ldkit.net
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:be:97:38:21:91:34:89:fb:8c:18:1d:99:88:d0:70:63:b2 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ldkit.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:be:97:38:21:91:34:89:fb:8c:18:1d:99:88:d0:70:63:b2Serial Number (int): 413303798318830755408012165169601578034098
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a4:81:0b:70:59:27:06:b8:18:86:cc:17:21:82:ef:4f:a4:98:e9:cf
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 27:fe:aa:d4:23:e2:2c:93:2d:77:ff:66:d6:cc:a1:1f:5c:22:56:aa
Fingerprint (sha256): d7:d6:80:f4:f9:53:15:e2:d0:d9:5f:8d:e4:94:1a:1d:0b:9e:2a:c6:70:90:24:8f:22:aa:67:84:78:54:75:da
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ldkit.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ldkit.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ldkit.net
www.ldkit.net
www.ldkit.net
Other certificates including the domain name ldkit.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for ldkit.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISBL6XOCGRNIn7jBgdmYjQcGOyMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAzMjMwMTAwNDlaFw0y MDA2MjEwMTAwNDlaMBQxEjAQBgNVBAMTCWxka2l0Lm5ldDCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAK2d4aEjWIUhxzTJu4SeBEtoufv1QxDN/aG1HSnf NN1E1qwZVQUuK3aSM3WxFQtYmaZ2eiB+lNvXUhGQd4nVXowr7DhXg57hdolW58rY 8Ax/C66VbKoXMmoUBWMARXLMznD+sBRdWZA7rF2r43AyS5Xdu+SlRs4wV0FAxO3G e5+hnKEfNVHJD4z1h+UpKe4idNCQxMJOqWLFO0CALM8EMAYCzTQLg8zLeeeWtB/P u2DHSRrKct3BRiukEQXk7wNLFEfJ6lwmUmGO85zUPOX2duAhFY3jJvwVlAviAnTv Anq1jtaSzM8gE8SknDK18LGRsbptIWk5jEfPPgzCt/aNYDh9XG2Q/TBY5wiZb0MQ a/tOEKolaoHexKIFdR73EQA6VL07jHsy3uNB0GwVNnK1ddyNlFfNCPqkIXGMvSn2 rRNq5XkvVlJOyACW7eFUGVQ9CuNs+iOqWB/zN158s4dCNtba7oa+oRH6/RnBYfbb EFz+LrnfwIwDZhjVwO0pS/nONkpIwxl9t8DDEHHh2hlecdAprKL4RkNpHihfpenZ Iynv3FYLu5Cf7cVAKOL4TsKB5Z6lG1DHERXCpsqFBUbNAHggURnXLKZzXZhvEt+4 naYDwARGewpKDe4wGiC/Tp2No+s8IR3dDnHK+9EWfwdMMvYKkoXkxogKUBxA/C6h ldGTAgMBAAGjggJsMIICaDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFKSBC3BZJwa4 GIbMFyGC70+kmOnPMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wIwYDVR0RBBwwGoIJbGRraXQubmV0gg13d3cubGRraXQu bmV0MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYB BQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIE AgSB9ASB8QDvAHUA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFx BR8AOwAABAMARjBEAiBY7VuZsmN/bks5H3utQykjrbTcKxo2tK98vVvRmRVaMwIg KC88B9rV9TG6mcegJXatr1pZvHpBd4xALImpqKcx3RgAdgAHt1wb5X1o//Gwxh0j Fce65ld8V5S3au68YToaadOiHAAAAXEFHwBiAAAEAwBHMEUCIQDFdzhHckkcD3KF gx+zsea6pwhN1aEEVombcBQpvG+aawIgWG7ssrcCWMRpebOfBIzeSWxJhZLWKlz9 Dk3a3WAFpvgwDQYJKoZIhvcNAQELBQADggEBAIJYY0n1oMiNv9eDU9xaJXPYs4Po 8JWOrLCWAsyn5DTY23MsNU63R0o3xDtYTWYBftkwatMjRr3SP5ZMgwzk8gUli5PN NUS46XYsa/OII/8jtVP9AhoVsW76/Lg64HDSCi8mUmOok6Pd5zEJ3oSY4XrrJ8D+ Jk/BRdCMhtQ4lH1dzJPN97KIA+4RdDE9VPTD6R2d5hA/rHlzGNReIDW4lvfGCZFL /rAE+Me2BzEFFrREXVlp210E6YbXtBKMwZedKdw3oPz8uqpUMyglGyQMiuO72aF9 VIheehjcbnyJC+koOWtuIFN+KhKVelzOGZKqmLqKE30l477fzidoy2FfHoI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArZ3hoSNYhSHHNMm7hJ4E