www.mykot.be
Issued by R3
About this certificate
This digital certificate with serial number 03:90:49:cb:e9:f0:2c:07:aa:86:91:f9:97:96:d4:bc:38:c2 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.mykot.be
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:90:49:cb:e9:f0:2c:07:aa:86:91:f9:97:96:d4:bc:38:c2Serial Number (int): 310435611056680283369788422270311653456066
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b3:38:5f:fa:e2:6e:f7:fb:b3:c4:c6:15:70:8c:dd:7d:75:0b:ff:d2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 54:8c:ef:ec:fd:19:b9:47:3e:28:10:99:2c:11:e5:db:7b:d3:d6:8b
Fingerprint (sha256): e9:71:6f:60:d0:d1:d0:ac:d1:56:fe:d6:80:57:69:6b:ba:02:67:92:81:7e:a8:7a:bd:9b:9d:17:d1:f3:c3:2b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.mykot.be
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.mykot.be
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mykot.be
www.mykot.be
www.mykot.be
Other certificates including the domain name mykot.be
(limited to 100 certificates)
mykot.be
ple.mykot.be
*.mykot.be
brik.mykot.be
ple.mykot.be
brik.mykot.be
brik.mykot.be
ple.mykot.be
mykot.be
mykot.be
brik.mykot.be
mykot.be
ple.mykot.be
ple.mykot.be
mykot.be
ple.mykot.be
brik.mykot.be
brik.mykot.be
mykot.be
mykot.be
brik.mykot.be
brik.mykot.be
*.mykot.be
ple.mykot.be
www.mykot.be
mykot.be
ple.mykot.be
ple.mykot.be
mykot.be
brik.mykot.be
ple.mykot.be
mykot.be
mykot.be
brik.mykot.be
mykot.be
brik.mykot.be
ple.mykot.be
mykot.be
ple.mykot.be
mykot.be
ple.mykot.be
*.mykot.be
ple.mykot.be
www.mykot.be
mykot.be
ple.mykot.be
www.mykot.be
brik.mykot.be
www.mykot.be
brik.mykot.be
ple.mykot.be
*.mykot.be
brik.mykot.be
ple.mykot.be
brik.mykot.be
brik.mykot.be
ple.mykot.be
mykot.be
mykot.be
brik.mykot.be
mykot.be
ple.mykot.be
ple.mykot.be
mykot.be
ple.mykot.be
brik.mykot.be
brik.mykot.be
mykot.be
mykot.be
brik.mykot.be
brik.mykot.be
*.mykot.be
ple.mykot.be
www.mykot.be
mykot.be
ple.mykot.be
ple.mykot.be
mykot.be
brik.mykot.be
ple.mykot.be
mykot.be
mykot.be
brik.mykot.be
mykot.be
brik.mykot.be
ple.mykot.be
mykot.be
ple.mykot.be
mykot.be
ple.mykot.be
*.mykot.be
ple.mykot.be
www.mykot.be
mykot.be
ple.mykot.be
www.mykot.be
brik.mykot.be
www.mykot.be
brik.mykot.be
Certificate
The complete raw certificate details for www.mykot.be in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF7zCCBNegAwIBAgISA5BJy+nwLAeqhpH5l5bUvDjCMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MTEyMDE3MjNaFw0yMzEyMTAyMDE3MjJaMBcxFTATBgNVBAMT DHd3dy5teWtvdC5iZTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKgv 4Rg5uo0bhKFOOrcr8zhV8f0rEd658VBGWtSTEsL11xT9A7dLUVxC+qmEwOn3YucU JykCHje/dCZ36BVD8K4V0VVRVO+LHuks7s1//XceDfIokTKqjyuVDeUvlLSnrLZD I6NjEy43s3h8sNsWtB4C7bpLXDcwmc03YVsBiicggpEOPkNdBgG5ZmEv11ck7fwL BLIupFqIXo+MvdoAy59MjG2sw5fCK4hOnbrF+9LW6otL3Sbje+qpF/a6RJTQfIs6 T95EHMx2IVebitw64RhTHqfl+RQPwoFO9Da34AAGBdsmLNN31iD0BvqY8cn5nkaf LMs4ZXX2vS8+Q1qXdzY5cv4aAqGvX9mX5aFOjJ3+uvi7CQea2cpWtbqufNv8GrcZ Z4t3YkUgVYMAXV1cAtHOQrRYzfdWQ0g5Iefrk/9ROjGqOKELedgGWd1wCc1bHTEd 0VuxZQaBDDWUtKH0LKNhJjKJL0yogwkv/OGyRmTEwaJUBPOOmuQFlCqbMPf5EYQy iDx6sw7c1RWe7fY7Anpm7txNRTRGjCo5IUfpHPliyzEhWaeN3cyPQl4AOEJ6KNls OmgvwJfGdUlsrkuEo+G8VBIE34OTGUgFa+RoEVEISvQwsWxyDZZMmE0/rm6k6drW X4KGu4vhYyrnxDA8W7zvRG409D2sKZqrAI7HC+ShAgMBAAGjggIYMIICFDAOBgNV HQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFLM4X/ribvf7s8TGFXCM3X11C//SMB8GA1UdIwQY MBaAFBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEF BQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8v cjMuaS5sZW5jci5vcmcvMCEGA1UdEQQaMBiCCG15a290LmJlggx3d3cubXlrb3Qu YmUwEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAA dgC3Pvsk35xNunXyOcW6WPRsXfxCz3qfNcSeHQmBJe20mQAAAYqGGzD7AAAEAwBH