zodiacali.com
Issued by R3
About this certificate
This digital certificate with serial number 04:d6:c2:fa:6a:de:52:8f:ca:94:ea:d3:24:55:ad:f7:39:47 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=zodiacali.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:d6:c2:fa:6a:de:52:8f:ca:94:ea:d3:24:55:ad:f7:39:47Serial Number (int): 421528740721068346823014606836841263348039
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: a7:fd:55:a1:9e:91:e0:90:28:11:30:8d:c9:2d:51:ef:e3:f5:9f:33
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): a3:e9:19:af:cf:c2:54:d5:62:85:88:9f:20:8b:0e:78:ea:e6:6f:9a
Fingerprint (sha256): 2d:c8:8d:c3:a5:75:72:be:bc:47:40:40:24:70:1e:2c:a2:33:ee:c1:48:79:cc:47:1e:aa:e7:cf:98:f6:51:eb
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate zodiacali.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for zodiacali.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
zodiacali.com
Other certificates including the domain name zodiacali.com
(limited to 100 certificates)
vivej.com
www.roofrepairing.com
zodiacali.com
zodiacali.com
35141.com
www.davidsarnoff.com
www.essenziali.com
www.rowdiesrock.com
telefoniaaziendale.com
them.id
matureyoga.com
www.emprego-online.com
scoprileofferte.com
www.colorate.com
www.nashef.com
mammakush.com
www.rogue-case.com
www.geyaf.com
compositerack.com
purmega.com
www.roofrepairing.com
zodiacali.com
zodiacali.com
35141.com
www.davidsarnoff.com
www.essenziali.com
www.rowdiesrock.com
telefoniaaziendale.com
them.id
matureyoga.com
www.emprego-online.com
scoprileofferte.com
www.colorate.com
www.nashef.com
mammakush.com
www.rogue-case.com
www.geyaf.com
compositerack.com
purmega.com
Certificate
The complete raw certificate details for zodiacali.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5zCCBM+gAwIBAgISBNbC+mreUo/KlOrTJFWt9zlHMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjMwNDI0NDJaFw0yNDA1MjMwNDI0NDFaMBgxFjAUBgNVBAMT DXpvZGlhY2FsaS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCy oO2pG4WOqi5124/RV5Xh/Lr8wH6RR4jGqLsBGTPpASbVRERFpGxnZqqQIpd66Oiw VGMXSOWW+1wG7WNMCzZyzj2lwpqmxWrVgzR9Ozt9kt5HZQ8nKm+WDWKZ8Gyq7EQW /RUrgYUHHYsQAbJCW+FGdeOdxzzlx2ZIlaxRiTabUB1y1vCrrQoqLsshaN16Nk88 8MvkUAsq/ARv2MbVum1f0C55hpHdGMtTBexhvXTIcCZ9R+asnIomxvJK4H5oQQHL vtux/g8ya6RjQlUXG0+XvA+OOLgCtzyC6UzvZDBzqqECay48o/LKKuAhkMxsb0KS XmjMF22qBknmh6AdayZllkR6nC9TlxRlmo+LAfTbU94bnSC/ijYGDMKPvtoPTG+v +Oek9sywz8SLf5Bo3brhIqAJyqdSddB2/DFQA+pxOCGiEFMUT8zzxalHbbXS4DSr etbL2qZwZe6PG8bWvs6BkuF+Q9QT7pw4lDeyy0yOetY5phNZw+dUd5zDO/UPn2wJ OwyDDeapieEJbqkepeBwsue01C2vvIhiX33kPmT8vQxPVn9zJOSaiEpaxPlSHb2b Ysz8BeJxIYaHoNovFJzV4bB99rt1x6tJNSlQDLrBfLeAs5g1pkjkoNtkxRdDuIdO /Cpj/vmN2EZqjYPvlDIHLObE1M6Utv0El69iy0U6kQIDAQABo4ICDzCCAgswDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBSn/VWhnpHgkCgRMI3JLVHv4/WfMzAfBgNVHSME GDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYB BQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDov L3IzLmkubGVuY3Iub3JnLzAYBgNVHREEETAPgg16b2RpYWNhbGkuY29tMBMGA1Ud IAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYAouK/1h7e Ly8HoNZObTen3GVDsMa1LqLat4r4mm31F9gAAAGN1GxI2QAABAMARzBFAiEA/tf+ ChI+hgtG1FyMh98wFEM+/tZHQEC5KELRwGPh1dcCIGCYdJVVlAbPs95itoMIFtPi 8s0zg/KWGL6O41cQGc/6AHYASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznY hHMAAAGN1GxMxAAABAMARzBFAiEA4cFjC+i7i/NWTyTJwq1vyGshcfQFkfRiXqa+ 4U7+i8MCIAy12GH+boOwkMLSKFf1HIwq+VCo3fpJX1m+VZOwjITyMA0GCSqGSIb3 