tipok.org.ua

Issued by WoSign CA Free SSL Certificate G2

About this certificate

This digital certificate with serial number 1b:ab:3b:54:8a:01:74:22:f9:77:8a:d6:ba:bb:c4:29 was issued on by WoSign CA Limited.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:

  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

tipok.org.ua

Country: UA

WoSign CA Limited

Organization: WoSign CA Limited
Country: CN

This certificate has expire since

Certificate Details

Serial Number (hex): 1b:ab:3b:54:8a:01:74:22:f9:77:8a:d6:ba:bb:c4:29
Serial Number (int): 36778242009045139460483410836080804905
Serial Number lenght: 125 bits, 16 octets

SubjectKeyId: 4c:79:c2:dd:3b:53:fa:9b:77:31:01:7e:7c:5b:ba:95:de:45:3b:09
AuthorityKeyId: d2:a7:16:20:7c:af:d9:95:9e:eb:43:0a:19:f2:e0:b9:74:0e:a8:c7

Fingerprint (sha1): 2a:2e:6f:c0:d0:e8:6f:1d:e0:35:be:ae:8d:2b:10:40:1d:1e:df:a8
Fingerprint (sha256): 00:23:ae:e3:88:0e:6c:40:a5:d5:74:7d:87:23:92:c7:2e:3b:b1:1c:30:f2:96:8e:d9:8a:d0:32:79:70:84:8c

Issuing Certificate URL: http://aia1.wosign.com/ca6.server1.free.cer

Revocation information

OCSP Server: http://ocsp1.wosign.com/ca6/server1/free
CRL Distribution Point: http://crls1.wosign.com/ca6-server1-free.crl

Check the revocation status for certificate tipok.org.ua

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for tipok.org.ua


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Client Authentication
Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

tipok.org.ua

Other certificates including the domain name tipok.org.ua

(limited to 100 certificates)

