auth.tunego.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:f1:5c:51:c9:94:bb:fe:47:fe:26:83:b8:d3:34:12:47:3f was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=auth.tunego.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:f1:5c:51:c9:94:bb:fe:47:fe:26:83:b8:d3:34:12:47:3f
Serial Number (int): 430579907795193189352581858985318846449471
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 33:b3:e5:d0:3b:59:e1:be:f7:f0:e0:a9:cf:ac:02:4e:f8:3a:6f:81
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 48:25:0f:14:aa:81:d8:9d:0f:61:59:5a:c9:d9:63:ea:a3:6e:73:11
Fingerprint (sha256): 2d:56:46:b4:fd:51:a0:6b:4f:90:df:5b:cd:77:d8:29:d1:f2:9b:7d:eb:b4:31:ba:87:11:72:59:6b:22:4b:ab

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate auth.tunego.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for auth.tunego.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

auth.tunego.com

Other certificates including the domain name tunego.com

(limited to 100 certificates)
api.tunego.com
www.tunego.com
tunego.com
help.tunego.com
media.tunego.com
flotaorense.ngtec.site
*.tunego.com
help.tunego.com
auth.tunego.com
www.tunegonft.com
auth.tunego.com
auth.tunego.com
help.tunego.com
tunego.com
blog.tunego.com
tunego.com
www.tunegonft.com
blog.tunego.com
help.tunego.com
*.tunego.com
blog.tunego.com
api.tunego.com
www.tunego.com
www.tunego.com
api.tunego.com
media.tunego.com
*.tunego.com
marketplace.tunego.com
*.tunego.com
site.news24tv.cloud
*.tunego.com
auth.tunego.com
blog.tunego.com
*.tunego.com
blog.tunego.com
media.tunego.com
media.tunego.com
firebase.test.amia.work
www.tunegonft.com
api.tunego.com
*.tunego.com
api.tunego.com
gangaaeng.com
westcoastedition-final.tunego.com
www.tunego.com
marketplace.tunego.com
auth.tunego.com
auth.tunego.com
galacticedition-final.tunego.com
media.tunego.com
*.tunego.com
blog.tunego.com
blog.tunego.com
tunego.com
tunego.com
blog.tunego.com
blog.tunego.com
help.tunego.com
blog.tunego.com
api.tunego.com
blog.tunego.com
events.tunego.com
www.tunegonft.com
help.tunego.com
*.tunego.com
tunego.com
tunego.com
help.tunego.com
tunego.com
*.tunego.com
www.tunego.com
distribution.tunego.com
westcoastedition-leader.tunego.com
www.tunego.com
tunego.com
blog.tunego.com
help.tunego.com
blog.tunego.com
auth.tunego.com
blog.tunego.com
www.tunego.com
auth.tunego.com
api.tunego.com

Certificate

The complete raw certificate details for auth.tunego.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 430579907795193189352581858985318846449471
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-01 01:19:20 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-02 01:19:20 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'auth.tunego.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 694777274960219232951902057595808975294055290742583306225863602806555690070576845268479099407427154912739172191005946784049189268403130214953689466311196579346744277857860090764015395785683778045298333200844017127588067663118835504330832407774535738432911434825582157741357155368637992986681291269827887999681125590789176896527458301577764670176458321541426404376467264230533408039242954490901446217819915133763851556124897295520110244386460845575209581543341089705241911851594629631512077792667732545815222015528431200223962509945586299364868116081663194291879593956635724009433716499920884915084920919247168731949964748533661541809901846258523526518180531674456136436671192800045830981011926477869020345240980806466296812896770609280925806860712417398462345061669809442875985696876392434749765692882024054683890330249565563724923508060676324916123212273814501020763378665112456738821143554617984861728624724093856949646560855655804208775680445273602080820296475198609650605116888972089717040801684426149997682775753210941199591331091995841515292500958950422797044100782284211057096641136260165754672233159251071205648238373244266518258236103142441584933883337794699060152035798867910122057653593232851176983031759407894360826091737
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							33b3e5d03b59e1bef7f0e0a9cfac024ef83a6f81
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'auth.tunego.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000168a6da72b90000040300473045022034192dc09661803a6dcedb4d7f1d96f0cbc72338a5f4514407997a47d3c32810022100b8e530f391823a06e0e677d174ab3683dafc7c97faa86a734c5ab8be9ac72f4000760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000168a6da72ca0000040300473045022100bd929e8bb454c527dbc9a6f9da949f16aa532210963f9d557a119f808e355c3b02207823b539a377d5e8e959fdab25ac11152c9f55981de0c3feed95d731b22b99b6
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		002a43e13074555d5844a3f8f47c7a1360076150dae6cedd483e0245c90b7d97f6f38c3cff42c0734be75ad6c540a77ea712899f1914c47dae71ec6ea60858063bf7a0d0ea00e7dc0ccd24a9f43f3b18385f41b8adffd678fc8b61f79e7d07f87dba875d3ea43bf54c2dc3279c3b74553fce2f5d07aa6d189bb274df109f5260342b814d075c064a51e1a55cddbd2c452bba9886ac0ceedca4ebb08d8ca6d203699fc4007cea02f3f8f9bea2a36a7d41ed5312c047da6cf7d45d3a3bc1130f8ea72fd43fc9548e1c331bd6887277ad1a90eea0b5a7ff36709edc87358dea5774153e6169a51b868f72b1c9ed09aebbabe2f2d32d68b00f350ef2a26d08aff26b2a