tkyo.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:17:d7:99:17:01:d1:9d:27:d6:6a:50:55:c5:52:5c:e4:09 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tkyo.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:17:d7:99:17:01:d1:9d:27:d6:6a:50:55:c5:52:5c:e4:09Serial Number (int): 269449931141614958743867379647913674990601
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 87:26:ba:42:2d:f0:1a:8c:0f:9f:ef:d7:8b:88:c8:92:00:c7:97:83
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 37:d4:b1:de:9a:3f:71:18:4a:37:2a:68:a9:88:74:64:aa:21:03:a4
Fingerprint (sha256): 70:7f:ac:97:24:5d:5c:06:78:1d:72:2f:e4:28:2d:7f:c8:bd:f2:5c:45:5c:5b:4c:f0:8a:e1:14:00:9a:f5:f5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate tkyo.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tkyo.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tkyo.com
Other certificates including the domain name tkyo.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for tkyo.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRzCCBS+gAwIBAgISAxfXmRcB0Z0n1mpQVcVSXOQJMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMjIyMDMzMjFaFw0y MDA0MjEyMDMzMjFaMBMxETAPBgNVBAMTCHRreW8uY29tMIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEAyc/DKA0hmlf4ok9di+ZgyW7Ykg0+WLdUjfEq0IPb W3cyV2w7fagP9Wd182xI9kDkgBvBXhju0MPR6Kis/Nj6tu3F4tXyOq44BgzZeSxo Dk+6J99abrXC5qlVUC1YTLGPunImk1Fv4G7BqLN1MDJhPFKSMfrT61xE1K26tMdn UP8R5/JeRcggOMtScMG/GZUpKF3y8JamwVHsghLx9QA5ooY0IvyqFHnBzmv/1XoG FJJerpVHqXiFlT6cp6vdS+mbwk2Mc+JZyU9d61/nluaSW9DnCrf3oISEDjxxaxgb Hinc0HLAyIDqgL+lVcnY5OAQFcGYyq/suLODa0My7J6I0AyNWJqKdW9nSvrswCHv pEew2R8ouncgJAaf/FyPI0dtXYgjt1dqZ+Ka9WsfB22WUP4xn9kWlGiTQm2NeLhd JubpkT68zsDBFaA1ilFlfBG8Qh9ciyx1Dr8sEfnsU6q6dkvHpwDchCDQAQRHGMHr 1M1Rkx5gf6l7OTkWHjmdY+koXHcwNBAnvm4fPFwO3nphWt+03JGlJf7+6gN40KCu SSnhYn22khpZ79iFx7/EGyV8x28+bfNVKve5g9WLZNf/EOfMgMIbMXN4M/S9Sech /n0Vp5BFhCOOti+biSm7O0qYVhlWT46gfWiEV/M1++CigXmhazfUy76eVupuOF9y M7cCAwEAAaOCAlwwggJYMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUhya6Qi3wGowP n+/Xi4jIkgDHl4MwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYI KwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0 c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0 c2VuY3J5cHQub3JnLzATBgNVHREEDDAKggh0a3lvLmNvbTBMBgNVHSAERTBDMAgG BmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3Bz LmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1AF6nc/nf VsDntTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAABb88sjioAAAQDAEYwRAIgW1M9 g6NzAhk6KYoz3aIjZc7Y2gkzDdoaFFWtviq2y7oCIE1s9qsN4fhzgZle0cQU+yTM xpttQZc2TRlaOeg1MwqKAHYAB7dcG+V9aP/xsMYdIxXHuuZXfFeUt2ruvGE6GmnT ohwAAAFvzyyOVAAABAMARzBFAiEAvv8yohX5+L35z3BdTu+qGMbKCYxqvdU1DNBQ p4V51roCIGy5UOP1oH0OjVrHVyiEmxrz3hJHpFYZeQ1Kx6d3f5bLMA0GCSqGSIb3 DQEBCwUAA4IBAQAQ3P1R/9/703yPHhnUM1SJkwszNl/It2xdkDpAV+WdD1yvOml+ RH4/usx6jaq/Um5dlHpvrlBmGx5Juz+IyNV86DcqHq3KIABf7HazAtopHhEQh5XW Z1YN4/KszxAaqNI+lkNbAOBCQpTHe7Q2/g0W86iyWY5s/DxhWcgGzUgrSoXB8MbF Q3LYugTJ4tkBGUH58uZOBgIwLiRH21ZTiXWb0gHNsIeH5EGG9B1CWtFF3oDPguX+ u4EtRtm5MZml3cxkCE94MxQCPHMaTKV27V9lcv1lFdeOJawXpieW0R9ru45exSP7 