ainadia.com
Issued by R3
About this certificate
This digital certificate with serial number 03:2a:75:04:87:27:f8:3c:8d:9d:b1:8d:56:cf:30:f0:97:0d was issued on by Let's Encrypt.
With 15 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ainadia.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:2a:75:04:87:27:f8:3c:8d:9d:b1:8d:56:cf:30:f0:97:0dSerial Number (int): 275784260391946445019552985303348417697549
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 26:d3:f4:1a:8e:d8:c1:88:a0:b8:d3:6a:db:ed:79:4c:e6:a7:ac:f1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): cd:6c:57:fb:11:01:08:e3:8b:1f:9e:c7:8f:55:de:1f:da:24:20:bb
Fingerprint (sha256): c3:1e:d2:ba:23:ed:84:3c:49:ad:62:87:0d:7c:7b:7a:56:06:42:5e:09:29:0d:d0:ee:31:0f:9b:53:ef:d3:44
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ainadia.com
15
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ainadia.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ainadia.com
anselmacademic.com
bettie.us
butplus.com
buysellsportsmemorabilia.com
copanos.com
drawnsex.com
houstonkneearthritis.com
ivorypokerpalace.com
lithium4sale.com
mikromineralien.com
sindubai.com
taxdeductioninstitute.com
vicstateelections.com
whitpain.com
anselmacademic.com
bettie.us
butplus.com
buysellsportsmemorabilia.com
copanos.com
drawnsex.com
houstonkneearthritis.com
ivorypokerpalace.com
lithium4sale.com
mikromineralien.com
sindubai.com
taxdeductioninstitute.com
vicstateelections.com
whitpain.com
Other certificates including the domain name ainadia.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for ainadia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF9DCCBNygAwIBAgISAyp1BIcn+DyNnbGNVs8w8JcNMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MjcwMjM1MjlaFw0yNDA3MjYwMjM1MjhaMBYxFDASBgNVBAMT C2FpbmFkaWEuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsh8v CsEJRMULsBhO0EUmQpkpHIP2FnwVOxYEj9f9mmkynmGSHuCd5JPwXU7qExqrwTvf T+Y8TINznonLC8K5n0Cefd+twbpoxCyxw4T/+uXOeeodV5ZDSrsmhneCTxN9x0tU QdJvUC4+rJZ0KzhEjiT88rTyG5HTfJZCOXPqJDS4FHeQgS9yru651CRri89axKp6 /Yr7plrMusQ4mSgssoTk0ZCfqyxwmCbqaslOknPnFeYIfO0gB29ESTL/VGmUaxRJ o0UZpx6tc8XsETP8fxPCFxr+ym6d4VSIyILwWqeOEHdDgClaXqpL62JpoH4fxlex xdrIYCvIc2OuByVrtwIDAQABo4IDHjCCAxowDgYDVR0PAQH/BAQDAgWgMB0GA1Ud JQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQW BBQm0/QajtjBiKC402rb7XlM5qes8TAfBgNVHSMEGDAWgBQULrMXt1hWy65QCUDm H6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5v LmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3JnLzCC ASQGA1UdEQSCARswggEXggthaW5hZGlhLmNvbYISYW5zZWxtYWNhZGVtaWMuY29t ggliZXR0aWUudXOCC2J1dHBsdXMuY29tghxidXlzZWxsc3BvcnRzbWVtb3JhYmls aWEuY29tggtjb3Bhbm9zLmNvbYIMZHJhd25zZXguY29tghhob3VzdG9ua25lZWFy dGhyaXRpcy5jb22CFGl2b3J5cG9rZXJwYWxhY2UuY29tghBsaXRoaXVtNHNhbGUu Y29tghNtaWtyb21pbmVyYWxpZW4uY29tggxzaW5kdWJhaS5jb22CGXRheGRlZHVj dGlvbmluc3RpdHV0ZS5jb22CFXZpY3N0YXRlZWxlY3Rpb25zLmNvbYIMd2hpdHBh aW4uY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBQYKKwYBBAHWeQIEAgSB9gSB 8wDxAHYAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4AAAGPHZ9JVwAA BAMARzBFAiEA/P8tGhpfCSW662mKnbA7+FplvPYSIpdQJWw2mku68wcCIFOkzXQb XYqUUs6x/CJnt2wj3Ukr2ASJa4t017hZ2qdgAHcASLDja9qmRzQP5WoC+p0w6xxS ActW3SyB2bu/qznYhHMAAAGPHZ9JUwAABAMASDBGAiEAm/0zs27wN6vCSGnmuT0w mfqW9KjKma7LEwWcPetfrxACIQDXxpzroa7vO7Ks2ll7aHcdHconhDLqVAwukt13 oYZgvzANBgkqhkiG9w0BAQsFAAOCAQEAjgd73FVW3VdpAQTJncM6SjB849/4vwoi cvIIV/qJXYtkUue9oIknCUKRWnbN6zTesJ2zbeqmN856dNZrDLVYebbVbs/m3YLh YwwA+ApfLo0LxENiiZrBRMDm5ZJ4EKh+wrIIebOXuN7Aq/XuPuAKw5WJFL1eHMrU 2qsQ+NGAJqV3nehWpIYFU/nRebqQKAcy9YJTwNl6Roebnovvx4GxhJabkE4XM5nF cfiI+rlg6CalDjntAXJWfC7OmQboraGA3+aZrxHiJ+NbBFm6mJrZVo2D2+/j+1Z9 