ofyco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:af:7f:0c:bb:20:26:9f:e3:94:7a:29:9b:15:b8:be:8f:37 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=ofyco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:af:7f:0c:bb:20:26:9f:e3:94:7a:29:9b:15:b8:be:8f:37Serial Number (int): 321055150064829808587366051062331440271159
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b5:83:ac:9b:40:4b:b7:6f:78:97:44:10:12:93:97:87:57:4a:ba:1d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 60:e2:f9:a6:ae:8b:68:ac:7a:d8:2a:8e:f4:42:f6:b9:4d:b5:ef:97
Fingerprint (sha256): df:fd:26:1d:68:28:db:12:18:1e:98:17:00:78:dc:1b:a0:9d:6e:c7:73:d7:92:73:c8:21:6c:e2:f4:84:ee:69
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate ofyco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ofyco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ofyco.com
Other certificates including the domain name ofyco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for ofyco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgISA69/DLsgJp/jlHopmxW4vo83MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTYyMjM1NDZaFw0y MDAzMTUyMjM1NDZaMBQxEjAQBgNVBAMTCW9meWNvLmNvbTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAM23ISiTUm4GFG9rjl8ebnBzVQ9Tqpu8UKss1r8C FW8rjjHQ0V6HwtGVtm0BxlmN3mw5npT5yGMh+x+0+z//YSw6/DMxmz2ITPwEm1/p F15x8T72j5AQUnZ6EOrceCfM4xA7hjl64q23YAsLcOaak2Qli2pIun8OZOIH5xwC F9hWLyOj/cQNtBZGq+lhkShvW80vXFUhQdRiw9CF1QIMEy+9m1R+tovnQ/UWCgAB u3z+7ezeuE/0h+FU/PTWjCEbQlivphUvC5JroA696ZjoUdX5U+vS30nax5ly7/VF sLFHQDwLrNjNS/bslbML4gH5xsm5FuLwMxvH6PyY48vJIwHpTCmXYInX1uIXGGHV Q+BlsrpYTMFUHytgFfhC34s1k5Rv751s/J372yGKEyE6josuFn8GxPwuHy+hiPwJ nv5YHtqVa2q3n3UtqO29eZ76pYc/Ds2t3GqovkaC8IpoICAqqKpXOqDpmWdpLjex Q0h+gm/hOJ55nu+ilwN8DNGcm8l1m1ixVZMEUOvoYb1JBAMvQ3O/TCcZS60KJikz 2RmmLiBQE0AZeEDj52wsM5GsJPDiYYF9XInMOuJKLOdS+kpxn0PamnzZ0qgCPj45 3GZxomJhDFfw//JkLOJ4V68DJm6ngE6Cc4R5SZVYqd08zdiu5lVAt/9qEMB5JtWM qW0fAgMBAAGjggJdMIICWTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLWDrJtAS7dv eJdEEBKTl4dXSrodMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wFAYDVR0RBA0wC4IJb2Z5Y28uY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAsh4F zIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFvERFWuwAABAMARjBEAiB9 kBOjutIKXohJ/AYip4o35yEwTLFbXk/hIxIdEk3efgIgTi6VHrIOxxa00PvPSUhU XrQkKRdkNVLHMX9mGAw7josAdgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbII mjfZEwAAAW8REVbzAAAEAwBHMEUCIQCXeOICobVYjK25lWu5IcuTZuLSL0oQRmbd agOiLGJauAIgLPv72+/G9Q4j0u/9+B/2G+aPvwrF6VU1B134nb3XXT0wDQYJKoZI hvcNAQELBQADggEBAG4aaWR/Ncff4VV2FcQ3eE/eLgtkeHXKi9FysRJdOuff65ms YHL/hHfbGWZiAp8s7s4cPo1MKvlosAZTgYHy4BLdzPTF7nc3GTiBEVh1bjsOi1pZ KrL55gjAshSsQ0VNBCNJ6jv7aO8d6GfbSIfIkPjVEgsX+uRE1qdcJy/nN7XcTj1R y6/Nm9Y1jTMYpzyig4Wmbfpfs8Oz8wv9l/iEWbfe4JZvMpCe/x2cnypujt5RFOaK ySJfDdjvgf8G5adexQA0qe1ae3FnUaHc9L3ZQ+WBX9bxmi6HhEZyZVEwtG+DF8Bv kdXqi7TlK+IN8qWQWU0VpeMYmifya7st0ASkLKY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzbchKJNSbgYUb2uOXx5u