ariamagazine.com
Issued by R3
About this certificate
This digital certificate with serial number 04:c4:59:3c:9f:2b:ea:b4:4d:11:eb:d7:69:5b:d3:e9:ae:f7 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=ariamagazine.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:c4:59:3c:9f:2b:ea:b4:4d:11:eb:d7:69:5b:d3:e9:ae:f7Serial Number (int): 415263103701363870459290669026148080004855
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: bf:2d:15:5b:6a:72:26:64:ff:29:f8:8d:96:35:34:84:50:bf:26:7f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 58:86:0f:81:c0:5e:4d:8b:1b:ff:ea:f7:84:d5:9e:30:25:e4:16:b6
Fingerprint (sha256): fe:b1:9e:88:a9:cf:57:19:17:ca:84:9e:a4:f0:fb:19:56:9c:f9:97:df:31:f2:da:f0:6a:70:d7:55:5e:af:51
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate ariamagazine.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for ariamagazine.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
ariamagazine.com
www.ariamagazine.com
www.ariamagazine.com
Other certificates including the domain name ariamagazine.com
(limited to 100 certificates)
www.tn.id
nybudstore.com
ariamagazine.com
www.montessori-preschool.com
bcmga.com
concours-gov.com
robot-case.com
www.newyorkjointpain.com
www.arxaia.com
tuffneck.com
123pi.org
www.johnlind.com
www.dentistsbismarck.com
freight-ware.com
fussballmanagerspiele.com
www.oregon-composite.com
www.ariamagazine.com
theangelsshare.com
www.firewoodpodcast.com
innopace.com
www.thatsgoodfood.com
www.xbt.exchange
3dplus1.com
ariamagazine.com
nybudstore.com
ariamagazine.com
www.montessori-preschool.com
bcmga.com
concours-gov.com
robot-case.com
www.newyorkjointpain.com
www.arxaia.com
tuffneck.com
123pi.org
www.johnlind.com
www.dentistsbismarck.com
freight-ware.com
fussballmanagerspiele.com
www.oregon-composite.com
www.ariamagazine.com
theangelsshare.com
www.firewoodpodcast.com
innopace.com
www.thatsgoodfood.com
www.xbt.exchange
3dplus1.com
ariamagazine.com
Certificate
The complete raw certificate details for ariamagazine.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGBDCCBOygAwIBAgISBMRZPJ8r6rRNEevXaVvT6a73MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDkxNTA3MTFaFw0yNDA3MDgxNTA3MTBaMBsxGTAXBgNVBAMT EGFyaWFtYWdhemluZS5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC AQC7xBdYsLE5bXb02L7dert7ZC+rKFsV9HBSKh8yJq7PTgCSKgSze75o3u9ftA57 M92vxCmzGEUyqof8jIDyP52BSRH6UtVvUU/LPG4KKVxx3rTtiNlncLTUPyIzBdPK ofxYEDi6aABioIg/jxEZP5nMMFP9CXrWqDhwN+fFVT2VT2IzBpiz3gdaDfoabYea 8Zub2bo3FeXBMtmpSqYFdmlbYTq+ayEISMDEVUiJDt1A0Y9MkcGwpYo6MdP48884 842Z1zH6R2J3PdLNr0bzrW31Ki1K6MiG8xrSHcxiJUtX+IrA0pUf6i9ycuRk2WHG fibOIKlty4nPjIKDD8CjTQmlqOnMNSI4wpC44KACx2SG5a63VlceJQcthWiH3b9l VYeSeNtcZA713EyAo/syXhiYQzabzy0NmsbGN5QXFP2niDmADeuN9oaJv/X33Gkd 3HQnknWhLJbV0rGtSlPiIGOO6/dZ/tAnvWsKLLu3VQQyYmNDdK7wGkT1FG5sSoIv Wso0EksqysDlh4ZOV8OuAWZJ4X1vs3OErU1MXmXKOgHSMVWFbK2Mc+U3hveDQO9u 0OFX3Fb6qY9M3jrpm4BSy9shUJlcmFf8B8ovq3ZnVla+8Kqga1eu8MZbDjNb6wm2 Xt/LD7xM1pqdIqCh9ywjc+pu9PJ+TwbQBjxhrtGat8oS1wIDAQABo4ICKTCCAiUw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS/LRVbanImZP8p+I2WNTSEUL8mfzAfBgNV HSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYI KwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0 cDovL3IzLmkubGVuY3Iub3JnLzAxBgNVHREEKjAoghBhcmlhbWFnYXppbmUuY29t ghR3d3cuYXJpYW1hZ2F6aW5lLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQUG CisGAQQB1nkCBAIEgfYEgfMA8QB2ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0t cm/h+tQXAAABjsOdBysAAAQDAEcwRQIhAK9SvUfvAb0eAeJ80ymm22dyGoX9akY1 Ho+h9v733OlMAiAycGyBmkIc7CZLd2EymPSZpO3ZG+j/mqQrnuQLb3eQvwB3AEiw 42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABjsOdBy8AAAQDAEgwRgIh