tokenzz.com
Issued by R3
About this certificate
This digital certificate with serial number 03:d5:9d:a7:53:43:27:e1:64:5d:73:96:46:3f:8c:d5:dd:db was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=tokenzz.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:d5:9d:a7:53:43:27:e1:64:5d:73:96:46:3f:8c:d5:dd:dbSerial Number (int): 334026559547114866155027678155168623746523
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ee:96:28:a9:2e:3a:73:d1:a6:af:84:a5:b2:9e:4c:d1:a5:e3:a7:71
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): a6:32:c7:9d:8d:f2:43:5b:1b:59:72:4d:61:fb:28:16:8a:4b:d3:9b
Fingerprint (sha256): 00:c4:42:c9:78:2f:26:84:f0:e0:9f:76:a7:fe:48:de:5e:5a:36:aa:ac:88:fe:a3:6e:cc:0d:03:1e:f9:f5:fe
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate tokenzz.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tokenzz.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tokenzz.com
Other certificates including the domain name tokenzz.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for tokenzz.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4jCCBMqgAwIBAgISA9Wdp1NDJ+FkXXOWRj+M1d3bMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDcwODEwNDNaFw0yNDA3MDYwODEwNDJaMBYxFDASBgNVBAMT C3Rva2VuenouY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4pOo QY6CWUu8QMniB+nkYg6QJlS7vsM4oKFwrx29XBbZ7Z05gdgGRNMHpvemoQM0+lDr ITmrPJkeZ0mzMeHWzEan+XgSa5tjH8LIKL1e5IJ7vmYOgFon192/km73eu6YIHp8 calQ3auOIGVVidaoknPDN3i2ESc6cy3mwznbQDefCIWgRdDNC1Q9LvhNsxo7j0jE 06KvTh8V5aw0Y88jic0Ulo5pvYC6/FTL8zIaDdwEjYHQDNOPdstvLCz2irPMSBSb uPDq6VN7p/z5+F4LFYxoloWGRrcflPWLQhAg7SoYBkoBjDwxvkUSgXQ4HLBp29gc BrUn0VYHMd3hRNP+ypRdZ1hF+M3qeBkAlW38iWRtbs18B4UKJY6P6UQdMkaH/E0o 3IE8/pOgwJg8DCT8lGVg6GC9G7vSdQstf6KH+ga4k3rk8MFWY435K8QmkkgLu9rD 9upHNs8hw66MFJq4rv2dE2QsEZy7IgpbA6PjyNAn/IhziI73Ul/L0xReMYkkfv2t Cl1Tj0Ghd3aQ/SjZ8ylfDWCFjVEaP3SfH2pj/FFKKA4JdyyCQklvORJ3ZhHE40NU Rg/+GZ+o/r11FbrhXLEfP/YwhosFlI/ujxPl00/Z09ObZYnNbijSGqye5zn+vWpV 3iktOJRi7OzemsQyeeDsPmD2VPibpDTWjkB412sCAwEAAaOCAgwwggIIMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQU7pYoqS46c9Gmr4Slsp5M0aXjp3EwHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wFgYDVR0RBA8wDYILdG9rZW56ei5jb20wEwYDVR0gBAww CjAIBgZngQwBAgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQDuzdBk1dsazsVc t520zROiModGfLzs3sNRSFlGcR+1mwAAAY630wUDAAAEAwBGMEQCIHr1YgoJlN7r znmAov78xTbGdlpDo4U09wu9f9RwmeN/AiAsBK6E63uUhlizDHiaRv2HXkUo7K6v LwOCPfCdQz3YagB2ABmYEHEJ8NZSLjCA0p4/ZLuDbijM+Q9Sju7fzko/FrTKAAAB jrfTBewAAAQDAEcwRQIgfJsHVg7/5u7SfdvarXKmTLZ5MXvAZDq5UuD8+fthcMIC IQDlorcGfj/i8ivXzsjLsctf/9SnDyWgtX5mnXXqAL+u4TANBgkqhkiG9w0BAQsF AAOCAQEADADo02umsyL9v7LHudJhQ8cmOXFVHkHahUOnCxJD5ovVgI4ARNjArt6K 5d4uKvuqYef3q5mo0JYiEP4d5Q6+NZ5kalZaDBaXgkDRDCGoW0Lue5L0NgZ+88X8 BEeJ2JIHz3xIDifnoNdc/5jH0JK44K9nDk3SsEZ45jvZSyjAfhaS+/kAfpfKM26S aokloKQB9N6PfOWJkxqq4rTA4XMAJRpKI0LWcj8GGPdlw+vQF5XhcdbZVo6PZS8V Hd6n93gDaMJT0hAPCNRis17jGtA2SHnKU/4pz7L7acsdXlBnIw7at8vWTO9a8yyv ceE09B2U0b5a0uCsH+P8LZRFp0lQoA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4pOoQY6CWUu8QMniB+nk