cHNVD1Oqm7xQqyzWvwIVbyuOMdDRXofC0ZW2bQHGWY3ebDmelPnIYyH7H7T7P/9h LDr8MzGbPYhM/ASbX+kXXnHxPvaPkBBSdnoQ6tx4J8zjEDuGOXrirbdgCwtw5pqT ZCWLaki6fw5k4gfnHAIX2FYvI6P9xA20Fkar6WGRKG9bzS9cVSFB1GLD0IXVAgwT L72bVH62i+dD9RYKAAG7fP7t7N64T/SH4VT89NaMIRtCWK+mFS8LkmugDr3pmOhR 1flT69LfSdrHmXLv9UWwsUdAPAus2M1L9uyVswviAfnGybkW4vAzG8fo/Jjjy8kj AelMKZdgidfW4hcYYdVD4GWyulhMwVQfK2AV+ELfizWTlG/vnWz8nfvbIYoTITqO iy4WfwbE/C4fL6GI/Ame/lge2pVrarefdS2o7b15nvqlhz8Oza3caqi+RoLwimgg ICqoqlc6oOmZZ2kuN7FDSH6Cb+E4nnme76KXA3wM0ZybyXWbWLFVkwRQ6+hhvUkE Ay9Dc79MJxlLrQomKTPZGaYuIFATQBl4QOPnbCwzkawk8OJhgX1cicw64kos51L6 SnGfQ9qafNnSqAI+PjncZnGiYmEMV/D/8mQs4nhXrwMmbqeAToJzhHlJlVip3TzN 2K7mVUC3/2oQwHkm1YypbR8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 321055150064829808587366051062331440271159 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-16 22:35:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-15 22:35:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ofyco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 839245406139073758058716860796959714738443086022470114647292543577802526833179674609157833828756416559044425291762153282409660896257044183922251906719296813335208338145626647481521711223582613594475636759342333891248309484486163039427945764363608691013338375453000598456424494911794027396626678600488447403463122766222429481145694100831271121878164383608841539441637002688570870736232731172817018638076713246537036623095227953845236658591969982881720740899912426703326571971513060853977680666850328507594653398371411793098043959199259865974532132294665714436630622510509504180642655950066616566290814310620568886378390307505029356903397204865755097938661194462079102365732403397911245663826153385424754714770469855599798356347157588733207970270730126678754556960473447272618561393903377073381799593208634628211733552199034647109253767922933983729436969827322452006020141177920148098807080836559265413460749994548775131184100557561207494353530973432435144701023303235330006249934782547113266910975950879235057895809502101683992556596959152007980003835760401382514728848863194313199978095505896239918307596450916024108720859591972311417978832992762877676769038068775695649814182703791490451726867040308693863566380801056665689830026527 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b583ac9b404bb76f7897441012939787574aba1d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ofyco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f111156bb000004030046304402207d9013a3bad20a5e8849fc0622a78a37e721304cb15b5e4fe123121d124dde7e02204e2e951eb20ec716b4d0fbcf4948545eb4242917643552c7317f66180c3b8e8b0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f111156f300000403004730450221009778e202a1b5588cadb9956bb921cb9366e2d22f4a104666dd6a03a22c625ab802202cfbfbdbefc6f50e23d2effdf81ff61be68fbf0ac5e95535075df89dbdd75d3d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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