DV SSL/TLS Certificate for www.arleigh.io

Certificate is witin its validity period

Issued by Let's Encrypt (R11)

About the www.arleigh.io DV SSL/TLS Certificate

This certificate with serial number 05:e4:f7:b1:e4:cf:28:08:b7:c5:fb:20:5c:a1:c6:33:98:05 for www.arleigh.io was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.arleigh.io provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:e4:f7:b1:e4:cf:28:08:b7:c5:fb:20:5c:a1:c6:33:98:05
Serial Number (int): 513475052309080047000544554023283774953477
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: ed:2e:b9:45:cd:b5:ca:93:1d:06:d0:1b:94:7b:94:8b:1d:ee:3d:4d
Authority Key Identifier: c5:cf:46:a4:ea:f4:c3:c0:7a:6c:95:c4:2d:b0:5e:92:2f:26:e3:b9

Fingerprint (SHA-1): 0e:7a:17:9b:df:83:57:4c:5e:aa:7d:20:1b:3d:22:31:0b:34:75:79
Fingerprint (SHA-256): 6a:35:6d:ac:6a:f5:c5:f3:14:85:61:e7:a7:c0:b8:17:61:18:bf:23:78:ee:43:0a:06:94:64:39:e2:01:16:14

Issuing Certificate URL: http://r11.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r11.c.lencr.org/6.crl

Check the revocation status for certificate www.arleigh.io
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.arleigh.io

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.arleigh.io

X.509 Certificate

The complete raw X.509 certificate details for www.arleigh.io in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy44I1ZxLgZCeCrrhZc7S
PTOhNfp0HvKxwB3F7sWMootRv7GKXg/fwZsvFBdPiJfkc23NAttkRrgCEG10Xn5q
PzCRrKWQV3lkkWMvXe5LFCqRJcVz05PibkK4wSG85fPcCYr8RXc2ahJpkXDQt7Uv
Ly4cXoyYZazJ3QbumMKsthrmqzZ5UdRpwnjHu5JeYHCKBEHtVvK6kMw1Ok5OoHpc
i2J0VWLEQGjseUBttFtmiFVeyAX09LF58ShuSjLP5pA7tzrk30cQQlFb57EENCqz
j8+WMm3EguQfLLAXR4eDCfE72QEfX58gcbGGj3kjZPCtOkoKCLHa+ZMIwB9vLFkm
zwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 513475052309080047000544554023283774953477
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R11'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-21 01:37:21 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-19 01:37:20 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.arleigh.io'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25696415735133867601860164287291125197225225764353625808373583096962911338239959195548654058636146552674112938707799549425159699741074278372291587522113513338504515265465535968718543677905962156636132081593368151102367996076857517332680670608856305694908824151162622177631822422376128764845952880697849305791764017446877253557449213385446295193433178333277295798479336094474904369920963598963926665906501234479791352401959788325544204782183781159098327177775817175771610066017121947955157597223180657134670792292569015813601844515554367474637684129636709719751377259449922724320294759537673848346666248023389144426191
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ed2eb945cdb5ca931d06d01b947b948b1dee3d4d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c5cf46a4eaf4c3c07a6c95c42db05e922f26e3b9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.arleigh.io'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r11.c.lencr.org/6.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a845400000196f0b27cec000004030047304502205893eeb0dba7428903606e4fc7e5567acc89135a24cc194dc19d1a463b53ff9402210087825c6baf17275e1e9ed8fed636d9a4e0c27bd4858892a501334a3d45175bdc007500dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a00000196f0b27ea0000004030046304402201a19a02b9ee469bdcea433430da37d6f18163c30a4831e824f1c58c15da2939f022025e810b1267307044db2ac08110612c2cfcf81250b44515dcbf87898aa0113da
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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