SjNImLWbPZKnXuNTZF0ba5n/erzqfIOrReRw -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyc/DKA0hmlf4ok9di+Zg yW7Ykg0+WLdUjfEq0IPbW3cyV2w7fagP9Wd182xI9kDkgBvBXhju0MPR6Kis/Nj6 tu3F4tXyOq44BgzZeSxoDk+6J99abrXC5qlVUC1YTLGPunImk1Fv4G7BqLN1MDJh PFKSMfrT61xE1K26tMdnUP8R5/JeRcggOMtScMG/GZUpKF3y8JamwVHsghLx9QA5 ooY0IvyqFHnBzmv/1XoGFJJerpVHqXiFlT6cp6vdS+mbwk2Mc+JZyU9d61/nluaS W9DnCrf3oISEDjxxaxgbHinc0HLAyIDqgL+lVcnY5OAQFcGYyq/suLODa0My7J6I 0AyNWJqKdW9nSvrswCHvpEew2R8ouncgJAaf/FyPI0dtXYgjt1dqZ+Ka9WsfB22W UP4xn9kWlGiTQm2NeLhdJubpkT68zsDBFaA1ilFlfBG8Qh9ciyx1Dr8sEfnsU6q6 dkvHpwDchCDQAQRHGMHr1M1Rkx5gf6l7OTkWHjmdY+koXHcwNBAnvm4fPFwO3nph Wt+03JGlJf7+6gN40KCuSSnhYn22khpZ79iFx7/EGyV8x28+bfNVKve5g9WLZNf/ EOfMgMIbMXN4M/S9Sech/n0Vp5BFhCOOti+biSm7O0qYVhlWT46gfWiEV/M1++Ci gXmhazfUy76eVupuOF9yM7cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 269449931141614958743867379647913674990601 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-22 20:33:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-21 20:33:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tkyo.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 823319380940288912183872438689245489304713974759841216778992497047590285838809264177335444550140077601943191475544153316025708983819271161222940198750338000028305392773511101601885008748357458523904156939265406964864110450735462138490852798727651777578740733778758319689724511183665623899391993176570404032996357088183130089120963322446787499503356692870409169371858467201767025948959870316593202008400540463107837234607867611036457647799544017927256152062450177362834122084026619024315609497022369974339276204393599378540883562265950872162360634083387295916245724814271455743157721907561509774927745191935715917318344557876678418783950950267246294399839410450718578961111617763928590408587403976433522586141297757008047081947403691165298991904689505109366365113333791822248491675727293882098419493317993056290663153944194615234264619615215806098426978200131715484225028952090607414961020694252389834069225635112627069256141020467578937886144306093876849091752941749112811702743021654658978902742741251830531836349239983850569116786130421910849602568010940111746062252791486999472465333276127002359762218963417892777182830158087049974021981976605675225474672908859058965940151925649394754985696056678789190537277446168378672516576183 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 8726ba422df01a8c0f9fefd78b88c89200c79783 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tkyo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016fcf2c8e2a000004030046304402205b533d83a37302193a298a33dda22365ced8da09330dda1a1455adbe2ab6cbba02204d6cf6ab0de1f87381995ed1c414fb24ccc69b6d4197364d195a39e835330a8a00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016fcf2c8e540000040300473045022100beff32a215f9f8bdf9cf705d4eefaa18c6ca098c6abdd5350cd050a78579d6ba02206cb950e3f5a07d0e8d5ac75728849b1af3de1247a45619790d4ac7a7777f96cb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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