lms.reachmedia.co.nz
Issued by R3
About this certificate
This digital certificate with serial number 04:35:47:b9:d9:f4:c2:97:8b:84:16:ac:08:b4:f3:22:1e:99 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=lms.reachmedia.co.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:35:47:b9:d9:f4:c2:97:8b:84:16:ac:08:b4:f3:22:1e:99Serial Number (int): 366579449357145062064584528795779855425177
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: d9:05:f5:6d:a1:82:d8:93:cd:5e:d6:91:06:37:e1:09:25:48:ba:cd
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c9:61:ff:f6:18:58:73:f3:6e:0c:73:ff:55:e3:3c:db:84:62:65:ba
Fingerprint (sha256): da:18:43:c4:be:18:4a:93:81:aa:7c:9d:76:ac:07:5a:eb:97:d6:c5:51:96:5a:86:77:14:18:db:0e:45:2f:26
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate lms.reachmedia.co.nz
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lms.reachmedia.co.nz
Public Key Algorithm
RSA
Key Size
3072
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lms.reachmedia.co.nz
Other certificates including the domain name reachmedia.co.nz
(limited to 100 certificates)
reach.nz
sandbox.rpcadmin.sauvara.com
www.reachmedia.co.nz
aquacontrol.in
federiquitos.com
reachmedia.co.nz
reachmedia.co.nz
enquiries.reachmedia.co.nz
sputnik.reachmedia.co.nz
*.reachmedia.co.nz
sputnik.reachmedia.co.nz
quote.reachmedia.co.nz
*.reachmedia.co.nz
auditustec.com
www.rotsonsolitaire.com
www.mcareauto.com
federiquitos.com
www.gomyapp.com
reach.nz
reach.nz
engage.reachmedia.co.nz
app.yours.work.life
*.reachmedia.co.nz
www.3pondsdigital.io
www.aircache.app
engage.reachmedia.co.nz
*.reachmedia.co.nz
www.reachmedia.co.nz
sputnik.reachmedia.co.nz
epicgames.12traits.com
djanblom.dk
enquiries.reachmedia.co.nz
givebee.co
web.journee.live
reachmedia.co.nz
quote.reachmedia.co.nz
enquiries.reachmedia.co.nz
d-olympus.store
www.jayuyastem.org
lms.reachmedia.co.nz
construtoramayor.com.br
reachmedia.co.nz
web.journee.live
blockdrop.app
physician.hotfix.lifemd.com
construtoramayor.com.br
*.reachmedia.co.nz
bodymap.ai
member.toothpicprelive.com
sputnik.reachmedia.co.nz
olive.olivos.cl
reach.nz
admin.vojo.com.br
www.riingo.com
*.reachmedia.co.nz
reachmedia.co.nz
pinpoint-latest-wpba.cox2m.com
bodymap.ai
www.ryancorb.in
reach.nz
www.ryancorb.in
*.reachmedia.co.nz
reachmedia.co.nz
www.reachmedia.co.nz
www.mcareauto.com
couriers.reachmedia.co.nz
www-nutrigenomix-test.mixxmac.com
engage.reachmedia.co.nz
lms.reachmedia.co.nz
*.reachmedia.co.nz
ta.dn2me.com
hyper.hanak.in
fonts.typogram.co
www.reachmedia.co.nz
www.blate.app
ta.dn2me.com
reachmedia.co.nz
reach.nz
portal-uat.hastingsdeering.com.au
admin.vojo.com.br
sandbox.rpcadmin.sauvara.com
www.reachmedia.co.nz
aquacontrol.in
federiquitos.com
reachmedia.co.nz
reachmedia.co.nz
enquiries.reachmedia.co.nz
sputnik.reachmedia.co.nz
*.reachmedia.co.nz
sputnik.reachmedia.co.nz
quote.reachmedia.co.nz
*.reachmedia.co.nz
auditustec.com
www.rotsonsolitaire.com
www.mcareauto.com
federiquitos.com
www.gomyapp.com
reach.nz
reach.nz
engage.reachmedia.co.nz
app.yours.work.life
*.reachmedia.co.nz
www.3pondsdigital.io
www.aircache.app
engage.reachmedia.co.nz
*.reachmedia.co.nz
www.reachmedia.co.nz
sputnik.reachmedia.co.nz
epicgames.12traits.com
djanblom.dk
enquiries.reachmedia.co.nz
givebee.co
web.journee.live
reachmedia.co.nz
quote.reachmedia.co.nz
enquiries.reachmedia.co.nz
d-olympus.store
www.jayuyastem.org
lms.reachmedia.co.nz
construtoramayor.com.br
reachmedia.co.nz
web.journee.live
blockdrop.app
physician.hotfix.lifemd.com
construtoramayor.com.br
*.reachmedia.co.nz
bodymap.ai
member.toothpicprelive.com
sputnik.reachmedia.co.nz
olive.olivos.cl
reach.nz
admin.vojo.com.br
www.riingo.com
*.reachmedia.co.nz
reachmedia.co.nz
pinpoint-latest-wpba.cox2m.com
bodymap.ai
www.ryancorb.in
reach.nz
www.ryancorb.in
*.reachmedia.co.nz
reachmedia.co.nz
www.reachmedia.co.nz
www.mcareauto.com
couriers.reachmedia.co.nz
www-nutrigenomix-test.mixxmac.com
engage.reachmedia.co.nz
lms.reachmedia.co.nz
*.reachmedia.co.nz
ta.dn2me.com
hyper.hanak.in
fonts.typogram.co