APy3aknITvdcXpKEl/hGQGCTlhFrygisasHnQgKtxMcRAiEAx/nudZ0UBUBaguBh OWY2FSkNLd7OIgzUo+1wWt/n3lEwDQYJKoZIhvcNAQELBQADggEBAGZ1F6vyd+Ie 72WHMhIZMu9qbCvND0jaJcNw7j2YZ5LXxrhm+26aEkqcVEG3GyPAXa0fIthhXqrw /8LD5E/0sTCp7O0652odPA9sbbzVmb4iaagO7NQjC0Q+7iXFh+ut8s1bY+PY5DbF 3QT5m3mFA6hgeTAOxlvUB6CySxHCPPVsyKQJ0lZLe6lu+zXZ6iAGhRXYQY8rJ55Y pu8qlGTzDnvND2jtBug0DDxJb+8KxsUUg6yset9oOKpz5kF2KyhjpTLhmFef+jq/ 8LjOifdEXfPtX3rlj7PbMDzTzs1f9wW3aBkXRnwunB8zQlOv86I5tQySMumdWXgY fy7HHObten8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAu8QXWLCxOW129Ni+3Xq7 e2QvqyhbFfRwUiofMiauz04AkioEs3u+aN7vX7QOezPdr8QpsxhFMqqH/IyA8j+d gUkR+lLVb1FPyzxuCilccd607YjZZ3C01D8iMwXTyqH8WBA4umgAYqCIP48RGT+Z zDBT/Ql61qg4cDfnxVU9lU9iMwaYs94HWg36Gm2HmvGbm9m6NxXlwTLZqUqmBXZp W2E6vmshCEjAxFVIiQ7dQNGPTJHBsKWKOjHT+PPPOPONmdcx+kdidz3Sza9G861t 9SotSujIhvMa0h3MYiVLV/iKwNKVH+ovcnLkZNlhxn4mziCpbcuJz4yCgw/Ao00J pajpzDUiOMKQuOCgAsdkhuWut1ZXHiUHLYVoh92/ZVWHknjbXGQO9dxMgKP7Ml4Y mEM2m88tDZrGxjeUFxT9p4g5gA3rjfaGib/199xpHdx0J5J1oSyW1dKxrUpT4iBj juv3Wf7QJ71rCiy7t1UEMmJjQ3Su8BpE9RRubEqCL1rKNBJLKsrA5YeGTlfDrgFm SeF9b7NzhK1NTF5lyjoB0jFVhWytjHPlN4b3g0DvbtDhV9xW+qmPTN466ZuAUsvb IVCZXJhX/AfKL6t2Z1ZWvvCqoGtXrvDGWw4zW+sJtl7fyw+8TNaanSKgofcsI3Pq bvTyfk8G0AY8Ya7RmrfKEtcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 415263103701363870459290669026148080004855 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-09 15:07:11 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-08 15:07:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ariamagazine.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 766018371535610928317152951588810152941264564425911245258083586771842237143952508705587398989583103639594178991811213021963229495317456482428820144400041282683011771878604121660551614286732655367613307109365949305083349337497405842219857099210094972135067696741947145409163051791845054925850820984665659257855055679330637386545430160810692038105967786128340354072394285485055829770594604915893023353926733640114480961948091625193573165941550304481488068692221748524354649495092133629809654752167562193250494887103863361989981373216375681967551171220125603904793638497777175481380960237260941929959385833508066186099065870253943600008460571258649379165368617182485291106058570911025062927126361162327239681198476987167550060105429939129992258874174509581603825644891176513793234362384226764222661028880297505264178491655652076913470650904804243980213163538238146468224749131887053115137363851234362859845159456254606745160199887447267387554867663720046100225983901110352833098926335032153214578165340916054384843236293810808815804196945667970130048165268749709952863832035068151588821290458849134947056269498171393249081352273243580305488767019636727269227480799309863997348874992716738232627932559011095743921506805521437453846188759 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bf2d155b6a722664ff29f88d9635348450bf267f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ariamagazine.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ariamagazine.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018ec39d072b0000040300473045022100af52bd47ef01bd1e01e27cd329a6db67721a85fd6a46351e8fa1f6fef7dce94c022032706c819a421cec264b77613298f499a4edd91be8ff9aa42b9ee40b6f7790bf00770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018ec39d072f0000040300483046022100fcb76a49c84ef75c5e928497f84640609396116bca08ac6ac1e74202adc4c711022100c7f9ee759d1405405a82e06139663615290d2ddece220cd4a3ed705adfe7de51 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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