S2i5+/VDEM39obUdKd803UTWrBlVBS4rdpIzdbEVC1iZpnZ6IH6U29dSEZB3idVe jCvsOFeDnuF2iVbnytjwDH8LrpVsqhcyahQFYwBFcszOcP6wFF1ZkDusXavjcDJL ld275KVGzjBXQUDE7cZ7n6GcoR81UckPjPWH5Skp7iJ00JDEwk6pYsU7QIAszwQw BgLNNAuDzMt555a0H8+7YMdJGspy3cFGK6QRBeTvA0sUR8nqXCZSYY7znNQ85fZ2 4CEVjeMm/BWUC+ICdO8CerWO1pLMzyATxKScMrXwsZGxum0haTmMR88+DMK39o1g OH1cbZD9MFjnCJlvQxBr+04QqiVqgd7EogV1HvcRADpUvTuMezLe40HQbBU2crV1 3I2UV80I+qQhcYy9KfatE2rleS9WUk7IAJbt4VQZVD0K42z6I6pYH/M3Xnyzh0I2 1truhr6hEfr9GcFh9tsQXP4uud/AjANmGNXA7SlL+c42SkjDGX23wMMQceHaGV5x 0CmsovhGQ2keKF+l6dkjKe/cVgu7kJ/txUAo4vhOwoHlnqUbUMcRFcKmyoUFRs0A eCBRGdcspnNdmG8S37idpgPABEZ7CkoN7jAaIL9OnY2j6zwhHd0Occr70RZ/B0wy 9gqSheTGiApQHED8LqGV0ZMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 413303798318830755408012165169601578034098 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-23 01:00:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-21 01:00:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ldkit.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 708294438510693510039677324415998596768669297669488023758163620864859781585327844041082121132841446794224432917831974841692560363419951324779752730042915616242599481115823179639126000300054934643064962695884462470037836678262606092958578590534356669416102896097796648459949939800315031806155246560979238913106998077688017330091833819262967694236835633710469757800528574720869826664388418617692920737719902401304091785522397926580656516810299397922486407004822419235827837137081365094028139097897061150526831724022283278399107980983815450227778821212739455648933502920917511581168641127993432029290155548102712543989616413878817794987628041539924751419701371572443719115633628370066074237323190081979393724993787551402227582727926409858435189656679167755515394619521317915303429935731827343707185972396512352994772118354268773825684810817488234171847784096662655615419916439579341034891210441585171475017809859440368441022238102397807537695323863076811260630414588627006331423007436222448194442176907453929047263058135812397245304290068115695930728365261867535892063628346324185635697337990820259630800459102402052954790899344052637813016133990475526862632712192358085096168595202063282060550259599660387200768630765502431813608788371 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a4810b70592706b81886cc172182ef4fa498e9cf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ldkit.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ldkit.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb27300000171051f003b0000040300463044022058ed5b99b2637f6e4b391f7bad432923adb4dc2b1a36b4af7cbd5bd199155a330220282f3c07dad5f531ba99c7a02576adaf5a59bc7a41778c402c89a9a8a731dd1800760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c00000171051f00620000040300473045022100c577384772491c0f7285831fb3b1e6baa7084dd5a10456899b701429bc6f9a6b0220586eecb2b70258c46979b39f048cde496c498592d62a5cfd0e4ddadd6005a6f8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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