www.reachmedia.co.nz
www.blate.app
ta.dn2me.com
reachmedia.co.nz
reach.nz
portal-uat.hastingsdeering.com.au
admin.vojo.com.br
Certificate
The complete raw certificate details for lms.reachmedia.co.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEgjCCA2qgAwIBAgISBDVHudn0wpeLhBasCLTzIh6ZMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMDExOTAwMjhaFw0yNDAyMjkxOTAwMjdaMB8xHTAbBgNVBAMT FGxtcy5yZWFjaG1lZGlhLmNvLm56MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIB igKCAYEAuRuan1rcaPxZTmozbaXeIdkYbSgcCbDKN89wu2OqErS6VrTNlrAdJuTf Y6usDuH8lzOGKZJB0PDE5Stv8Nc51BtxiGRf6b/tdf+5pqlDezxlBNJSW9ocTpS3 T3dge69K/Cs00Ki0MNAzpg9396Gz3n3gOwwFq1T4LRe0j+9yJu65jMK5YeT2B74V HTNdi0O7oMbTJ6gTRNyDDXRkSKSBmaTseu91Zc031qc3TWnBra+7IKbx2lFbJ306 4wkTOilBUEhDDLXSy1tu4S6FOZ40XSeO86XkugR01qJuf3pXyPaz+qwpzDkJZI9a OBYRBBWO4Dr/sYKtq0gHfgDo4VdI/CSiYa65aQs+v+Jug3w+q3QOFqwqYE40cGSO +5HB2rvJBqFpCPwtwgZbuhDPZWZ+GsHyGoxN7X0sX2av2NEHei+DYcb0uAf2kk4K UYhYgIpzGpq9U/bcxcPef+KkK30mPLmJGbox/P14bCqJ3qeJr4UoBUGmr3jIyO8f 9JHAdyC5AgMBAAGjggEjMIIBHzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFNkF9W2h gtiTzV7WkQY34QklSLrNMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYfr52LFMLG MFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8ubGVuY3Iu b3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMB8GA1UdEQQY MBaCFGxtcy5yZWFjaG1lZGlhLmNvLm56MBMGA1UdIAQMMAowCAYGZ4EMAQIBMBMG CisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQCclDV8s6QIB/4P ulDorZJFKsflXzbu+ij6YfKlFieYTHzJIHX9v1ivqpROXe/A9jMfStsGjOn/mlyq ZXI7SEX1PXD7FV3VPYLwQxGg6nlXadhCe8O6K2Qmg4htLnOmz5iJ3mybaIApWQC8 iHgrrUOf4I2jwxm9ty0vfaGZk2bna0x9rmHUAaergB5IdwJuFwa54WybkIAii+Ji jscsb4dxAPGjJGEFDwGwbMRsO18JVQ1/1P61D+BwL3NByX8LW1khvl8syZKkCnKp SFRz0xEb5Peo2hOGXZpqxdzjDo3Nfsj13xT7DOdgthEpObXHNNgb194O2IZX7u+z RfP8chYW -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBojANBgkqhkiG9w0BAQEFAAOCAY8AMIIBigKCAYEAuRuan1rcaPxZTmozbaXe IdkYbSgcCbDKN89wu2OqErS6VrTNlrAdJuTfY6usDuH8lzOGKZJB0PDE5Stv8Nc5 1BtxiGRf6b/tdf+5pqlDezxlBNJSW9ocTpS3T3dge69K/Cs00Ki0MNAzpg9396Gz 3n3gOwwFq1T4LRe0j+9yJu65jMK5YeT2B74VHTNdi0O7oMbTJ6gTRNyDDXRkSKSB maTseu91Zc031qc3TWnBra+7IKbx2lFbJ3064wkTOilBUEhDDLXSy1tu4S6FOZ40 XSeO86XkugR01qJuf3pXyPaz+qwpzDkJZI9aOBYRBBWO4Dr/sYKtq0gHfgDo4VdI /CSiYa65aQs+v+Jug3w+q3QOFqwqYE40cGSO+5HB2rvJBqFpCPwtwgZbuhDPZWZ+ GsHyGoxN7X0sX2av2NEHei+DYcb0uAf2kk4KUYhYgIpzGpq9U/bcxcPef+KkK30m PLmJGbox/P14bCqJ3qeJr4UoBUGmr3jIyO8f9JHAdyC5AgMBAAE= -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 366579449357145062064584528795779855425177 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-01 19:00:28 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-29 19:00:27 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lms.reachmedia.co.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3184 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 4200795109102278457606666868343656751067380982352262699945818624231880346089184525507396680481090264417957848698671914130406612656727507488338515129804851099723513274758368753306669856432699863090300008435959608517613843244189473789263198822188845646043808977128626760728411130577378067934045302658902942642471281409857636816276114153670438627158379434039051363133313669827427456545672482122769592924625184564753309089006490838196877825165214489890061801480382424465137911112061253405834842344740755896247389515969036061037469733262242390170314569949166720129518381197582139318610315774524043215823046934672460632958085702633914571456503476475102587845685053376423270544260656219138950943738255541126865694809755915541865629263996828171538488993372519937567280605979709120076800726856115119202520295885766026972702893900316640221269592262780708213310863820471775092545062318812069166544823406917018697978529155892887971897529 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d905f56da182d893cd5ed6910637e1092548bacd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lms.reachmedia.co.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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