staging.portal.twiga.tech

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:20:c6:02:90:3e:1a:bd:b2:18:7b:8f:87:b7:ed:aa:c4:46 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=staging.portal.twiga.tech

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:20:c6:02:90:3e:1a:bd:b2:18:7b:8f:87:b7:ed:aa:c4:46
Serial Number (int): 272489093990097306123182948213025757905990
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 05:c9:5b:7c:5d:5e:bb:2a:1c:60:93:da:38:fa:08:34:f7:6c:e2:e1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): f8:4f:28:ab:d1:6e:fb:4a:2e:29:63:7f:63:2a:a2:20:45:b6:95:b8
Fingerprint (sha256): 4a:4a:79:7e:1a:38:f1:fc:f3:05:a4:15:92:5c:aa:80:7c:94:a1:4c:af:a4:96:80:10:06:3f:87:b2:91:5b:63

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate staging.portal.twiga.tech

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for staging.portal.twiga.tech

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

staging.portal.twiga.tech

Other certificates including the domain name twiga.tech

(limited to 100 certificates)
magen.online
dev.shop.twiga.tech
app.realmendontporn.com
signature.twiga.tech
v8.erp.twiga.tech
dms.api.twiga.tech
demo.dms.api.twiga.tech
staging.paymentsv3.twiga.tech
www.findo.mx
v11.erp.twiga.tech
*.dms-v2.api.twiga.tech
civictechvancouver.ca
staging.dashboard.twiga.tech
staging.dms.api.twiga.tech
dev.enterprise.twiga.tech
shop.twiga.tech
dms-products.twiga.tech
v10.erp.twiga.tech
dashboard.twiga.tech
erp.twiga.tech
demo.dms.api.twiga.tech
staging.portal.twiga.tech
auth.twiga.tech
staging.gateway.twiga.tech
staging.portal.twiga.tech
dashboard.twiga.tech
twiga.tech
*.dms.api.twiga.tech
dashboard.twiga.tech
staging.portal.twiga.tech
dms-products.twiga.tech
dev.shop.twiga.tech
dashboard.twiga.tech
*.shop.twiga.tech
twiga.tech
seven-burger44.fr
twiga.tech
v10.erp.twiga.tech
www.jonwomack.com
demo.dms.api.twiga.tech
demo.dms.api.twiga.tech
staging.fintech.twiga.tech
dashboard.twiga.tech
sentry.twiga.tech
demo.dms.api.twiga.tech
staging.portal.twiga.tech
staging.enterprise.twiga.tech
demo.dms.api.twiga.tech
dms.api.twiga.tech
v8.erp.twiga.tech.twiga.tech
staging.dms.api.twiga.tech
*.dms.api.twiga.tech
signature.twiga.tech
dms-products.twiga.tech
staging.dms.api.twiga.tech
dashboard.twiga.tech
dev.portal.twiga.tech
dev.dms.api.twiga.tech
demo.dms.api.twiga.tech
nowarriving.app
am.h2lexpress.com
sentry.twiga.tech
dashboard.twiga.tech
shop.twiga.tech
mpesa.twiga.tech
cucufate.mx
dms.api.twiga.tech
staging.dms.api.twiga.tech
sentry.twiga.tech
hwong.app
staging.dashboard-v2.twiga.tech
shop.twiga.tech
demo.dms.api.twiga.tech
aronsengelauff.nl
erp.twiga.tech
sentry.twiga.tech
staging.dms.api.twiga.tech
dashboard.twiga.tech
v10.erp.twiga.tech
enterprise.twiga.tech
erp.twiga.tech
erp.twiga.tech
staging.dms.api.twiga.tech
*.twiga.tech
erp.twiga.tech
cosecha93.com
filipinji.com
*.dms-v2.api.twiga.tech
newblessingdoula.com
www.thinkercoin.com
twiga.tech
staging.portal.twiga.tech
develop.cercle.app
sentry.twiga.tech
*.twiga.tech
v10.erp.twiga.tech
dev.dms.api.twiga.tech
twiga.tech
dev.shop.twiga.tech
dms.api.twiga.tech

Certificate

The complete raw certificate details for staging.portal.twiga.tech in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx30USTPIHGwhSt9ZyOs8
ECXH9w/DZk/ByakJndCNMkIb7m0AoYYvk8qOiO4OOmguzYm5ZiYsXPnvEZcceLcd
S18bdWJ8T9RRUIBLLtTlNf0rnEMyqSCgpHxUclFBXF3KJw3yC8xPwUHGnenAwVE8
9DNS0r2lJX4iXqGSfPJ9ZMB/3RCBaw7Ez9JCAmyIfcr1enMm7NFI4Ja4bez85mpm
lc1Vyrs/m6vVucR97VRkGUvUEmOF9kB7ckM4FN69ot9LyaZmHvzg8T2yD+H/tiHF
QPt2b54LPoDs6JFjV+6YUMgwA4Gu0mR47G6CmBOIKtU8Q5iI9RsAAQ3R02HkK+TQ
3QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 272489093990097306123182948213025757905990
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-24 23:59:05 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-22 23:59:05 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'staging.portal.twiga.tech'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25183101561268111324636212589591612378484753352728950954936040021967380600464447831363567944615101983820715544889186620432267411722747127137095313862723876289326183299047840032886857809341200695743645752129983697413330134226122212669838653961722562895302754749187893619946929726245772636081409731958769587304411156376504056652795492573339667398319166053203462560406775224503012478707920197157674819891203538477172956569544738378371259757730304451670550450434754295200278164633837126256702932766649937109158138721282954530011589367798131034332955393925000888924396999760940538329490254340051176288928947887191984754909
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							05c95b7c5d5ebb2a1c6093da38fa0834f76ce2e1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'staging.portal.twiga.tech'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000167486088cf000004030047304502205b339d6f702cb1707a85462db0337c4141ffcbd1588263933356a8e5c78ce993022100b52c4a1cc16ebe48d87e496d13211708cce01775e09fe88fe4ef3dd9482b299b007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000167486089410000040300463044022050fb7a251e94d6a90539655091d2c8983c31c3f0dbd9bc1be6a08242db1adde4022055b035757f5216e71f857dbd561a832589426ca33304e1ad8aa2f942aa886b22
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0063920dcd357183490a854c255c2bdd1595fd90aa8dfddf698eca809dc0612d6fc8243716decd7b14f59ac1a36dfa185891cd627fbff91e74f651d60a7e9fb55d1d484454a528773f3d4f6dbf4de6027b5c7c393f2763e495d0050511f50e8c1e030918fd7659de69c971dd9653a413b29936b9606bdafcce4d5e35508ec4dc41e864871d27e8200045762c2e391be8cf9b710286501a45325e560100bedde469d66e9739b6875b07825850ad20d94354e89e466699b7cc37dc249152a6d4b5e6fbb4842624f4b496c46736244ed17f8d61d3ddbf38aed6ab1f7eb8bbcddb3411dbc28e1234354d637cfdd61360937eb92074591366217ff9b812f5308c5d0c50