janiyah.org
Issued by R3
About this certificate
This digital certificate with serial number 03:55:32:51:4f:cf:0e:24:89:c0:86:5a:cc:e7:c9:1a:46:76 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=janiyah.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:55:32:51:4f:cf:0e:24:89:c0:86:5a:cc:e7:c9:1a:46:76Serial Number (int): 290327742578110261739858992084762352043638
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 33:9b:4c:69:76:d5:ca:43:b6:e0:f0:ac:8a:96:ef:83:db:40:38:46
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 72:3d:79:1f:fd:22:f4:8d:4f:b0:71:93:2d:0a:7f:4c:c9:35:0a:e1
Fingerprint (sha256): de:7f:f5:a1:cd:fb:45:f4:5f:be:1a:1e:71:39:5d:ea:8e:57:bf:bc:7d:3b:bf:6b:26:87:3e:1c:c8:07:ff:e5
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate janiyah.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for janiyah.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
janiyah.org
Other certificates including the domain name janiyah.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for janiyah.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4zCCBMugAwIBAgISA1UyUU/PDiSJwIZazOfJGkZ2MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA2MDEyMDI3MTJaFw0yNDA4MzAyMDI3MTFaMBYxFDASBgNVBAMT C2phbml5YWgub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAypW5 bJURJRch956lrKrDAk/+SdtX1gjjEBkj/ZeGD/82TThMymqE9CdaawkCDEUFfZV0 IO39Gbzdd3TBpEDJflqMip2DU07orw9tzPs5YU7mfv9xguGfl9MkASaqYY58UGDj 3z2VP3YC38YIQSrXSofX8U4AD7urFEaMHwl+2ykoxj7qP4yOmRth/7ynGqHBaC0G FCKH7VfzLBIVz7kLs6NP3NR5kROYYt+qmkOQ87TzsRSFXnyHMapkgEegVuGaExLu 2L+S9TaAZF0XYFgFsZZpRbr9VrtrPAGBB300IqrMtXHNuzhpPgSBSEaVK/WA5BTl x6paC7v1Z2KI1KVP4eTyvRQ3eezcey5x7mxqjekXbTCJOknjDxeNWi56om04Hcem VjSXpw2TADyVvsLCh3K7G70qiQAnXeYuV42oR/+8iCtdsBSKr/qDi+U1fS7Wszpe dtdCkSD7fJwzJmuadm7tSvzWZKs2QxIEz7keUW9Qn+5wlVlsH/wwES7SkXMUCoHA YGdjY60HxMJmfuFF4rcK26N0eAzrNoamunQwJY/JPX64BCIejDcJ/IhjSXRiCDp5 OBMHD1BBNU8NXpRj5dkL6dilJg/1Xj1Ro4wuhvMWERkfcxrHrYCnXJvYH1g5hoYR lV4XLPY3TQopKBUdgiodR6lIof9liM9AdarKdDkCAwEAAaOCAg0wggIJMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUM5tMaXbVykO24PCsipbvg9tAOEYwHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wFgYDVR0RBA8wDYILamFuaXlhaC5vcmcwEwYDVR0gBAww CjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdwA/F0tP1yJHWJQd ZRyEvg0S7ZA3fx+FauvBvyiF7PhkbgAAAY/Vsw9uAAAEAwBIMEYCIQCsrcyGCp4S nx/00btnWFBD4+YXw5QIAkWhpfhv3eYMlwIhAJUd9pipkmdW2hflITeHRTo/IKNN ZYjSMTJhpi+ZPPm5AHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQA AAGP1bMPugAABAMARjBEAiBdsGIxO3gVX4bmaOHgXxBO+fBpDT/+PM6kQyGVQXMF wgIgbIWBqs9UaJE3aREYSSr4oIWonP0lbl8XUf0a+R1BPDwwDQYJKoZIhvcNAQEL BQADggEBABG4HXXhHhHP3Bbo7c3fC9ur9G2AH1QrOTWrnCaFDAkfCJ7Y5Tc13p8j UqkNamBSnQJV/eYbiJol1XnYt2UV/TyLW77hQ83HWUgNd++7Rv91mwuoNwkOoxg5 0X7GMHHFw7mTEu7UgmtVBs8jd5dBqvAAeoxidQMoDvRSn5JqjnFoZ0Y++RH90w7t ewuOvjijLIMs9fk4SiG7G04IHKfTYLzw197D2KEnNnkp0dI5N4u+vt2XKIMNoR6/ ZncZWuwwJ6G3jhCnbrBErL1D3hIZzb41DSpOphydMUjg4I+IevdT9KCWpylfNj5p pNPpb3/9G7CnvIRNTNcBqy/bZo7DWOY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAypW5bJURJRch956lrKrD