MEUCIQDcsmHW2RJ0LltZI0rF7RwiJlZG6F8kjF6fb/4RnAodaQIgAgTtLWjb0XhQ nm9P1uLnYGu6kEKs1Yy0llMRjKbnPyQAdgB6MoxU2LcttiDqOOBSHumEFnAyE4VN O9IrwTpXo1LrUgAAAYqGGzEEAAAEAwBHMEUCIQDjn+8OOVnBVf7XDKQOo1D5Gu9H cFWzFznKdk7DCdKlGwIgUhSqJ3Whbo/MimaxCRxyEHeFyIuDyxUj/do9KqdMnkYw DQYJKoZIhvcNAQELBQADggEBALARKfA7EQLu3O8ZlIKxVRkDCuZjSJffPtoGObib xNqqzYYAE13U6FaaUVDxm1LIIDF6C/bDc/G+6860XaOMqJgQ3ofd09bPtjMaEzfH 37BBVqYvn08X5E/h4w1AaA2AumWQxgYc9CWtXgmfnWcKU4DTM55e7REOSpz14uOe fJP3nnYDOYfB2nXf1g89nHhZ3VkUyf9WzV8A8s8qY44Eeb4piI5pjIklo8Hi1j5+ YRgXSvgyl6b3foR88HVOHG4iC7V3ueusWDZEabgm/AplZOONAsnfsnvHo8Vjsf9i 8iR70S3oQYMq/01Plbp8o+2JghTLxVb9kErcn5hcx0jNj9A= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqC/hGDm6jRuEoU46tyvz OFXx/SsR3rnxUEZa1JMSwvXXFP0Dt0tRXEL6qYTA6fdi5xQnKQIeN790JnfoFUPw rhXRVVFU74se6SzuzX/9dx4N8iiRMqqPK5UN5S+UtKestkMjo2MTLjezeHyw2xa0 HgLtuktcNzCZzTdhWwGKJyCCkQ4+Q10GAblmYS/XVyTt/AsEsi6kWohej4y92gDL n0yMbazDl8IriE6dusX70tbqi0vdJuN76qkX9rpElNB8izpP3kQczHYhV5uK3Drh GFMep+X5FA/CgU70NrfgAAYF2yYs03fWIPQG+pjxyfmeRp8syzhldfa9Lz5DWpd3 Njly/hoCoa9f2ZfloU6Mnf66+LsJB5rZyla1uq582/watxlni3diRSBVgwBdXVwC 0c5CtFjN91ZDSDkh5+uT/1E6Mao4oQt52AZZ3XAJzVsdMR3RW7FlBoEMNZS0ofQs o2EmMokvTKiDCS/84bJGZMTBolQE846a5AWUKpsw9/kRhDKIPHqzDtzVFZ7t9jsC embu3E1FNEaMKjkhR+kc+WLLMSFZp43dzI9CXgA4Qnoo2Ww6aC/Al8Z1SWyuS4Sj 4bxUEgTfg5MZSAVr5GgRUQhK9DCxbHINlkyYTT+ubqTp2tZfgoa7i+FjKufEMDxb vO9EbjT0PawpmqsAjscL5KECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 310435611056680283369788422270311653456066 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-11 20:17:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-10 20:17:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mykot.be' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 686143212817670507099760718051250327090363077810334630319069073505820012824308860427409904776468541265636074232424725587825770481475585877544042622911055962373795537204427795901329128843438649637580458195355751713250032216713203816093539510883837706389715808651772158968812047798481106193154800969884223018961408879939069447647228135116737333599596684844967356304267639494162455065966602557735978162929044567136072606842071585787921886332363503398197761153453658325242265196854258885956010389157533716983255615554584537327711736985823781617440083750633599082592286885278117750151295395906254839113630154966615176960742459819700414118807968228432046948009934961765287105895882991502377177713455926526950128476697400663720862180727475443894870490279044441049807994336648191338773965214435689163423803943521840778800352140081065409079523002207023159735260085756105642274549396805999908529630984961894997558122054734005032233927270837600576655236122519676554092835788483112898871652194280303854018337539940194797031147473951956907197593722526127670858660876928852235429404677630123668183727867517184235149109054366745929745410383575596653811367541652508461628386412745181998834052917129086100942626284500736728369180895607633965161899169 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b3385ffae26ef7fbb3c4c615708cdd7d750bffd2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mykot.be' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mykot.be' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a861b30fb0000040300473045022100dcb261d6d912742e5b59234ac5ed1c22265646e85f248c5e9f6ffe119c0a1d6902200204ed2d68dbd178509e6f4fd6e2e7606bba9042acd58cb49653118ca6e73f240076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a861b31040000040300473045022100e39fef0e3959c155fed70ca40ea350f91aef477055b31739ca764ec309d2a51b02205214aa2775a16e8fcc8a66b1091c72107785c88b83cb1523fdda3d2aa74c9e46 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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