DQEBCwUAA4IBAQAGV7C+kV8A/X+1Z6rB9U+j2xHgQEuQMlcybeMXYwS8/ZLV8ce+ q5Bv7AL0F0HcyuG8dqlJfUzmHeWKtwSYeohlXsqVNjVwUtq53rxxgaRbgrtTiwtQ hvfS87XTTE1CTuOCB+/vS2t/RWIqQ61awDa7gDO/pBRFX/2aCg3if0QgG7PuXUev FeIzFEdThi1IwMRahGlIUIDhdhyZLrTXJk+e16kmxLkHdRG0DL8I01/aMbpbs6sl orNLWY2O3CMmyYhvv4j0URp4xh0g9DojQrNJNZeg1rg8hnw08oFtwTlwD0ZJx8pc 6XrB+Za9XSAta7rDERKo/XA/U7fG8hoKjXOd -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsqDtqRuFjqoudduP0VeV 4fy6/MB+kUeIxqi7ARkz6QEm1URERaRsZ2aqkCKXeujosFRjF0jllvtcBu1jTAs2 cs49pcKapsVq1YM0fTs7fZLeR2UPJypvlg1imfBsquxEFv0VK4GFBx2LEAGyQlvh RnXjncc85cdmSJWsUYk2m1Adctbwq60KKi7LIWjdejZPPPDL5FALKvwEb9jG1bpt X9AueYaR3RjLUwXsYb10yHAmfUfmrJyKJsbySuB+aEEBy77bsf4PMmukY0JVFxtP l7wPjji4Arc8gulM72Qwc6qhAmsuPKPyyirgIZDMbG9Ckl5ozBdtqgZJ5oegHWsm ZZZEepwvU5cUZZqPiwH021PeG50gv4o2BgzCj77aD0xvr/jnpPbMsM/Ei3+QaN26 4SKgCcqnUnXQdvwxUAPqcTghohBTFE/M88WpR2210uA0q3rWy9qmcGXujxvG1r7O gZLhfkPUE+6cOJQ3sstMjnrWOaYTWcPnVHecwzv1D59sCTsMgw3mqYnhCW6pHqXg cLLntNQtr7yIYl995D5k/L0MT1Z/cyTkmohKWsT5Uh29m2LM/AXicSGGh6DaLxSc 1eGwffa7dcerSTUpUAy6wXy3gLOYNaZI5KDbZMUXQ7iHTvwqY/75jdhGao2D75Qy ByzmxNTOlLb9BJevYstFOpECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 421528740721068346823014606836841263348039 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-23 04:24:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-23 04:24:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'zodiacali.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 728741216122749725249201481913314492157338558152679860292781730435829595475483198073892550017094609852753579752757311840702832314662420055764933958467255399820448688308039006886440665957979620847277257737420556683092093270533382193362926970794430718937565330967288851178660312023980976109070282513478755715252789678725021557789245584456576900053499482456921322101660944060644669493551374208343033792479059628298685264264936020817586995721793485767459690204927183160634095491669648644567831823584730454919654063081549728171454597567305685420499851753968183053022557105181344188825790776361176965278827316404628250117379775831284482524242059761616048877306790035048237478472296050690772221844736981954866464835076013147023164936127368305067752694972139546103908813246589796538994908030380042824910365130402566883556151741822507380664769404294034148912795864508529698516983669645714707607398680385504228521024576168768137988841474098715684150373421328220046287357578544434290364833690094498551644764125309320391605641189718129908751440780717662426069455342064240721068433891551562094560584587951384477038794459636059987891487497027638753078934502174007110269954387740289835834308615167535899028175988539383465640896361762836807544027793 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a7fd55a19e91e0902811308dc92d51efe3f59f33 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'zodiacali.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018dd46c48d90000040300473045022100fed7fe0a123e860b46d45c8c87df3014433efed6474040b92842d1c063e1d5d7022060987495559406cfb3de62b6830816d3e2f2cd3383f29618be8ee3571019cffa00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018dd46c4cc40000040300473045022100e1c1630be8bb8bf3564f24c9c2ad6fc86b2171f40591f4625ea6bee14efe8bc302200cb5d861fe6e83b090c2d22857f51c8c2af950a8ddfa495f59be5593b08c84f2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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