559475089562664339572763126342494000586268878135378830460249026441540098942252549413677024842754569022754912904165223969619892397172012810429343175055058888964905323043069004876951682406785711609292709562223247788295176328660248720499780484406972188914336633219690573828756562431680674439929434810823752138264247813215432636810690292405064382145212864869593683724179918342375784695253555461400287592623261715824702791967326882685218803863237584949799922348530855647825027814267645671372300117914134094510771555756136040294527637754362222480141010799555375630951471020557278361184834848212534431083235993996665714359691917179241981774007908761359621292584173595389154886319360394046199600672284306878518683420801832815451719342627553962057480966143585994250491099771088684011805646838201461883588312206996184695320918852031650654019057894610247317287255748584779503586545129487120023 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3555bfa33b893a3eeea70c8fd99746b0916cdc9a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.lyoka.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169ac66ff180000040300473045022000b6d21c12e5e3ba14e1349182ebf597f9ff4c5812f61fb532135943cf2faa9b02210090c0787a58e0e50c92ac3607361cbe2a705ab884dd839b12d9bfc917af9872d0007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000169ac66fea2000004030046304402206d682548117daba24c8e930e54b5f11f65ca7da70d522cd6bb181c7e143d558002203d1e89c2692a453350ebb31e9a5c2d5a986214d44769e9f8a3f5c5921efa72e7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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