tawastin.kokoomus.net

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:67:26:26:0b:d4:4a:d4:48:4e:22:72:f5:a3:fc:fd:29:3f was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=tawastin.kokoomus.net

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:67:26:26:0b:d4:4a:d4:48:4e:22:72:f5:a3:fc:fd:29:3f
Serial Number (int): 296436649799183887420864179090736136661311
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 1e:e8:64:7d:96:31:63:dc:96:8a:b2:f7:b2:82:a9:4a:71:6f:18:ee
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): f4:3e:b6:76:cd:76:bb:23:0f:57:b6:73:8a:a7:21:0e:50:86:8e:f6
Fingerprint (sha256): 00:00:32:0b:45:b8:e3:e3:a5:76:28:61:e3:70:10:aa:89:55:b2:a9:f7:cd:63:ca:52:2f:1e:d6:6d:32:ea:92

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org/

Check the revocation status for certificate tawastin.kokoomus.net

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for tawastin.kokoomus.net

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

tawastin.kokoomus.net

Other certificates including the domain name kokoomus.net

(limited to 100 certificates)
tawastin.kokoomus.net
seijapuputti.kokoomus.net
tiinahokkanenoja.kokoomus.net
minnahirvonen.kokoomus.net
sampsakokko.kokoomus.net
*.kokoomus.net
sampsakokko.kokoomus.net
lottakoponen.kokoomus.net
pukkilan.kokoomus.net
sampsakokko.kokoomus.net
lottakoponen.kokoomus.net
tawastin.kokoomus.net
seijapuputti.kokoomus.net
sampsakokko.kokoomus.net
minnahirvonen.kokoomus.net
*.kokoomus.net
*.kokoomus.net
*.kokoomus.net
pekkaruotsalainen.kokoomus.net
alavuden.kokoomus.net
hausjarvenkokoomus.kokoomus.net
susannaruotsalainen.kokoomus.net
artonatkynmaki.kokoomus.net
alavuden.kokoomus.net
susannaruotsalainen.kokoomus.net
pukkilan.kokoomus.net
saila.kokoomus.net
*.kokoomus.net
pekkaruotsalainen.kokoomus.net
minnahirvonen.kokoomus.net
pukkilan.kokoomus.net
minnahirvonen.kokoomus.net
artonatkynmaki.kokoomus.net
toivoajatuspaja.kokoomus.net
saila.kokoomus.net
pukkilan.kokoomus.net
kokoomuskaarina.kokoomus.net
tiinahokkanenoja.kokoomus.net
pekkaruotsalainen.kokoomus.net
alavuden.kokoomus.net
seijapuputti.kokoomus.net
*.kokoomus.net
alavuden.kokoomus.net
alavuden.kokoomus.net
artonatkynmaki.kokoomus.net
pukkilan.kokoomus.net
saila.kokoomus.net
*.kokoomus.net
seijapuputti.kokoomus.net
*.kokoomus.net
lottakoponen.kokoomus.net
artonatkynmaki.kokoomus.net
*.kokoomus.net
hausjarvenkokoomus.kokoomus.net
minnahirvonen.kokoomus.net
susannaruotsalainen.kokoomus.net
pukkilan.kokoomus.net
sampsakokko.kokoomus.net
susannaruotsalainen.kokoomus.net
seijapuputti.kokoomus.net
pekkaruotsalainen.kokoomus.net
pukkilan.kokoomus.net
lottakoponen.kokoomus.net
alavuden.kokoomus.net
tawastin.kokoomus.net
tawastin.kokoomus.net
tawastin.kokoomus.net
artonatkynmaki.kokoomus.net
alavuden.kokoomus.net
saila.kokoomus.net
turunkokoomusnaiset.kokoomus.net
pukkilan.kokoomus.net
pukkilan.kokoomus.net
tiinahokkanenoja.kokoomus.net
pekkaruotsalainen.kokoomus.net
tiinahokkanenoja.kokoomus.net
toivoajatuspaja.kokoomus.net
alavuden.kokoomus.net
lottakoponen.kokoomus.net
seijapuputti.kokoomus.net
susannaruotsalainen.kokoomus.net
tawastin.kokoomus.net
saila.kokoomus.net
pekkaruotsalainen.kokoomus.net
jyvaskylankokoomusnaiset.kokoomus.net
toivoajatuspaja.kokoomus.net
artonatkynmaki.kokoomus.net
minnahirvonen.kokoomus.net
toivoajatuspaja.kokoomus.net
minnahirvonen.kokoomus.net
hausjarvenkokoomus.kokoomus.net
*.kokoomus.net
susannaruotsalainen.kokoomus.net
*.kokoomus.net
tiinahokkanenoja.kokoomus.net
lottakoponen.kokoomus.net
alavuden.kokoomus.net
hausjarvenkokoomus.kokoomus.net
hausjarvenkokoomus.kokoomus.net
sampsakokko.kokoomus.net

Certificate

The complete raw certificate details for tawastin.kokoomus.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqCqFRieWqoAcLD8oY1iz
TPIgNmQDoQLqqDIyWwGFFqTEZIYtlKepAnhoMV3y/PzKmzorNUYbKp+V1hEKLvr2
+QCPNkSXYf6s9ahV0aGdQm0cBI9JrCs91VyV2oZTNRq8BW47y0te49/jqqJ8OIRI
DH8ycxlQvfRtthlM5UYxnemPNmUdIcfyuBE3UYrDUUBixfVzLgnJHKFjRDPlzgxZ
IS3vAuKSDa0uUIjAgGSSSPD89fcIOLLJae6vf61U/HSOTbinBnhkjigVAnrhcTrn
qVtfkIqhj0fQvKqHs7ZN8wdJbxYNoLhPht6/KeX+dw8nYsnEfK5GiDUS2e3kRMQH
TQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 296436649799183887420864179090736136661311
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-05-20 00:41:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-18 00:41:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tawastin.kokoomus.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21229002924484909622767162387374048180465645034503748765448410357246647487565870879884014931337387602553227833944917846689956070154376361809578277160206796615220226279347491514712070248647583014302021259801937163047477150036934584110973351465568403155932023682469456004479023988676642845078725763390263754540422981893086018387867597378697021963548488931557422535604314714028863887534775337312161672954991704408873880101080896232251198440282119784968217962878426295678135598361474110050983804281799092472703231605485818451804599950369024078707354915440705975152249726744776598589444725723944962710900819226121176614733
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1ee8647d963163dc968ab2f7b282a94a716f18ee
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (100 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tawastin.kokoomus.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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