Ak/+SdtX1gjjEBkj/ZeGD/82TThMymqE9CdaawkCDEUFfZV0IO39Gbzdd3TBpEDJ flqMip2DU07orw9tzPs5YU7mfv9xguGfl9MkASaqYY58UGDj3z2VP3YC38YIQSrX SofX8U4AD7urFEaMHwl+2ykoxj7qP4yOmRth/7ynGqHBaC0GFCKH7VfzLBIVz7kL s6NP3NR5kROYYt+qmkOQ87TzsRSFXnyHMapkgEegVuGaExLu2L+S9TaAZF0XYFgF sZZpRbr9VrtrPAGBB300IqrMtXHNuzhpPgSBSEaVK/WA5BTlx6paC7v1Z2KI1KVP 4eTyvRQ3eezcey5x7mxqjekXbTCJOknjDxeNWi56om04HcemVjSXpw2TADyVvsLC h3K7G70qiQAnXeYuV42oR/+8iCtdsBSKr/qDi+U1fS7WszpedtdCkSD7fJwzJmua dm7tSvzWZKs2QxIEz7keUW9Qn+5wlVlsH/wwES7SkXMUCoHAYGdjY60HxMJmfuFF 4rcK26N0eAzrNoamunQwJY/JPX64BCIejDcJ/IhjSXRiCDp5OBMHD1BBNU8NXpRj 5dkL6dilJg/1Xj1Ro4wuhvMWERkfcxrHrYCnXJvYH1g5hoYRlV4XLPY3TQopKBUd giodR6lIof9liM9AdarKdDkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 290327742578110261739858992084762352043638 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-01 20:27:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-30 20:27:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'janiyah.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 826474124809256132991360372461965867901499479188015953474748245747185675887789202251286812276915250744510603199180804633186322359602881090897650311760154280279173971599857679596574679033795851004401835083111230061048951568301098301011483298353948982306409048634617072945419438657652496697977095512109945690779359324622871508808111923102625068130389027090350297865635205796264847996728142150875537223365163584401076663973587748169365952780933968593205274155593016211959326563815292828448566251694883433633738445988823852971924628627256465675229848100735247139268946622636171697185146840881325585780808969487559465077315459393350174433748331927145254974958412065569284130976225590681687496879374258961724610629579135141065503161914923897656888333491392524860207612967061562370812509251689667486888901506518154231583461832232045082207491507307453733874027708486020092147302465528884932773830612105548678609300306080594276128358837291391159868741478808044080304922916984552913391231061697084613786334926106035135082097284173998836885327394053793705819926256969430765626606672509597223087451892456880185746777708976836033026261442668818174921650294089895767920439250101705020033791588917700734991089594713381098433963472250190070752638009 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 339b4c6976d5ca43b6e0f0ac8a96ef83db403846 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'janiyah.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00077003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018fd5b30f6e0000040300483046022100acadcc860a9e129f1ff4d1bb67585043e3e617c394080245a1a5f86fdde60c97022100951df698a9926756da17e5213787453a3f20a34d6588d2313261a62f993cf9b900750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018fd5b30fba000004030046304402205db062313b78155f86e668e1e05f104ef9f0690d3ffe3ccea4432195417305c202206c8581aacf54689137691118492af8a085a89cfd256e5f1751fd1af91d413c3c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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