Certificate

The complete raw certificate details for tipok.org.ua in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGszCCBZugAwIBAgIQG6s7VIoBdCL5d4rWurvEKTANBgkqhkiG9w0BAQsFADBV
MQswCQYDVQQGEwJDTjEaMBgGA1UEChMRV29TaWduIENBIExpbWl0ZWQxKjAoBgNV
BAMTIVdvU2lnbiBDQSBGcmVlIFNTTCBDZXJ0aWZpY2F0ZSBHMjAeFw0xNjA5MDEx
NTU4NTRaFw0xOTA5MDExNTU4NTRaMCQxCzAJBgNVBAYTAlVBMRUwEwYDVQQDDAx0
aXBvay5vcmcudWEwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQClG9JF
t8xu62VsIBxREuFpd+5akSLHjPbX8efPQZHgJC7KeNV73C9mFbSVdRLiLrE38tyk
1cLB/B9e8SbGslnseckb1uT/tBPVdVJ/6faM5eSCUUbF59lnWUARUnzpQMNpBzKY
XbuQkFCnSVF5h4tWxJPZSKNzccL4zj6LhDrCn0VzWW6/lwjlIcSsu+qofnbW9d3v
lU44OPzqqXWk80dGy1yigaSwfhLB95m9/IzUlheM00iOHjVZbUnRl88lX9G6LDtu
2HHZoTKD6BBdflYDC/IKS8zRzdsoIou7BPg84+RC7BYiRtJGihn+kAKrLbylOuBW
JK6mMT110leorX4+ZfSL7Qywcx6uuqR89fNQvIrn0cB4h/LN/8zqCpaT26RWje/G
51sFSmdr72XL4LmYSCqNuHpgMX3wHBpp0STBuEW3HtAWe0668QgGcgVFCjFW3HfL
oesZsM6tcBdU1atJRSiZl2fP2aUgv3S1wk4dmaEPZkDX44roAs6FB61EyOg016ru
pm0ojYqqbuGXnhQlm/CLNKRjP1XMtSKyo5aZhSzsPkG1cwIapt2Z7Dvv2/rrUS53
4CTav+ip6GkEejrZmkVKhckt8Awmm+oYtSWIAMdkGdGwY+h5ba2zVA/kIBOlSG83
i3LlbCLMUDg1BDynb/DSetCUr8JeQe/gd7FuOQIDAQABo4ICrjCCAqowDgYDVR0P
AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMCBggrBgEFBQcDATAJBgNVHRME
AjAAMB0GA1UdDgQWBBRMecLdO1P6m3cxAX58W7qV3kU7CTAfBgNVHSMEGDAWgBTS
pxYgfK/ZlZ7rQwoZ8uC5dA6oxzB9BggrBgEFBQcBAQRxMG8wNAYIKwYBBQUHMAGG
KGh0dHA6Ly9vY3NwMS53b3NpZ24uY29tL2NhNi9zZXJ2ZXIxL2ZyZWUwNwYIKwYB
BQUHMAKGK2h0dHA6Ly9haWExLndvc2lnbi5jb20vY2E2LnNlcnZlcjEuZnJlZS5j
ZXIwPQYDVR0fBDYwNDAyoDCgLoYsaHR0cDovL2NybHMxLndvc2lnbi5jb20vY2E2
LXNlcnZlcjEtZnJlZS5jcmwwFwYDVR0RBBAwDoIMdGlwb2sub3JnLnVhME8GA1Ud
IARIMEYwCAYGZ4EMAQIBMDoGCysGAQQBgptRAQECMCswKQYIKwYBBQUHAgEWHWh0
dHA6Ly93d3cud29zaWduLmNvbS9wb2xpY3kvMIIBBAYKKwYBBAHWeQIEAgSB9QSB
8gDwAHYAaPaY+B9kgr46jO65KB1M/HFRXWeT1ETRCmesu09P+8QAAAFW5pL8rwAA
BAMARzBFAiEA0Zztp2BZ7Z+hfBjmLcJR/yzouMHa19U5/N42Kwr4WHICIEYIYKoA
hSA/xELe17uqzmxEHDynXH6kgnifw+OlKbHUAHYApLkJkLQYWBSHuxOizGdwCjw1
mAT5G9+443fNDsgN3BAAAAFW5pL9MgAABAMARzBFAiEA6WNWHOCN0xHafuKb6LsT
sr33aZobq8LxnoqUBBlqzGoCIFLI/RxzFvj9K4hpngsVjQDHtDxkWM8NT01+xY3Y
94HZMA0GCSqGSIb3DQEBCwUAA4IBAQCwov5jnvq0jmManBRrXz18UonXgUZYenX3
G5+aLUW0td/evMf0iozCAiDKOq9iJduDrt99wHyESEEj3vo1jDxxWQ72LIEr8txb
xuX3RfqCRoB44ClENlUKC12/TQCrNzsqNAGswEWOsc0soONGu9I6Bg2DggQBsC2O
yCLHUo7T1W5KiZxb2O7+ppFumUyjC+TfAIrsLteaZ1g+1kA8rU3wee1A5QoDj3Sd
l9Y3OSFjz7gtw/oHrQzygzpf1+r3TWtHB/M5EwRs/xvxmw9lilBDi5zpa9hsbhHg
PzbNSLW07u0Oy56X1AQVKNyt+d0siVEcHBZUM+47TnXd1aOkiUTF
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 36778242009045139460483410836080804905
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CN'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WoSign CA Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WoSign CA Free SSL Certificate G2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-01 15:58:54 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-01 15:58:54 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'UA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'tipok.org.ua'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 673584635726579375919506166215925178185026171761004361256128485377858411394154375217826470431371862110148519418912990500079086704077568032844479109459697224219380822913318681163881436903602176982698749335897267118360676896907895315092793749940014587060109688106916977603092911177389835977695749698483763808446362579742190167737875569514915292910364100944257813748778756034144070634890842018385960180746781054306605691018508011026091218683651594275606856220797430008167219231643626542767617888448999681975971878907973397593895811894117863331009099007964470756941703118136920896336243341292843734674497604745437417985845366924499188394502053992861826190326546321853448810718992879848711201750677350618161606191320844357549563445081776258870603610385881627102092869076498183279214468924951311709377170286534213526835243046952673625857451642842077186493397322414866778759486223805098542915132425151561378322633238571303230522317489257431101268169913224572067529557577618004658489291721172640237812349056173893717991957383221814215793107891816291743631072697044130662122855015627574067366452742011730087534046630983368850094098908769329892234865271474618414748311370861449952436247064793727208796805236200413116421081921611086107207888441
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							4c79c2dd3b53fa9b7731017e7c5bba95de453b09
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d2a716207cafd9959eeb430a19f2e0b9740ea8c7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp1.wosign.com/ca6/server1/free'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia1.wosign.com/ca6.server1.free.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls1.wosign.com/ca6-server1-free.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tipok.org.ua'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.36305.1.1.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.wosign.com/policy/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000760068f698f81f6482be3a8ceeb9281d4cfc71515d6793d444d10a67acbb4f4ffbc400000156e692fcaf0000040300473045022100d19ceda76059ed9fa17c18e62dc251ff2ce8b8c1dad7d539fcde362b0af858720220460860aa0085203fc442ded7bbaace6c441c3ca75c7ea482789fc3e3a529b1d4007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000156e692fd320000040300473045022100e963561ce08dd311da7ee29be8bb13b2bdf7699a1babc2f19e8a9404196acc6a022052c8fd1c7316f8fd2b88699e0b158d00c7b43c6458cf0d4f4d7ec58dd8f781d9
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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