H3GAtFcwqKi1ri8zmble+vcyDwhWFAkh6ry0AbLl3Ad9JrlkNQeGrg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsh8vCsEJRMULsBhO0EUm QpkpHIP2FnwVOxYEj9f9mmkynmGSHuCd5JPwXU7qExqrwTvfT+Y8TINznonLC8K5 n0Cefd+twbpoxCyxw4T/+uXOeeodV5ZDSrsmhneCTxN9x0tUQdJvUC4+rJZ0KzhE jiT88rTyG5HTfJZCOXPqJDS4FHeQgS9yru651CRri89axKp6/Yr7plrMusQ4mSgs soTk0ZCfqyxwmCbqaslOknPnFeYIfO0gB29ESTL/VGmUaxRJo0UZpx6tc8XsETP8 fxPCFxr+ym6d4VSIyILwWqeOEHdDgClaXqpL62JpoH4fxlexxdrIYCvIc2OuByVr twIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 275784260391946445019552985303348417697549 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-27 02:35:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-26 02:35:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ainadia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22485795568070412947659234094231435121079917322689452422720155076204949590610748415943604113084521844473497390639200694750034208680373070969780326305530766473311358578791319056193254612249157280179228841047448459050765702390783824739190891444135925521632057543768503642924485922960183999508423818290745567699749065472708494333347455870662536148356976060913320673793057491053545028169213015807101649708243170619719598700099273751405495220338024909738615732591694378236044699164863556769578999260473237344439499795546277742023049011726343850684078576069274559872467725558371648453284303011141261822215735187882698435511 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 26d3f41a8ed8c188a0b8d36adbed794ce6a7acf1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (283 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ainadia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'anselmacademic.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bettie.us' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'butplus.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'buysellsportsmemorabilia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'copanos.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'drawnsex.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'houstonkneearthritis.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ivorypokerpalace.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lithium4sale.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mikromineralien.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sindubai.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taxdeductioninstitute.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vicstateelections.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'whitpain.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f1d9f49570000040300473045022100fcff2d1a1a5f0925baeb698a9db03bf85a65bcf612229750256c369a4bbaf307022053a4cd741b5d8a9452ceb1fc2267b76c23dd492bd804896b8b74d7b859daa76000770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f1d9f495300000403004830460221009bfd33b36ef037abc24869e6b93d3099fa96f4a8ca99aecb13059c3deb5faf10022100d7c69ceba1aeef3bb2acda597b68771d1dca278432ea540c2e92dd77a18660bf . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 008e077bdc5556dd57690104c99dc33a4a307ce3dff8bf0a2272f20857fa895d8b6452e7bda089270942915a76cdeb34deb09db36deaa637ce7a74d66b0cb55879b6d56ecfe6dd82e1630c00f80a5f2e8d0bc44362899ac144c0e6e5927810a87ec2b20879b397b8dec0abf5ee3ee00ac3958914bd5e1ccad4daab10f8d18026a5779de856a4860553f9d179ba90280732f58253c0d97a46879b9e8befc781b184969b904e173399c571f888fab960e826a50e39ed0172567c2ece9906e8ada180dfe699af11e227e35b0459ba989ad9568d83dbefe3fb567d1f7180b45730a8a8b5ae2f3399b95efaf7320f0856140921eabcb401b2e5dc077d26b964350786ae