twee.co.za
Issued by R3
About this certificate
This digital certificate with serial number 04:b5:ec:2b:3d:b3:c0:70:92:d8:2e:f8:72:3c:2c:ec:99:10 was issued on by Let's Encrypt.
With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=twee.co.za
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 04:b5:ec:2b:3d:b3:c0:70:92:d8:2e:f8:72:3c:2c:ec:99:10Serial Number (int): 410354174466969389744795822414150643783952
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 46:25:8b:b0:d9:4c:ea:1d:a5:7b:18:2a:73:0e:1f:0b:82:56:8d:09
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 50:96:4e:77:12:0d:d4:89:fb:7d:71:c6:1a:ad:3b:37:43:e5:2f:92
Fingerprint (sha256): 34:4c:b0:92:82:ac:6c:65:69:6b:a2:0f:19:20:b4:89:64:a9:ce:fb:d4:db:d4:9a:b0:d8:2f:d1:2f:38:7d:c3
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate twee.co.za
5
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for twee.co.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
neighbz.biz
rowlett.net
sparflocke.tips
twee.co.za
wwwcarscom.com
rowlett.net
sparflocke.tips
twee.co.za
wwwcarscom.com
Other certificates including the domain name twee.co.za
(limited to 100 certificates)
Certificate
The complete raw certificate details for twee.co.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFHDCCBASgAwIBAgISBLXsKz2zwHCS2C74cjws7JkQMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MjIwMDUyMjVaFw0yNDA3MjEwMDUyMjRaMBUxEzARBgNVBAMT CnR3ZWUuY28uemEwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDgDgF9 PvT7FPZVrDf/I7iFXHVGn19Qh4aJXdsL6P0H6qrzFw1o7qWuFLGTabhrf8TAeAtw g88wpkbIiXyXorjMSEaYtS/xpBWPvFXSzEiR1VVtwiZ+sQX6CirBNqt58Hw5vUpq nfpLwQsxk8Mhcn4LrJuRFXGf8RTjQ1eMJVeZoHDlG3MKs+aUnlACvTBi5w4R8Pxj eUuOsiacp6giE6K9xZT5zAFAa21MLV7sjxpPOI2sNUlBzlguwK9GrgBUtkNi4X4F kcdqeKJkilrtT1MfiIqqxk4tF6d5yBxStmQUX1wZT84R88FulHjTD5tMgrYOjksk jpwaYj6NmO/XtX1TAgMBAAGjggJHMIICQzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FEYli7DZTOodpXsYKnMOHwuCVo0JMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMFAG A1UdEQRJMEeCC25laWdoYnouYml6ggtyb3dsZXR0Lm5ldIIPc3BhcmZsb2NrZS50 aXBzggp0d2VlLmNvLnphgg53d3djYXJzY29tLmNvbTATBgNVHSAEDDAKMAgGBmeB DAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2AEiw42vapkc0D+VqAvqdMOsc UgHLVt0sgdm7v6s52IRzAAABjwOBIvYAAAQDAEcwRQIhAO+c7elObRBeajkNi6Ua 4aeYKUpHb8Tgh0HT1DiegkCdAiA8aFYyi8bxSmSi9e6NaLUSgyDIivApaPDSqOnm it2O6QB2AN/hVuuqBa+1nA+GcY2owDJOrlbZbqf1pWoB0cE7vlJcAAABjwOBI7sA AAQDAEcwRQIgcJMDcIK1+AkAkmz3vyfTkKaMg4qATH/gtVjf3hGO02UCIQC0XkZU MTfoF28dm2WdHpoWMaWHjqbG+UAPMPTS3dzeuzANBgkqhkiG9w0BAQsFAAOCAQEA Bmtp6b0c1O0+4EHqR+sydkq8S7RWlSs7ckk+6MJtyfVlLa/HfbWxrKPeK+rSAkGi dHKlPhVxfQabvIgYou62zych2u7nQ0Elm/VH9qFO4eMy3qsmVyr2NiunO/18v7oU hN7b7+SPmWQ8tvlsUZ4zzfBb6A2p1EZ4JZ4CUAxKHPQU5Z7h3M1Q82c/EvIJ9CbY 1ZTBs3pkR7HeBJ1LrC6EoKhHttnJNBEDvmVmEdhjqB9CtCp0/3KngpMsELJdBVme MovXH/wIL6Bd2iL7wTMistDxhixQLTsYUqGTqvcgckKHWd8XErV/Yt4u0aQkMs0c 8zaawRVCp5fxt8Qlzvvm1Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4A4BfT70+xT2Vaw3/yO4 hVx1Rp9fUIeGiV3bC+j9B+qq8xcNaO6lrhSxk2m4a3/EwHgLcIPPMKZGyIl8l6K4 zEhGmLUv8aQVj7xV0sxIkdVVbcImfrEF+goqwTarefB8Ob1Kap36S8ELMZPDIXJ+ C6ybkRVxn/EU40NXjCVXmaBw5RtzCrPmlJ5QAr0wYucOEfD8Y3lLjrImnKeoIhOi vcWU+cwBQGttTC1e7I8aTziNrDVJQc5YLsCvRq4AVLZDYuF+BZHHaniiZIpa7U9T H4iKqsZOLRenecgcUrZkFF9cGU/OEfPBbpR40w+bTIK2Do5LJI6cGmI+jZjv17V9 UwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 410354174466969389744795822414150643783952 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-22 00:52:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-21 00:52:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'twee.co.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28284286838342735408189551329283268721940843620937650073638481270986596595038295210012706935615780555224217332650435877874680978172942117828840186608367619064493483123964696036761261532212295063809940847015729597610444097866681662583436263754739054835137078267954922324861370325740496472245020166851863977777180047037489568276603627106144847359454143817403708142555828114484375650697459230708676480910797897114171303638975790746589535129540429870961332582413609903754474886561301085578456675721779443206475207774112035603994733082343331450389853688880605195418734131986835615366952161176184526647477815754330106854739 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 46258bb0d94cea1da57b182a730e1f0b82568d09 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'neighbz.biz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rowlett.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sparflocke.tips' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'twee.co.za' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwwcarscom.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f038122f60000040300473045022100ef9cede94e6d105e6a390d8ba51ae1a798294a476fc4e08741d3d4389e82409d02203c6856328bc6f14a64a2f5ee8d68b5128320c88af02968f0d2a8e9e68add8ee9007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018f038123bb000004030047304502207093037082b5f80900926cf7bf27d390a68c838a804c7fe0b558dfde118ed365022100b45e46543137e8176f1d9b659d1e9a1631a5878ea6c6f9400f30f4d2dddcdebb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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