Yg6QJlS7vsM4oKFwrx29XBbZ7Z05gdgGRNMHpvemoQM0+lDrITmrPJkeZ0mzMeHW zEan+XgSa5tjH8LIKL1e5IJ7vmYOgFon192/km73eu6YIHp8calQ3auOIGVVidao knPDN3i2ESc6cy3mwznbQDefCIWgRdDNC1Q9LvhNsxo7j0jE06KvTh8V5aw0Y88j ic0Ulo5pvYC6/FTL8zIaDdwEjYHQDNOPdstvLCz2irPMSBSbuPDq6VN7p/z5+F4L FYxoloWGRrcflPWLQhAg7SoYBkoBjDwxvkUSgXQ4HLBp29gcBrUn0VYHMd3hRNP+ ypRdZ1hF+M3qeBkAlW38iWRtbs18B4UKJY6P6UQdMkaH/E0o3IE8/pOgwJg8DCT8 lGVg6GC9G7vSdQstf6KH+ga4k3rk8MFWY435K8QmkkgLu9rD9upHNs8hw66MFJq4 rv2dE2QsEZy7IgpbA6PjyNAn/IhziI73Ul/L0xReMYkkfv2tCl1Tj0Ghd3aQ/SjZ 8ylfDWCFjVEaP3SfH2pj/FFKKA4JdyyCQklvORJ3ZhHE40NURg/+GZ+o/r11Fbrh XLEfP/YwhosFlI/ujxPl00/Z09ObZYnNbijSGqye5zn+vWpV3iktOJRi7OzemsQy eeDsPmD2VPibpDTWjkB412sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 334026559547114866155027678155168623746523 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-07 08:10:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-06 08:10:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tokenzz.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 924352641502821289882624866958773773455114290502023680660380888030024530028275171997077003439734941763274312804794244190009586242500389328328714467067881983787910435660251287534840503262366252426826425672305966103931773618212034821853645391023591874134456753927008237458693013761523165411146840703702105113427283225354505379320665424997590810916050554011974903498482468521254045505187651293404997636358157809572019975297038365512877130795084728004571540369230789032613109566496073749134968158863977225005289351802705333371307096043021559650628327655787151064167825287534944752758440640041655104541809967223146572209906870269440663110755797102355295356431854317161129720078690367861594689936279195975151895230189076728290036140910257593684071810915275872540976981456087717802719149785100763735919714771482741741894897857244529222315981069660489758998161211819776721132638901070417432930733008955824812322747088943384222449722549087529637508971610753135691936322869364789272537468784161331587363785530001560927215696407886884652304663375193634571825189579708736913100563737541164216333700808834424381699050990785416037996766832495153954860077168365719171936271622758761369332054312564674143251890907917011042594969088895713731600242539 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ee9628a92e3a73d1a6af84a5b29e4cd1a5e3a771 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tokenzz.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018eb7d30503000004030046304402207af5620a0994deebce7980a2fefcc536c6765a43a38534f70bbd7fd47099e37f02202c04ae84eb7b948658b30c789a46fd875e4528ecaeaf2f03823df09d433dd86a0076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018eb7d305ec000004030047304502207c9b07560effe6eed27ddbdaad72a64cb679317bc0643ab952e0fcf9fb6170c2022100e5a2b7067e3fe2f22bd7cec8cbb1cb5fffd4a70f25a0b57e669d75ea00bfaee1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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