ldkit.net
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:0b:c3:d7:52:ce:56:40:5c:f9:0c:b7:75:66:ee:86:9c:e2 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ldkit.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:0b:c3:d7:52:ce:56:40:5c:f9:0c:b7:75:66:ee:86:9c:e2Serial Number (int): 265340281313918989119649586971430237936866
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b7:b0:53:37:bc:af:3f:e9:7c:7c:d2:d0:94:4e:67:a6:a2:6d:d3:0a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): b8:30:56:40:e2:8b:7a:86:00:99:5c:b3:35:b5:8f:40:6c:79:f0:db
Fingerprint (sha256): d2:e9:b2:b0:23:54:8a:f0:64:a7:8a:0c:3e:23:26:4e:f0:1e:a5:23:1e:0d:f0:b0:84:b6:98:bb:22:87:9d:2c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ldkit.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ldkit.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ldkit.net
www.ldkit.net
www.ldkit.net
Other certificates including the domain name ldkit.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for ldkit.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgISAwvD11LOVkBc+Qy3dWbuhpziMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMjMxNTM2MjVaFw0y MDAyMjExNTM2MjVaMBQxEjAQBgNVBAMTCWxka2l0Lm5ldDCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBALsHZg6CUAbrZAHjpcc/SWNh+kBruT6hsfwVWYA8 kgckISbYY2JJzHKqNY57it0hI5QS/4ReK5ZeB2hI+9T2Lpg88DnuSFS1GrYsZdKo Jwn2x5RlTk5XwcS+/+0OQfMnY7vqh/UWS/cewLHTjEqY4b/0xDAvqHh7m2uW451e b8cht50om6b3RC5tiQAvYs8oLBXNcF1ekOD+zNIbc1Uw73t8615rhYGRT0AH1KyW ePBHHmk4sWe0dKjyLl9wusnLyRCclFw113f+uzKfrTsaZ9jL0jTXVTAuzvFhkPNE /8+dKQnfVDQeRCq5KaR/OhNUTgObtGrd4NSLgLmB1iBhfd/vAh/8JfxUUmC0lMm3 6LXyiryevDzsAuHY0hjvOLuKmZX0zSP2cmyrUPDIYqNoX7trNcX8zH7DTvMKA3XP c+YZh6ZMQ6CTqyjnYVMQekKsTKoHAGJpyCocOiF/meXOG51K6UubrIl4hcF2VgsF PVAWqiD0GVX2xJLTXrMPdGtBdQSj1+eYn8W9vvlHaEmvBUfNGtYf0HXy+z5WSNzV HEso7dO0pEFHNxxF9BTyO10soRBedVi6MlBDeQ00NgMcjkoCtFoy5nQqMC6+cZ3a mvbhi3YVenpjTFZkqS8HKCfa8Ky5xN5ylARz2i1+mUpam8ye/ZmqjspwRaLTroBg 0JATAgMBAAGjggJuMIICajAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLewUze8rz/p fHzS0JROZ6aibdMKMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wIwYDVR0RBBwwGoIJbGRraXQubmV0gg13d3cubGRraXQu bmV0MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYB BQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIE AgSB9gSB8wDxAHcAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFu mR8kqQAABAMASDBGAiEAoYqj9D7xdwbeRRA34A7WXFN1sJYqpUb5AkayAzgoXlIC IQChjqMPGrgOG52o2DCmQlrNBVO7YPwTNl4irvUM05C2igB2AG9Tdqwx8DEZ2JkA pFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABbpkfJUgAAAQDAEcwRQIhAOAAZlLtcUxk RwZnwt+E+EzUT8fviSNI3pWpBigISTDtAiBs3oIZKwI05pACRVmjX7YNdg8veN4d UjcnxjLf9/YWDjANBgkqhkiG9w0BAQsFAAOCAQEAicoNSPRgQcTgPy23inQBTGxz IbI1wXfhT9PUyDrMqd9OCvzPQqjuqPf/zIp1cEtNfbD4y967DSMOPavujIjg1NT0 iSy3CGfnXendYyKdlo9wHcJJeYm3UfJP/49kT731391mI+xMm5WSrMQodjovNKWU 4FudqCO7TtIVpZjSQJ4K/2oKjepUhnrdewL+5WZeXYcMcyNzV9WNJ0HolpxA3fAF VGpFetZxi0nXe1I7wEpGehReMx5x28GrvbwpwlUdGw5m9pE+XC9c1DLvAASsvFNw 9R/QjJ2J0yaQ8EG7LxhwpBJYuhH++OkyRIx3UW18lP7AZen/pcTM43UNBZ3EMg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuwdmDoJQButkAeOlxz9J