tosmagazine.org

Issued by R3

About this certificate

This digital certificate with serial number 03:63:94:2b:79:09:14:c9:49:17:49:83:fb:2e:43:08:77:ea was issued on by Let's Encrypt.

With 18 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=tosmagazine.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:63:94:2b:79:09:14:c9:49:17:49:83:fb:2e:43:08:77:ea
Serial Number (int): 295221763587485780913452570394346849335274
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 3c:a3:4e:c6:f8:53:2a:91:8f:45:64:5f:25:e1:93:f9:14:d2:00:b7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 35:fd:df:b6:50:90:80:9f:99:71:60:da:95:9f:52:59:d9:51:31:e6
Fingerprint (sha256): 6f:04:2d:27:21:81:a9:8f:57:08:fa:2e:27:8c:fa:73:4c:d0:6a:bc:a4:95:5f:28:38:b0:f9:ef:59:8b:bb:1b

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate tosmagazine.org

18

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for tosmagazine.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

abbysmyth.com
arbitrageplays.com
bhawna.in
bradcongress.com
camettings.statenationals.us
chubby-couture.net
collegekits.com
defendowen.com
estarpayments.com
patriotphoenix.com
pjc.co.in
promptrpt.com
rexranch.com
sherriemcknight.com
surreyliposuction.com
tosmagazine.org
usedrackcase.com
xn--mbelmontering-imb.com

Other certificates including the domain name tosmagazine.org

(limited to 100 certificates)
bigdaddyunlimited.club
tosmagazine.org
tosmagazine.org
norwoodwaterworks.ca
tosmagazine.org
tosmagazine.org

Certificate

The complete raw certificate details for tosmagazine.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4plJuM2LnIAw+maiH5z3
5krMYvB0yc4oi0QAKm5SJh20gB9rlheNLxk2lRVRIHtT9V/RV0b+PXn9QSyTFTOa
F1+UOEu2iQ2XHK8kQTe15nkuHu7CiOGzTubX6Hm4cyxGB67H89ZucuQdBMRYHNHw
Tm70JgHguglMXP/I/3SFzXV9DdwXtFT9Hn1JlL/liW85vq0KsDSbdL07nJJqifSY
fds8aivtw1t9l6EOaFMzpLYaN22Y4OrTcuzBAlPZhXOMRVVvXG92s9j5oC9uWOYS
p0KPv9KoQ76EQU1qkmJEoqV4NIn1HCN49BMJj8hxs6dp0BmBUuLRKPDTrbDPsS8x
jQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 295221763587485780913452570394346849335274
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-27 01:28:41 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-26 01:28:40 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tosmagazine.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28605446040598371595801937718381827159135769655326552031545964123245466967308665146715530017808267256258174421748461981917598948565434973966131035710368495095073217251248693250238435318859319810910006803310205163776788107164994622168388082551111674396241679899481210253558797421831618917795466763253200715974312176780480454301839488482770175832221814218967218524228362711882637365934505820270785364869427262466214484560676891201518692235623656142723249922392245275923517171058807990241607850365813015811770821426780264437409716252871502303625977279074020129790175444271822545414823371471452622281457665804971031867789
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3ca34ec6f8532a918f45645f25e193f914d200b7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (336 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'abbysmyth.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'arbitrageplays.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bhawna.in'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bradcongress.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'camettings.statenationals.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'chubby-couture.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'collegekits.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'defendowen.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'estarpayments.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'patriotphoenix.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pjc.co.in'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'promptrpt.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rexranch.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sherriemcknight.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'surreyliposuction.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tosmagazine.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'usedrackcase.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xn--mbelmontering-imb.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f1d62215e00000403004730450221008875df2a489c835ed797a5c7a3c64c49c4979f1ca15a3e5c335aa2f841f5dd1602204e30b0ad9f53cf08f0b7a06773f1b5134e024619259d023ff852d25d8949699300770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f1d622157000004030048304602210094a0fc4b8a3296521eb3b14a243154a4cf8cbcc69020a591e21a812e5fc917dc022100aeab33efa8b318de01862a5b60981764b4c70cdf995fb39b7daf263ebad1e413
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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