cwa.au
Issued by R3
About this certificate
This digital certificate with serial number 03:ad:a6:95:dc:2a:8e:56:c6:c9:56:de:3f:a9:68:dc:ee:89 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=cwa.au
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ad:a6:95:dc:2a:8e:56:c6:c9:56:de:3f:a9:68:dc:ee:89Serial Number (int): 320427137237637059249978520591979855539849
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 29:15:e2:98:8a:4f:28:a1:38:a1:78:15:7f:39:70:71:8e:5c:85:4d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 81:cc:83:fb:e9:1f:92:7e:81:fe:ba:bf:d3:aa:ea:ba:43:57:7a:21
Fingerprint (sha256): 19:67:13:01:3d:ac:f6:d4:11:01:6d:ac:02:4e:a4:02:82:19:23:d1:31:3a:74:63:b7:31:04:18:52:95:c7:fd
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate cwa.au
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cwa.au
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cwa.au
www.cwa.au
www.cwa.au
Other certificates including the domain name cwa.au
(limited to 100 certificates)
Certificate
The complete raw certificate details for cwa.au in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE5DCCA8ygAwIBAgISA62mldwqjlbGyVbeP6lo3O6JMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzExMjkxMTM0MDNaFw0yNDAyMjcxMTM0MDJaMBExDzANBgNVBAMT BmN3YS5hdTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK1EGSd5yjxp Z8iw6w9T2I5UoXUom9p854jkRCuazPEVp+cUuOQ269J/K3gX9+H068oJVkDKI3rs XoT4vlWJ0y0YoqFJMGGCi92zyCsaXOqCUGcySO+EK/SHoPll0+8zeaf3ZZaQ1FcQ oxadUS+4dXHxkKpwp41XdxQTKvq2r9nUy+oFfpGbhGL5ZOMJb043lHtGlF0Y1aSU //VtQpN2bTRuiLmu2uitH5lr8LzjzuQ6AqHUK4BcNu/7creKVrQDdJB45KZXCMp4 y0gvwe53DBCd1oSemzvl5+MRzxKoGtPQT8M8B1jTa9Plg8mtcw4AxJk3pPNFkL5V zOuPN29Hd9kCAwEAAaOCAhMwggIPMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUKRXi mIpPKKE4oXgVfzlwcY5chU0wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA5h+vnYsU wsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMuby5sZW5j ci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8wHQYDVR0R BBYwFIIGY3dhLmF1ggp3d3cuY3dhLmF1MBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIB AwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70A DS1yb+H61BcAAAGMGxJz+gAABAMARjBEAiAiWsIbYdTe9roMF1AmfnfiXez/fhWk Mm5TOSm1xf8HigIgT6LP5iuggN5gOxZXJrC0v/unrHMb90+nzLe+Iy1+T/gAdgDu zdBk1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAYwbEnP0AAAEAwBHMEUC IDiUoOOr3bSMsxbIVujwp12nX8jRMFMdjuHUtvpcnOkQAiEAmi6ddGTfsMQO7xaj dyCsdSW4Zb03B/evu0rJVN68cswwDQYJKoZIhvcNAQELBQADggEBAAosgihxa+6j JroSDgzOXnTK/rlI8R+8UxwU1d9GwIvknkhfkDNUBwazj8pJgW2QGp5oAb4k5NPO BPwwcfKfkAuXkdEKR+YWZixTMvcBvgUKq8RiYKfH/ZT2zRpIE4oKqQyYVEDFWpHs vsQXgeUQCdQOeQ/QA+gGkiguluQszfYMLH547UeyvWyS9oAM7LTKOqytQdNQNq8T iwYWqi98WQOiDvdpTDQFDwM/WvaGjUt5XmGdktsUycntjISzPWFbmMJLrXCLQzlz TVObsz13SSniBeqpjQPlVdINIXESdfeFP7LLxCVbRHFVnXrL1MTYeuqC8xaHHlIo e0BliGA3hlI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArUQZJ3nKPGlnyLDrD1PY jlShdSib2nzniOREK5rM8RWn5xS45Dbr0n8reBf34fTryglWQMojeuxehPi+VYnT LRiioUkwYYKL3bPIKxpc6oJQZzJI74Qr9Ieg+WXT7zN5p/dllpDUVxCjFp1RL7h1 cfGQqnCnjVd3FBMq+rav2dTL6gV+kZuEYvlk4wlvTjeUe0aUXRjVpJT/9W1Ck3Zt NG6Iua7a6K0fmWvwvOPO5DoCodQrgFw27/tyt4pWtAN0kHjkplcIynjLSC/B7ncM EJ3WhJ6bO+Xn4xHPEqga09BPwzwHWNNr0+WDya1zDgDEmTek80WQvlXM6483b0d3 2QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 320427137237637059249978520591979855539849 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-29 11:34:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-27 11:34:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cwa.au' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21872807262007280722969435807287406083404873098908915423784713840542106269554086918888928989284888992059260422654494792782972710722706461988385101612771024227429293655922326581938650270634500645308067430584705606302049407611712964494096518452455331070669958065549852771306711192756593786019745366544579486461525218675312973212794309940915082818456849055706470807326872625003317952025224693809497819083151109558080702722526737180978168000923755686975222297589563750639228223944101319744738615422719107513206705180359528970467504477456269364405597203283036721285493958957983262028863991380730509883754306233856248215513 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2915e2988a4f28a138a178157f3970718e5c854d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cwa.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cwa.au' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c1b1273fa00000403004630440220225ac21b61d4def6ba0c1750267e77e25decff7e15a4326e533929b5c5ff078a02204fa2cfe62ba080de603b165726b0b4bffba7ac731bf74fa7ccb7be232d7e4ff8007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c1b1273f4000004030047304502203894a0e3abddb48cb316c856e8f0a75da75fc8d130531d8ee1d4b6fa5c9ce9100221009a2e9d7464dfb0c40eef16a37720ac7525b865bd3707f7afbb4ac954debc72cc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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