breakmedia.net
Issued by R3
About this certificate
This digital certificate with serial number 03:a5:fe:6d:22:97:bc:8b:fd:c0:df:ba:47:a7:0d:92:09:0f was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=breakmedia.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a5:fe:6d:22:97:bc:8b:fd:c0:df:ba:47:a7:0d:92:09:0fSerial Number (int): 317821638910146266823920250553229468895503
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 1f:f0:73:44:4b:b8:de:fa:77:d4:39:17:f3:6d:d8:fc:1d:1a:8c:2a
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): e1:3a:c3:71:11:2c:5d:e4:01:76:d7:75:68:2f:07:8a:dc:4f:2a:c8
Fingerprint (sha256): ff:d7:4b:5b:b7:03:f7:e0:db:82:f1:07:22:58:17:4c:dc:ce:62:fc:df:0d:43:a0:c7:4d:ba:b4:ad:16:2b:c6
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate breakmedia.net
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for breakmedia.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bm.offshorly.com
breakmedia.net
www.breakmedia.net
breakmedia.net
www.breakmedia.net
Other certificates including the domain name breakmedia.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for breakmedia.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFDzCCA/egAwIBAgISA6X+bSKXvIv9wN+6R6cNkgkPMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAyMjExODUzMTdaFw0yNDA1MjExODUzMTZaMBkxFzAVBgNVBAMT DmJyZWFrbWVkaWEubmV0MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA upnPBREmvz5GfjgDswUEYjr2B/puZapL05KWBlapLFnE3MCVXVqHEV/alHLm11Dk XzaeOJWg5a9e/tDG/HGjJ6JD5MbvGGEzmnUimj6YYx8h69k/kd0XiJtWoDtxzwBh IbZGetUfzmS47BoMk6VwuDX8AcL+/JTeGhxBsBBEKG747gsZQV5LgBhhoqvAZpdP wbubzUknxksHZ/YPlMXqcRYxy9E1CQKkDkJw9G4nj3010fUbR6nXPDlmcwuAYPCR TNffyRSqaF5ac7+LFTgZx5LMtxlFo9CY2CfWKoG7jUT3dB4VSm1zrwKgN2sQaBIC BPK54f6n7qAKnSg61NgVkQIDAQABo4ICNjCCAjIwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBQf8HNES7je+nfUORfzbdj8HRqMKjAfBgNVHSMEGDAWgBQULrMXt1hWy65Q CUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGGFWh0dHA6Ly9y My5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmkubGVuY3Iub3Jn LzA/BgNVHREEODA2ghBibS5vZmZzaG9ybHkuY29tgg5icmVha21lZGlhLm5ldIIS d3d3LmJyZWFrbWVkaWEubmV0MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYB BAHWeQIEAgSB9QSB8gDwAHUASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznY hHMAAAGNzTrHJwAABAMARjBEAiBuALVuUb7X2lVg7dBAq7n8OVgN4029W5ESaC1y UE/hmQIgVG1O2nTQL0bKxjSYurzmnfPW4fQyU/2pT3ZXF/VqYfIAdwB2/4g/Crb7 lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAY3NOsd6AAAEAwBIMEYCIQD0amY2 VrpvIeht3xeLEIa18Hz1Jr99x+qjXtuXj5GCAgIhAIK/X4qJrr6YoY8XtCRYQlE8 Jem6IUNYioreYj6v0ndbMA0GCSqGSIb3DQEBCwUAA4IBAQCePAbHGmonKatPpI4v SQUBzHf43cd5wPR33vMj9AM23doIvylNPuxVlEhIi73TtMz3pCx/Exsx4AchPk8E DGARC9G02/v1kvqRXqd2RI/ZBeqP2+1wIuMFUZciwu42H8TbFZOvzJHwElSU07et baos9vVkdI9a3vD9TCXAe19P6TeGF14Ob7uPDC/MSrAkYr4wP/uznd2xpJHJJRGc tzoSt0Cu3rw5akt6kmKW20TZDgBPYR3QXdAQZzdJrtRouoHCg6v9s0ca/IuvQ/mU RQ2hbEoELvjeoh7Aj9VGtHA519SPhToEVIWjJpiChDIpophvthRwApkfsXk3gpH3 k6U9 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupnPBREmvz5GfjgDswUE Yjr2B/puZapL05KWBlapLFnE3MCVXVqHEV/alHLm11DkXzaeOJWg5a9e/tDG/HGj J6JD5MbvGGEzmnUimj6YYx8h69k/kd0XiJtWoDtxzwBhIbZGetUfzmS47BoMk6Vw uDX8AcL+/JTeGhxBsBBEKG747gsZQV5LgBhhoqvAZpdPwbubzUknxksHZ/YPlMXq cRYxy9E1CQKkDkJw9G4nj3010fUbR6nXPDlmcwuAYPCRTNffyRSqaF5ac7+LFTgZ x5LMtxlFo9CY2CfWKoG7jUT3dB4VSm1zrwKgN2sQaBICBPK54f6n7qAKnSg61NgV kQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 317821638910146266823920250553229468895503 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-21 18:53:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-21 18:53:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'breakmedia.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23556170606204423003168272176500570725364382127607836432835240551056979028843808701562432762988743310781825130460558330435000111660761925873142746808222489404814264416923132229743817728597423046040969225169763085150950405524307766889248201913584441755452236909972424482190552878620562719472747086915151414034205559580195997480339874537053688675302131726259398727489492374725515963014893821511408393393636204400241249283021654608401366486860174545029894804415487364132833747271417474772341160644041921644216103411895625662784959701809237231037880745033285810149550750728801106591908416910756293592827956534727866324369 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1ff073444bb8defa77d43917f36dd8fc1d1a8c2a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bm.offshorly.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'breakmedia.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.breakmedia.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018dcd3ac727000004030046304402206e00b56e51bed7da5560edd040abb9fc39580de34dbd5b9112682d72504fe1990220546d4eda74d02f46cac63498babce69df3d6e1f43253fda94f765717f56a61f200770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018dcd3ac77a0000040300483046022100f46a663656ba6f21e86ddf178b1086b5f07cf526bf7dc7eaa35edb978f91820202210082bf5f8a89aebe98a18f17b4245842513c25e9ba2143588a8ade623eafd2775b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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