zinnia.exchange

Issued by R3

About this certificate

This digital certificate with serial number 03:9a:e2:ba:9f:8b:77:98:ce:9f:d3:a4:c3:7c:e4:59:43:7d was issued on by Let's Encrypt.

With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=zinnia.exchange

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:9a:e2:ba:9f:8b:77:98:ce:9f:d3:a4:c3:7c:e4:59:43:7d
Serial Number (int): 314041716831321196797193995248005342118781
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 41:53:22:db:50:60:45:3d:75:27:cf:b1:79:cc:92:12:34:5c:29:f1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): ab:61:12:97:a2:35:f4:e1:ed:2f:b3:fe:52:1b:5b:ad:90:9d:45:e9
Fingerprint (sha256): 16:0d:83:c8:aa:3e:a5:af:29:2b:a1:60:5a:da:ad:7d:5a:38:f8:12:98:ba:43:cf:39:6d:19:3e:59:bc:5c:97

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate zinnia.exchange

8

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for zinnia.exchange

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

adon.skyspirit.com
advertisingsynergy.com
attorneybyzip.com
healthycandybarreimagined.com
markcmillerlpc.com
vegetationmatrix.com
wearethepray.com
zinnia.exchange

Other certificates including the domain name zinnia.exchange

(limited to 100 certificates)
zinnia.exchange
modularhomes.world
zinnia.exchange
zinnia.exchange
zinnia.exchange
xb1.co.za
cryogenic.ninja
sexerencontre.be
zinnia.exchange
zinnia.exchange
zinnia.exchange
zinnia.exchange

Certificate

The complete raw certificate details for zinnia.exchange in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFhzCCBG+gAwIBAgISA5riup+Ld5jOn9Okw3zkWUN9MA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDA0MTUwNjMyMDBaFw0yNDA3MTQwNjMxNTlaMBoxGDAWBgNVBAMT
D3ppbm5pYS5leGNoYW5nZTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB
AMSxwEs1wKVZMLWu2mm5/ylW8tKc3Yk8bfNsLhQg8DRLvH9Ywc8RYK6Y6AJuDOl3
DAeA2je7iVGEhjCPaN0p6nbNjygsadS3Z6M4Cgr3IV13DqQcYD/56YEKYi3W99Xx
cyk0ueJK2/xlYfDMpE5tOPI1yuEr+vHZGLNLRNkQ+diu4N4WalnEyz4YYTNethBd
jT/av7PdZEhfE6D7MR6L8ox4/wCFMsVOOrGEa6DajCxk9vHJQvCRUgoPFr6SntJg
I7lPhlv4EhPaoHRXNNxctUwDGVsSn7xYGa1+NrvzsEwEyZVu6mw2VQH80AzvVJ5w
pD2n//ZVGiYSfukmS4ctf0kCAwEAAaOCAq0wggKpMA4GA1UdDwEB/wQEAwIFoDAd
BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV
HQ4EFgQUQVMi21BgRT11J8+xecySEjRcKfEwHwYDVR0jBBgwFoAUFC6zF7dYVsuu
UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v
cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y
Zy8wgbYGA1UdEQSBrjCBq4ISYWRvbi5za3lzcGlyaXQuY29tghZhZHZlcnRpc2lu
Z3N5bmVyZ3kuY29tghFhdHRvcm5leWJ5emlwLmNvbYIdaGVhbHRoeWNhbmR5YmFy
cmVpbWFnaW5lZC5jb22CEm1hcmtjbWlsbGVybHBjLmNvbYIUdmVnZXRhdGlvbm1h
dHJpeC5jb22CEHdlYXJldGhlcHJheS5jb22CD3ppbm5pYS5leGNoYW5nZTATBgNV
HSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AO7N0GTV
2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjuCrgo4AAAQDAEYwRAIgGiiW
nOSgMKBwwiFRVcrOuVTsAh3LlK/VXVmvnBG+MdUCIGPL+C7ndbI595yfOvR0xwEh
WYnw+ohn/EeFHImt/fnEAHYA3+FW66oFr7WcD4ZxjajAMk6uVtlup/WlagHRwTu+
UlwAAAGO4KuDZAAABAMARzBFAiAE0tJdYHeVPEFf7iA++nTzLNAx0LC1S7NQX8Ll
EVAuCgIhAKR0zKpPaxkgc9/h7A2zwAkwM4iNxWv5/Hmvz+luWUFrMA0GCSqGSIb3
DQEBCwUAA4IBAQC3vWwgvVmN0LfTT6yuPXArh5BVENscnsV/G6nfHRy7yNFdjk9h
aH0uk/wFXjxv2ctISx6RNzcm3kPWK5VIyJ0Qq52dtsVyP39bLQbqTrKalAriT30B
r3+q5xgdf927uXJHyIVxx/TtY9mOYRwRADUa67VvLW5YW2JRa9APl38lV1nWOWSf
IU1RYDZc3fyg/zWGulQCkVkQqfIah6JJ3hCIwlb3yh6L8zXOuNGMZBI38+CiRK2P
txINQQPSQCHov0xYE2usFBIibS1Qv9wLe8ysHvdAI/SPdyA3k5uYFZHs5I86pHwg
5lQoMLqa6W9Ll9xGOOLz/P5b+7GOWgecHfCV
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxLHASzXApVkwta7aabn/
KVby0pzdiTxt82wuFCDwNEu8f1jBzxFgrpjoAm4M6XcMB4DaN7uJUYSGMI9o3Snq
ds2PKCxp1LdnozgKCvchXXcOpBxgP/npgQpiLdb31fFzKTS54krb/GVh8MykTm04
8jXK4Sv68dkYs0tE2RD52K7g3hZqWcTLPhhhM162EF2NP9q/s91kSF8ToPsxHovy
jHj/AIUyxU46sYRroNqMLGT28clC8JFSCg8WvpKe0mAjuU+GW/gSE9qgdFc03Fy1
TAMZWxKfvFgZrX42u/OwTATJlW7qbDZVAfzQDO9UnnCkPaf/9lUaJhJ+6SZLhy1/
SQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 314041716831321196797193995248005342118781
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-15 06:32:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-14 06:31:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'zinnia.exchange'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24830360131083610518545892348237259329174512516102772456590345626380067817630121214027226969944412320242368240135841351802568895801035122402276932859750432431379157693664478986396638411287902725734414860642314477398623094244606971946974884379768875625223095772110382840229198486590630201739448080074555932514397849211745454634933860909472397075559325560424739413944590968146150131941029734388182289917563851840025686921701062056771452780074860830136596962853091345722481071311435131143552073049990098502664003199764417906050709680512117914954757275282285508736259682518069522935139626330724606899968654614863626993481
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							415322db5060453d7527cfb179cc9212345c29f1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (174 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'adon.skyspirit.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'advertisingsynergy.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'attorneybyzip.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healthycandybarreimagined.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'markcmillerlpc.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vegetationmatrix.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wearethepray.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zinnia.exchange'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ee0ab828e000004030046304402201a28969ce4a030a070c2215155caceb954ec021dcb94afd55d59af9c11be31d5022063cbf82ee775b239f79c9f3af474c701215989f0fa8867fc47851c89adfdf9c4007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018ee0ab83640000040300473045022004d2d25d6077953c415fee203efa74f32cd031d0b0b54bb3505fc2e511502e0a022100a474ccaa4f6b192073dfe1ec0db3c0093033888dc56bf9fc79afcfe96e59416b
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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