okyadong.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:66:df:bf:d9:c9:4d:3f:80:62:f4:65:1b:33:2b:df:aa:c9 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=okyadong.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:66:df:bf:d9:c9:4d:3f:80:62:f4:65:1b:33:2b:df:aa:c9Serial Number (int): 296343073210208131377021301148028038523593
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 52:66:7e:e3:ec:77:eb:45:fc:1b:c3:51:79:d9:51:1f:13:a9:23:b9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f5:7b:19:e6:08:90:e7:fa:07:88:fa:be:f3:45:c1:46:e9:38:4a:1c
Fingerprint (sha256): f3:01:89:d4:72:b1:4c:db:c6:75:99:3d:39:b0:91:65:f8:aa:27:53:3f:6c:e1:12:e8:01:10:22:4a:9f:03:70
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate okyadong.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for okyadong.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
okyadong.com
Other certificates including the domain name okyadong.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for okyadong.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUDCCBTigAwIBAgISA2bfv9nJTT+AYvRlGzMr36rJMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMTIxNzE0NTlaFw0y MDA0MTExNzE0NTlaMBcxFTATBgNVBAMTDG9reWFkb25nLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAMDTSaqTP/Mpi7Ke+lrMs1VDHMWkP2+1y/MO x87k7m+HSp5rXhQ1c0rorfz2P3itfB3Jo8aKi3eukUq2iW/SfnROpTnAweXvL3Vp biLt2GsSExI1hQexSAurRqHd+Twi4XodmLCWK9+AU2AKB/gxH5G4mnfRfcYjRdjc eSyqwy3cXL5c17ZOhHxAwwYIBQKPRi7AsSIORImJXvRRYn+wIjIxQoFrvW8kFXHi GzZW17YxqUA1FrAPVzM2WL5mcWZ3BN+RPDj2ILbcEK+EnwMToaxQ6mgHuxGtJhI2 50/Kljf2EBxrXfFdKW2WxUoxYj8l4j98l+m4VA0+5VqUMfjMIq7OnaDuDtMA0tAA IIFL2RaGeagbJ2bhHBvxgHTFotNOHmzgXq4ov+y+dt8DCwqh8R6IF1U7J/q0Y9bD x/YlGsy8A6jekNU96oe4UZk34f3cTbtTP7vQhx6MvJzM/J+cIi1Y8wgWxhH7KOXp PvpK9vKwFEhozmXJZKGlkaeg6aP4B0Gj24o5aqnaE10RSsLbAq4YT0YIQuRhRQfp LQyjrT4X2yLADLaHcMLfLqEINwXqAvVXTT4SNgit+Ghemrns0WFmcBS4lkli1x8h 0mv2udfrmtx8S2KU8gQ9tbMW89YKtkgYUwE4b2/QhsbRp0YQc5gKqqXIoyW/85x3 qBkUzkshAgMBAAGjggJhMIICXTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFJmfuPs d+tF/BvDUXnZUR8TqSO5MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMb2t5YWRvbmcuY29tMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDw AHYAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFvmvdZSAAABAMA RzBFAiEA2ChsWc1QlyEFc42pPMxPihkkOR+9+/UxLT0BKbaoOpsCIDAqwm7tqTms I/BhEX4aa6TjIaEGa7yxsG14ulGcX++gAHYAb1N2rDHwMRnYmQCkURX/dxUcEdkC wQApBo2yCJo32RMAAAFvmvdZgQAABAMARzBFAiEA2l2pzPUN4L9VWpObesj+7Ygy AEH14GDfBXvRyRmZuuQCIBMP7ynAEYcUzT6CYHhI+ngAKlxSFY34h+nn8B6FpdmM MA0GCSqGSIb3DQEBCwUAA4IBAQBxxY1LFBjl522tooOUgSU4hvYSrtlS53kwgEAe WTZOAF53tpkA44pwgNKTAFSuSMN5+uD5icfoaACgvpOuYhtluu5jdwYUC3/Wn9Uz WvjTlb4ZnaM7rln0ofVZZqyMTz6WzAubObsbmaTG1+4qp5bfpDIhftZnwBPDMAxD nr1Pg3MPVojadGrgzcb9gJ0EO+Qa4dfvR/63d854lD+Gx4gbdAQ5hPXth35MhoP+ P0Y/gT9ZpaHlKHUjXz2PbKIhdeCOYe7bS6hn6+D8lbn+fnDBPuqkIgdJ+g+0AMVS bC1Px6nJ9yBmIZVVVqM2r7x/OfudQ9lf9qLyxYc/WaKHGxka -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwNNJqpM/8ymLsp76Wsyz