zinnia.exchange
Issued by R3
About this certificate
This digital certificate with serial number 03:9a:e2:ba:9f:8b:77:98:ce:9f:d3:a4:c3:7c:e4:59:43:7d was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=zinnia.exchange
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:9a:e2:ba:9f:8b:77:98:ce:9f:d3:a4:c3:7c:e4:59:43:7dSerial Number (int): 314041716831321196797193995248005342118781
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 41:53:22:db:50:60:45:3d:75:27:cf:b1:79:cc:92:12:34:5c:29:f1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ab:61:12:97:a2:35:f4:e1:ed:2f:b3:fe:52:1b:5b:ad:90:9d:45:e9
Fingerprint (sha256): 16:0d:83:c8:aa:3e:a5:af:29:2b:a1:60:5a:da:ad:7d:5a:38:f8:12:98:ba:43:cf:39:6d:19:3e:59:bc:5c:97
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate zinnia.exchange
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for zinnia.exchange
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
adon.skyspirit.com
advertisingsynergy.com
attorneybyzip.com
healthycandybarreimagined.com
markcmillerlpc.com
vegetationmatrix.com
wearethepray.com
zinnia.exchange
advertisingsynergy.com
attorneybyzip.com
healthycandybarreimagined.com
markcmillerlpc.com
vegetationmatrix.com
wearethepray.com
zinnia.exchange
Other certificates including the domain name zinnia.exchange
(limited to 100 certificates)
Certificate
The complete raw certificate details for zinnia.exchange in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgISA5riup+Ld5jOn9Okw3zkWUN9MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MTUwNjMyMDBaFw0yNDA3MTQwNjMxNTlaMBoxGDAWBgNVBAMT D3ppbm5pYS5leGNoYW5nZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMSxwEs1wKVZMLWu2mm5/ylW8tKc3Yk8bfNsLhQg8DRLvH9Ywc8RYK6Y6AJuDOl3 DAeA2je7iVGEhjCPaN0p6nbNjygsadS3Z6M4Cgr3IV13DqQcYD/56YEKYi3W99Xx cyk0ueJK2/xlYfDMpE5tOPI1yuEr+vHZGLNLRNkQ+diu4N4WalnEyz4YYTNethBd jT/av7PdZEhfE6D7MR6L8ox4/wCFMsVOOrGEa6DajCxk9vHJQvCRUgoPFr6SntJg I7lPhlv4EhPaoHRXNNxctUwDGVsSn7xYGa1+NrvzsEwEyZVu6mw2VQH80AzvVJ5w pD2n//ZVGiYSfukmS4ctf0kCAwEAAaOCAq0wggKpMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUQVMi21BgRT11J8+xecySEjRcKfEwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wgbYGA1UdEQSBrjCBq4ISYWRvbi5za3lzcGlyaXQuY29tghZhZHZlcnRpc2lu Z3N5bmVyZ3kuY29tghFhdHRvcm5leWJ5emlwLmNvbYIdaGVhbHRoeWNhbmR5YmFy cmVpbWFnaW5lZC5jb22CEm1hcmtjbWlsbGVybHBjLmNvbYIUdmVnZXRhdGlvbm1h dHJpeC5jb22CEHdlYXJldGhlcHJheS5jb22CD3ppbm5pYS5leGNoYW5nZTATBgNV HSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AO7N0GTV 2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjuCrgo4AAAQDAEYwRAIgGiiW nOSgMKBwwiFRVcrOuVTsAh3LlK/VXVmvnBG+MdUCIGPL+C7ndbI595yfOvR0xwEh WYnw+ohn/EeFHImt/fnEAHYA3+FW66oFr7WcD4ZxjajAMk6uVtlup/WlagHRwTu+ UlwAAAGO4KuDZAAABAMARzBFAiAE0tJdYHeVPEFf7iA++nTzLNAx0LC1S7NQX8Ll EVAuCgIhAKR0zKpPaxkgc9/h7A2zwAkwM4iNxWv5/Hmvz+luWUFrMA0GCSqGSIb3 DQEBCwUAA4IBAQC3vWwgvVmN0LfTT6yuPXArh5BVENscnsV/G6nfHRy7yNFdjk9h aH0uk/wFXjxv2ctISx6RNzcm3kPWK5VIyJ0Qq52dtsVyP39bLQbqTrKalAriT30B r3+q5xgdf927uXJHyIVxx/TtY9mOYRwRADUa67VvLW5YW2JRa9APl38lV1nWOWSf IU1RYDZc3fyg/zWGulQCkVkQqfIah6JJ3hCIwlb3yh6L8zXOuNGMZBI38+CiRK2P txINQQPSQCHov0xYE2usFBIibS1Qv9wLe8ysHvdAI/SPdyA3k5uYFZHs5I86pHwg 5lQoMLqa6W9Ll9xGOOLz/P5b+7GOWgecHfCV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLHASzXApVkwta7aabn/ KVby0pzdiTxt82wuFCDwNEu8f1jBzxFgrpjoAm4M6XcMB4DaN7uJUYSGMI9o3Snq ds2PKCxp1LdnozgKCvchXXcOpBxgP/npgQpiLdb31fFzKTS54krb/GVh8MykTm04 8jXK4Sv68dkYs0tE2RD52K7g3hZqWcTLPhhhM162EF2NP9q/s91kSF8ToPsxHovy jHj/AIUyxU46sYRroNqMLGT28clC8JFSCg8WvpKe0mAjuU+GW/gSE9qgdFc03Fy1 TAMZWxKfvFgZrX42u/OwTATJlW7qbDZVAfzQDO9UnnCkPaf/9lUaJhJ+6SZLhy1/ SQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 314041716831321196797193995248005342118781 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-15 06:32:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-14 06:31:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'zinnia.exchange' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24830360131083610518545892348237259329174512516102772456590345626380067817630121214027226969944412320242368240135841351802568895801035122402276932859750432431379157693664478986396638411287902725734414860642314477398623094244606971946974884379768875625223095772110382840229198486590630201739448080074555932514397849211745454634933860909472397075559325560424739413944590968146150131941029734388182289917563851840025686921701062056771452780074860830136596962853091345722481071311435131143552073049990098502664003199764417906050709680512117914954757275282285508736259682518069522935139626330724606899968654614863626993481 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 415322db5060453d7527cfb179cc9212345c29f1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (174 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adon.skyspirit.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advertisingsynergy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'attorneybyzip.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthycandybarreimagined.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'markcmillerlpc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vegetationmatrix.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wearethepray.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zinnia.exchange' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ee0ab828e000004030046304402201a28969ce4a030a070c2215155caceb954ec021dcb94afd55d59af9c11be31d5022063cbf82ee775b239f79c9f3af474c701215989f0fa8867fc47851c89adfdf9c4007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ee0ab83640000040300473045022004d2d25d6077953c415fee203efa74f32cd031d0b0b54bb3505fc2e511502e0a022100a474ccaa4f6b192073dfe1ec0db3c0093033888dc56bf9fc79afcfe96e59416b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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