ireadarabic.com

Issued by Amazon RSA 2048 M02

About this certificate

This digital certificate with serial number 07:77:87:f4:0c:8c:05:03:ff:e1:72:4b:80:dd:f2:4c was issued on by Amazon.

With 10 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ireadarabic.com

Amazon

Organization: Amazon
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 07:77:87:f4:0c:8c:05:03:ff:e1:72:4b:80:dd:f2:4c
Serial Number (int): 9925236757511295472340363685339722316
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: 85:8e:ed:bb:7d:cb:9f:8f:3f:65:83:94:79:04:90:86:56:91:ed:f2
AuthorityKeyId: c0:31:52:cd:5a:50:c3:82:7c:74:71:ce:cb:e9:9c:f9:7a:eb:82:e2

Fingerprint (sha1): e9:9e:b5:40:e7:46:a2:15:2f:28:20:12:c3:70:7c:07:d2:02:5d:ba
Fingerprint (sha256): bc:ee:76:91:7e:d4:65:7e:a4:ca:e0:fc:9c:01:dc:2f:4c:13:da:74:4f:65:36:91:db:9c:63:51:ed:ad:d4:7a

Issuing Certificate URL: http://crt.r2m02.amazontrust.com/r2m02.cer

Revocation information

OCSP Server: http://ocsp.r2m02.amazontrust.com
CRL Distribution Point: http://crl.r2m02.amazontrust.com/r2m02.crl

Check the revocation status for certificate ireadarabic.com

10

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ireadarabic.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ireadarabic.com
littlethinkingminds.com
*.kgarabic.com
istartarabic.com
kgarabic.com
dramainarabic.com
*.littlethinkingminds.com
*.ireadarabic.com
*.dramainarabic.com
*.istartarabic.com

Other certificates including the domain name ireadarabic.com

(limited to 100 certificates)
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
*.ireadarabic.com
www.darnelleaton.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
ireadarabic.com
cfo.chat
sni237450.cloudflaressl.com
www.ireadarabic.com
loyaltoken.io
joytasker.com
sni237450.cloudflaressl.com
pickmycollege.co.in
sandbox.dr-almond-app.de
sni237450.cloudflaressl.com
www.istartarabic.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sergey-arzumanyan.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
ireadarabic.com
sni237450.cloudflaressl.com
www.compramostumoto.es
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
ordernow.asianchefjasminegarden.com
11521820.peerly.app
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
lucasmanfield.com
sni237450.cloudflaressl.com
eliezerbarbosa.com
www.dope.domains
sni.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
ireadarabic.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
www.smartdream.es
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
program.ireadarabic.com
sni237450.cloudflaressl.com
webs.fr.catoblepon.com
sni237450.cloudflaressl.com
skiaverse.net
sni237450.cloudflaressl.com
ireadarabic.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
vodafone.ireadarabic.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
stellar.bcb.network
sni237450.cloudflaressl.com
siahonline.com.br
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
program.ireadarabic.com
sni237450.cloudflaressl.com
www.nieuwsbriefprogramma.nl
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
*.ireadarabic.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
ireadarabic.com
adawaifus.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
*.ireadarabic.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
www.loogia.tech
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com
sni237450.cloudflaressl.com

Certificate

The complete raw certificate details for ireadarabic.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnYdKSjJbiiNUFGYa/GMf
2bKC86KOfH7kHMyuuYtg5uh4FwSyP+ZwLmsvwpCBaVERNkBxRWwXhP7LrYXb1UzZ
4kJ7uxxICpCwg6HuG27IFGLGAVoVClSvBsfHRJcx7xR+Fr0CFvfd7cNBbzoMsb6F
ezyHmpZnP3X+oOoXJFhUgeiAXGPE/t3Ri7LcyZHGizI6pAW83Fn2wEzdFydySWcU
nCGrY9P2SZsT+Rd4N5lvPa6ajHcfkR6mBcsdwSvYF/gUd6joSfkrvmqqdxdUnzIg
0bpveUmfG2FgeEXG5Q7JQRHyTT/QXDIY4uuKlYowvYGTMxzjCyTc8wPvsK7f1WsS
ZQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 9925236757511295472340363685339722316
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Amazon RSA 2048 M02'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-20 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-16 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ireadarabic.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19886127961121940184941854804963978380395414514367673941445731757237946030209780813088194147474823860194061644291544018001926235354541720413131762118227810068538763321517648805770965238671565548569757196344594531830431253474178293904348659082643732216368889624330166271234711571349631568569580243230714150752453419662924473878746879501517570585316116356582025367112129802704237252928746993286470688614772161932378024755409331868825778396737869283946385221806075958498924911634786510195749923132702880981303206916553758519463203158730044388843835567355214773558759077116130884097239651048321145150964444462920934036069
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c03152cd5a50c3827c7471cecbe99cf97aeb82e2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							858eedbb7dcb9f8f3f658394790490865691edf2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (199 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ireadarabic.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'littlethinkingminds.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kgarabic.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'istartarabic.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kgarabic.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dramainarabic.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.littlethinkingminds.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.ireadarabic.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.dramainarabic.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.istartarabic.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.r2m02.amazontrust.com/r2m02.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (105 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.r2m02.amazontrust.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.r2m02.amazontrust.com/r2m02.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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