VUMcxaQ/b7XL8w7HzuTub4dKnmteFDVzSuit/PY/eK18HcmjxoqLd66RSraJb9J+ dE6lOcDB5e8vdWluIu3YaxITEjWFB7FIC6tGod35PCLheh2YsJYr34BTYAoH+DEf kbiad9F9xiNF2Nx5LKrDLdxcvlzXtk6EfEDDBggFAo9GLsCxIg5EiYle9FFif7Ai MjFCgWu9byQVceIbNlbXtjGpQDUWsA9XMzZYvmZxZncE35E8OPYgttwQr4SfAxOh rFDqaAe7Ea0mEjbnT8qWN/YQHGtd8V0pbZbFSjFiPyXiP3yX6bhUDT7lWpQx+Mwi rs6doO4O0wDS0AAggUvZFoZ5qBsnZuEcG/GAdMWi004ebOBerii/7L523wMLCqHx HogXVTsn+rRj1sPH9iUazLwDqN6Q1T3qh7hRmTfh/dxNu1M/u9CHHoy8nMz8n5wi LVjzCBbGEfso5ek++kr28rAUSGjOZclkoaWRp6Dpo/gHQaPbijlqqdoTXRFKwtsC rhhPRghC5GFFB+ktDKOtPhfbIsAMtodwwt8uoQg3BeoC9VdNPhI2CK34aF6auezR YWZwFLiWSWLXHyHSa/a51+ua3HxLYpTyBD21sxbz1gq2SBhTAThvb9CGxtGnRhBz mAqqpcijJb/znHeoGRTOSyECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 296343073210208131377021301148028038523593 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-12 17:14:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-11 17:14:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'okyadong.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 786658765953360213431100125906545924149804009280208769675342687997807337923266023661789228965451846207406048365383849760434346192087353803981925174780754037261605776762573522816558646216796069013620473143015295287741962943263507029310616108998818887559673187331553157969894986981393559781132158427819884932988874486133824115615977375570795907349948922495024791385277193872926536174924305402017477352163951243973150484145821426298930975329940988888856727591034753950414915148245475815247367474371282483934376631370380668877811224636753093927751140763240845781837016743982933282972966205669437349157095920896195778976629762541444864950950586120064700111426971660534606670256393773425877324296728953404074787659263317282632525612739292025839618147221594410172721862911699384600181868407100502781260925756700795697534060641758185180853446326492902457976414558014206161024959129937455787748606811859208710719170762267893446262882971560742938530204009757803577747379306546241138388986692679527111789463000997093061607751396619959442944112925780144755776199299689671134716899670427460789541644928636021605916054080383672326583116386123379133153315361541596635055081490198638720939786283083619270747400026050824170437798350395833009444899617 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 52667ee3ec77eb45fc1bc35179d9511f13a923b9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'okyadong.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f9af759480000040300473045022100d8286c59cd50972105738da93ccc4f8a1924391fbdfbf5312d3d0129b6a83a9b0220302ac26eeda939ac23f061117e1a6ba4e321a1066bbcb1b06d78ba519c5fefa00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016f9af759810000040300473045022100da5da9ccf50de0bf555a939b7ac8feed88320041f5e060df057bd1c91999bae40220130fef29c0118714cd3e82607848fa78002a5c52158df887e9e7f01e85a5d98c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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