ai-ds.thakaa.sa
Issued by R3
About this certificate
This digital certificate with serial number 04:43:41:25:c2:1b:60:76:11:33:af:36:72:98:91:92:bd:2f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ai-ds.thakaa.sa
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:43:41:25:c2:1b:60:76:11:33:af:36:72:98:91:92:bd:2fSerial Number (int): 371334658182410125750635102370122291133743
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 68:03:15:af:9b:0b:c4:d5:7b:18:40:d5:ac:03:f6:0d:38:9a:82:a7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): fd:36:39:19:75:c4:b2:38:68:e0:7c:15:8b:13:24:56:f8:e3:18:ff
Fingerprint (sha256): ec:f3:73:ff:db:e9:3f:25:4f:15:15:6b:96:9c:6a:b4:7a:7c:e7:cc:00:b5:52:39:0d:b3:63:f4:46:85:3c:89
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ai-ds.thakaa.sa
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ai-ds.thakaa.sa
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ai-ds.thakaa.sa
Other certificates including the domain name thakaa.sa
(limited to 100 certificates)
thakaa.sa
thakaa.sa
thakaa.sa
api.thakaa.sa
thakaa.sa
thakaa.sa
thakaa.sa
babysna.ps
thakaa.sa
www.thakaa.sa
thakaa.sa
apollo.thakaa.sa
sni.cloudflaressl.com
auth-dev.capely.net
www.thakaa.sa
www.aurielsoft.com
thakaa.sa
thakaa.sa
www.thakaa.sa
www.thakaa.sa
thakaa.sa
thakaa.sa
superowner.shopngoapp.in
thakaa.sa
thakaa.sa
en.thakaa.sa
apollo.thakaa.sa
germanburgardt.com
thakaa.sa
www.thakaa.sa
apollo.thakaa.sa
connect.entango.dev
www.thakaa.sa
mylifestyle.zencorp.in
www.thakaa.sa
mylifestyle.zencorp.in
thakaa.sa
www.highreturn.biz
thakaa.sa
thakaa.sa
ai-ds.thakaa.sa
thakaa.sa
thakaa.sa
thakaa.sa
api.thakaa.sa
thakaa.sa
thakaa.sa
thakaa.sa
babysna.ps
thakaa.sa
www.thakaa.sa
thakaa.sa
apollo.thakaa.sa
sni.cloudflaressl.com
auth-dev.capely.net
www.thakaa.sa
www.aurielsoft.com
thakaa.sa
thakaa.sa
www.thakaa.sa
www.thakaa.sa
thakaa.sa
thakaa.sa
superowner.shopngoapp.in
thakaa.sa
thakaa.sa
en.thakaa.sa
apollo.thakaa.sa
germanburgardt.com
thakaa.sa
www.thakaa.sa
apollo.thakaa.sa
connect.entango.dev
www.thakaa.sa
mylifestyle.zencorp.in
www.thakaa.sa
mylifestyle.zencorp.in
thakaa.sa
www.highreturn.biz
thakaa.sa
thakaa.sa
ai-ds.thakaa.sa
thakaa.sa
Certificate
The complete raw certificate details for ai-ds.thakaa.sa in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE6zCCA9OgAwIBAgISBENBJcIbYHYRM682cpiRkr0vMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEyMjkwMzM4NTVaFw0yNDAzMjgwMzM4NTRaMBoxGDAWBgNVBAMT D2FpLWRzLnRoYWthYS5zYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB ALR+GG7u1HKjrXA7IIIlAaX4K8rPBh4fw6qAU5HSl+kHjbzY6feWG9oJPMhCJNVp 3f1nJ5b94xRzV9iROWJPSn6qxWnggPQwzSDwzGApkr/eZjVplmVLbRr0lLpgbrUf 22i8R1RwUaLxsVB4jXnu6IKqvBQLPNn9IHIjBsQXoYOwhOgzlaFK149Hunu4NfHv 14gNp/vBaAwjdSZLxZ8TRQOFwHd6xdLG3hRHk9b0AZgQBFoRRGFfAXuZuIS3qahB CEl4KGa6SBGvbktil4ohHInzVKw3duCn7B5SRshvlwoeOHXzgPr07zazIYoDJ3pI mecomhYPgqwWSwCUW69b3RcCAwEAAaOCAhEwggINMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUaAMVr5sLxNV7GEDVrAP2DTiagqcwHwYDVR0jBBgwFoAUFC6zF7dYVsuu UAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8v cjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9y Zy8wGgYDVR0RBBMwEYIPYWktZHMudGhha2FhLnNhMBMGA1UdIAQMMAowCAYGZ4EM AQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHUAO1N3dT4tuYBOizBbBv5AO2fY T8P0x70ADS1yb+H61BcAAAGMs949bgAABAMARjBEAiArfwY50RPEIU3M8ptyL9HU hKXzRX4OL/hzugEi0BvKVgIgbZ/Gt/+qH9oz1MiG2jmYc9nbHUa1Q1l3oY7wv0VJ b2kAdwAp0DobtnSqcRzTA1tlV8FPiqeLT+g4lEnspFP5RL0kaAAAAYyz3j4+AAAE AwBIMEYCIQCd8l3RAhLZu3+5hRnNVaXSTsdCWvMOUTiUKkDnQoLSUQIhAKTEhrmv VNlUuHbl7JHnfWpCLDnxuDbXvpx0YfkPzvhgMA0GCSqGSIb3DQEBCwUAA4IBAQBP o6MTzEu+uIpFIFEQbeva6hyedoKfwGs6C0KTirpAr3w8nSM0MzzAUKbs5+ApceCR sABRFMcFdWnn0PhcyX8VjGd7v+wMdPPViLxUcS5zWc+DvERXU39ssjf3/Enok2KZ KQCuPF9ODXKVTPSJKekHr3/PbsKov1eRGzOBf1cSJsV+SybBin+QDRi6w5szOu9K V13bjq1QXejfs1BbogkIS0AejYPu4TmGdB2FLO3rs79/UhYRx/60uGrxymcB6Zvz 3J5mrfzb0mQEJSt1bQYxo/pjAeQ/sKEwVmBagFirFbt5lgATXWkXHucNI/hQmSI8 N/QDKSJteBulaUdvfh9e -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtH4Ybu7UcqOtcDsggiUB pfgrys8GHh/DqoBTkdKX6QeNvNjp95Yb2gk8yEIk1Wnd/Wcnlv3jFHNX2JE5Yk9K fqrFaeCA9DDNIPDMYCmSv95mNWmWZUttGvSUumButR/baLxHVHBRovGxUHiNee7o gqq8FAs82f0gciMGxBehg7CE6DOVoUrXj0e6e7g18e/XiA2n+8FoDCN1JkvFnxNF A4XAd3rF0sbeFEeT1vQBmBAEWhFEYV8Be5m4hLepqEEISXgoZrpIEa9uS2KXiiEc ifNUrDd24KfsHlJGyG+XCh44dfOA+vTvNrMhigMnekiZ5yiaFg+CrBZLAJRbr1vd FwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 371334658182410125750635102370122291133743 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-29 03:38:55 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-28 03:38:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ai-ds.thakaa.sa' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22785074874166592203475408641023563041377927210473763598920405903904303692069084447355201701759254431417746488934934014571860446331675986317309995725254506382510620369180610063857137779094543785388145288956100097482196882521482338949793107320443484802784518104472455857701100448567292431307687657639239752003852116146511495869964012087066112453758056660064715572251873768719439064061380198870572916682118018396295592667307887836245577409213675059415935279749655833255484794504189744020608841905438996696731067004695919309305102674939983197511851408221006100042552225751116848382190468113814918240269417074158649203991 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 680315af9b0bc4d57b1840d5ac03f60d389a82a7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ai-ds.thakaa.sa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018cb3de3d6e000004030046304402202b7f0639d113c4214dccf29b722fd1d484a5f3457e0e2ff873ba0122d01bca5602206d9fc6b7ffaa1fda33d4c886da399873d9db1d46b5435977a18ef0bf45496f6900770029d03a1bb674aa711cd3035b6557c14f8aa78b4fe8389449eca453f944bd24680000018cb3de3e3e00000403004830460221009df25dd10212d9bb7fb98519cd55a5d24ec7425af30e5138942a40e74282d251022100a4c486b9af54d954b876e5ec91e77d6a422c39f1b836d7be9c7461f90fcef860 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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