tukwilawa.com
Issued by R3
About this certificate
This digital certificate with serial number 03:be:c8:65:8c:92:ed:9c:22:df:d5:6f:de:37:ef:d3:ce:30 was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=tukwilawa.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:be:c8:65:8c:92:ed:9c:22:df:d5:6f:de:37:ef:d3:ce:30Serial Number (int): 326256880382576936132845552318120379797040
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 6e:72:03:73:63:68:4c:ce:48:23:56:58:62:7c:20:a5:d0:ab:3f:7c
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ec:95:e7:9f:58:38:b2:61:de:8e:6d:cb:74:09:40:dc:f8:b0:a3:45
Fingerprint (sha256): 0a:f0:8c:dd:87:33:b4:dc:71:8d:37:e9:a8:34:0e:34:46:53:95:f0:9c:99:89:58:15:9f:8e:28:0e:41:ea:2b
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate tukwilawa.com
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tukwilawa.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
99-properties.com
edited.app
gaytixs.com
homeofthe24inchpizza.com
tukwilawa.com
edited.app
gaytixs.com
homeofthe24inchpizza.com
tukwilawa.com
Other certificates including the domain name tukwilawa.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for tukwilawa.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFKzCCBBOgAwIBAgISA77IZYyS7Zwi39Vv3jfv084wMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MTcxMzE3MjRaFw0yNDA4MTUxMzE3MjNaMBgxFjAUBgNVBAMT DXR1a3dpbGF3YS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDO e2VGxAUukojK2CHNcknNqjOC1KkJZ4KTi/Z+eLzM0FSIzonIvXXDxvuIfMAYhgXi pxl/wesQqMncDTZSl4vNDVy2m4jIiaShuYALaB9uqPor7ENxMr8Ps3rM0N4a47bT R0WOGCdp5JIX5NoDLcwg+gOvgCLYRqxM5FRZoOSvXisU8KMiiAdz5mrt9Xyn3ZgP l4SuvWizowhBGpl2OXAQkMFYFiRQmIBo4yLGbUNFKvd1CAp+ebW++D/KWkWofD4R j3e9aS+bX7W2ozZruKrBK5NG4gF1w5/8FBPMTixFURQrNmcuBJySDKpKJqPcA8e/ 5zds9aUD9ffiRx7zp/5bAgMBAAGjggJTMIICTzAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFG5yA3NjaEzOSCNWWGJ8IKXQqz98MB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MF4GA1UdEQRXMFWCETk5LXByb3BlcnRpZXMuY29tggplZGl0ZWQuYXBwggtnYXl0 aXhzLmNvbYIYaG9tZW9mdGhlMjRpbmNocGl6emEuY29tgg10dWt3aWxhd2EuY29t MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADuAHUA dv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGPhuoqeQAABAMARjBE AiBckv4o4LjcZ1f+zWLu0xYiqSCaKfcAAo8JWFgzpujN2AIgNQguDlZqvXV1j1Wd 03EJkBDXlAORcUYcn6sSLqQYoqcAdQA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvB vyiF7PhkbgAAAY+G6jH+AAAEAwBGMEQCIHxBI8fA40xAeNBzoue9xrdUf2IrSNWx rKiQiX5AdSf6AiBglANyo+cZLuc7syRs2wTtZWaimPWRi34lxFlQKwtZhDANBgkq hkiG9w0BAQsFAAOCAQEASefH+UUY1l3LFVKAmXSZ6TfZ8s/34y/QmaHTgugNFcQ6 B75/1/F4aQJtxkWEh+qCMDzao+BgRMxpEQRy69eW0OAK/lLgF1fe1SQ6FoXH0Z3I SPz/cGRrnyGIvtljLIG7s/7jV4QJTPAve+1W8CV4O5brpRbNreA0XnhK3PE9Ya37 fxa4STEoZgj1cgs2XNIaHFZWAZxtCuVr4tiwEjateVjk3Xlawq/AQhsbW1XhBZZB ocwhAgJ8AZEwQSX9Yx8hpodETsf0EOV/0Qt8EJxfbMvznn5P41nr318T7BW+ycWq ZK43BLgyX4aMZRir7HJv+ELG5hHBDJtucv1wh7S0ng== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzntlRsQFLpKIytghzXJJ zaozgtSpCWeCk4v2fni8zNBUiM6JyL11w8b7iHzAGIYF4qcZf8HrEKjJ3A02UpeL zQ1ctpuIyImkobmAC2gfbqj6K+xDcTK/D7N6zNDeGuO200dFjhgnaeSSF+TaAy3M IPoDr4Ai2EasTORUWaDkr14rFPCjIogHc+Zq7fV8p92YD5eErr1os6MIQRqZdjlw EJDBWBYkUJiAaOMixm1DRSr3dQgKfnm1vvg/ylpFqHw+EY93vWkvm1+1tqM2a7iq wSuTRuIBdcOf/BQTzE4sRVEUKzZnLgSckgyqSiaj3APHv+c3bPWlA/X34kce86f+ WwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 326256880382576936132845552318120379797040 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-17 13:17:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-15 13:17:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tukwilawa.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26065939466676320961669420974072524067097701863989844183750216276176005904854839521949822192469084518357093208388751890151534190489786256393784323045340175915075951625329910665591122317655699580390749022480900702294247300363881776839502422649490306835346131604723494196506719452751097997734015304514920177144455012441116924608251949928585200341579489318931478228287786426393835163092262465055131952017885222400079484635991187573536885684842760776865849406070074381797556432454629146113834528885616685519389545391741961307681356854780792791115750337221514437615318219974306899158048366945598309312284901385741651148379 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6e72037363684cce48235658627c20a5d0ab3f7c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (87 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '99-properties.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'edited.app' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gaytixs.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeofthe24inchpizza.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tukwilawa.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee00750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018f86ea2a79000004030046304402205c92fe28e0b8dc6757fecd62eed31622a9209a29f700028f09585833a6e8cdd8022035082e0e566abd75758f559dd371099010d794039171461c9fab122ea418a2a70075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018f86ea31fe000004030046304402207c4123c7c0e34c4078d073a2e7bdc6b7547f622b48d5b1aca890897e407527fa022060940372a3e7192ee73bb3246cdb04ed6566a298f5918b7e25c459502b0b5984 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0049e7c7f94518d65dcb155280997499e937d9f2cff7e32fd099a1d382e80d15c43a07be7fd7f17869026dc6458487ea82303cdaa3e06044cc69110472ebd796d0e00afe52e01757ded5243a1685c7d19dc848fcff70646b9f2188bed9632c81bbb3fee35784094cf02f7bed56f025783b96eba516cdade0345e784adcf13d61adfb7f16b84931286608f5720b365cd21a1c5656019c6d0ae56be2d8b01236ad7958e4dd795ac2afc0421b1b5b55e1059641a1cc2102027c0191304125fd631f21a687444ec7f410e57fd10b7c109c5f6ccbf39e7e4fe359ebdf5f13ec15bec9c5aa64ae3704b8325f868c6518abec726ff842c6e611c10c9b6e72fd7087b4b49e