Y2H6QGu5PqGx/BVZgDySByQhJthjYknMcqo1jnuK3SEjlBL/hF4rll4HaEj71PYu mDzwOe5IVLUatixl0qgnCfbHlGVOTlfBxL7/7Q5B8ydju+qH9RZL9x7AsdOMSpjh v/TEMC+oeHuba5bjnV5vxyG3nSibpvdELm2JAC9izygsFc1wXV6Q4P7M0htzVTDv e3zrXmuFgZFPQAfUrJZ48EceaTixZ7R0qPIuX3C6ycvJEJyUXDXXd/67Mp+tOxpn 2MvSNNdVMC7O8WGQ80T/z50pCd9UNB5EKrkppH86E1ROA5u0at3g1IuAuYHWIGF9 3+8CH/wl/FRSYLSUybfotfKKvJ68POwC4djSGO84u4qZlfTNI/ZybKtQ8Mhio2hf u2s1xfzMfsNO8woDdc9z5hmHpkxDoJOrKOdhUxB6QqxMqgcAYmnIKhw6IX+Z5c4b nUrpS5usiXiFwXZWCwU9UBaqIPQZVfbEktNesw90a0F1BKPX55ifxb2++UdoSa8F R80a1h/QdfL7PlZI3NUcSyjt07SkQUc3HEX0FPI7XSyhEF51WLoyUEN5DTQ2AxyO SgK0WjLmdCowLr5xndqa9uGLdhV6emNMVmSpLwcoJ9rwrLnE3nKUBHPaLX6ZSlqb zJ79maqOynBFotOugGDQkBMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 265340281313918989119649586971430237936866 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-23 15:36:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-21 15:36:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ldkit.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 763011346559033468613425043794908496613426316026411583545031733495569650852916241012911034180754414257335803054924232305936191591504482792666948290574766476817697105684789044836574887909393251681624314469732461972419660924483199284145980466133419306705804417177779829267473427848627232344156839785749686026238899478542566942103926842159942293977076940536799980669854936545459401305429855486450872453469643421159953324403069198866584469987969463163079470156323301000702146373169999423455113010193446634004087072390554564554628198731993511024422226759655355550420371456317233161914288405601389989669028384714071723932903407012449161553771517332093802478793963793396654442266439648351086043254715583171572262353863268577107411372651943814453664906012343184479486525150962613682848982682676304334896457770039364744090785992518620948377081778002814245459796492799793164551419701217337325352446967996680260542828434716172312169667284645725408389419228410654914710535464675675302823140537227298412217047892584258618057762275504577030977799267702462743084437425085537345017970043460972627366429293558122590214711433640787411578086877197701994857439200475004979174423652618438808036731885194910912050867495615634807570494180244149489399533587 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b7b05337bcaf3fe97c7cd2d0944e67a6a26dd30a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldkit.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ldkit.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016e991f24a90000040300483046022100a18aa3f43ef17706de451037e00ed65c5375b0962aa546f90246b20338285e52022100a18ea30f1ab80e1b9da8d830a6425acd0553bb60fc13365e22aef50cd390b68a0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016e991f25480000040300473045022100e0006652ed714c64470667c2df84f84cd44fc7ef892348de95a90628084930ed02206cde82192b0234e690024559a35fb60d760f2f78de1d523727c632dff7f6160e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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