kalanik.ir
Issued by WoSign CA Free SSL Certificate G2
About this certificate
This digital certificate with serial number 1d:54:af:05:f0:55:71:6c:79:19:a2:03:b2:b3:bb:af was issued on by WoSign CA Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=kalanik.ir
WoSign CA Limited
Organization:
WoSign CA Limited
Country:
CN
This certificate has expire since
Certificate Details
Serial Number (hex): 1d:54:af:05:f0:55:71:6c:79:19:a2:03:b2:b3:bb:afSerial Number (int): 38987314706080634128830013270591257519
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 5b:8e:fb:6f:4c:96:45:e5:e5:7b:20:f2:67:60:9e:01:26:2f:1f:8f
AuthorityKeyId: d2:a7:16:20:7c:af:d9:95:9e:eb:43:0a:19:f2:e0:b9:74:0e:a8:c7
Fingerprint (sha1): 63:ec:36:53:ac:b9:86:58:27:b5:75:58:cf:84:1f:fb:f1:8f:38:2c
Fingerprint (sha256): 7f:23:74:64:71:d9:ff:6a:5c:2b:8b:26:48:4f:fd:d0:3c:7a:30:3b:9d:c3:aa:f3:31:84:97:eb:96:e9:c0:88
Issuing Certificate URL: http://aia6.wosign.com/ca6.server1.free.cer
Revocation information
OCSP Server: http://ocsp6.wosign.com/ca6/server1/freeCRL Distribution Point: http://crls6.wosign.com/ca6-server1-free.crl
Check the revocation status for certificate kalanik.ir
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kalanik.ir
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kalanik.ir
www.kalanik.ir
www.kalanik.ir
Other certificates including the domain name kalanik.ir
(limited to 100 certificates)
Certificate
The complete raw certificate details for kalanik.ir in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEqTCCA5GgAwIBAgIQHVSvBfBVcWx5GaIDsrO7rzANBgkqhkiG9w0BAQsFADBV MQswCQYDVQQGEwJDTjEaMBgGA1UEChMRV29TaWduIENBIExpbWl0ZWQxKjAoBgNV BAMTIVdvU2lnbiBDQSBGcmVlIFNTTCBDZXJ0aWZpY2F0ZSBHMjAeFw0xNTA1Mjgx NzU4MTdaFw0xODA1MjgxODMwMjJaMBUxEzARBgNVBAMMCmthbGFuaWsuaXIwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDb5o2liI4qHiVvTS7+IxQ1gsbv KBCorrhHyxhr0CvnhhfL53Xd06vcQFfJGC4ylTCFayA1+ojf2UfOjtVnNP3fSNnK E76mCNSwjNKW4A7Q6nZsdAgG0ghpk7H+NVgj3wDbGebqBqU0ZDSkoMlvkBSeR0ZS Pt2Nv6KnVsrneUUyvEJncDswEPowhAZi0xyZ5FyT4S8+t7bwKYevQ4j0WINWC9YX 2i485ZgZlhQAn+70DVwQHMlzCt7My89HLS3biD0rkPLY4jyZWVquSlT9WV+5bJJR ZuTZ7JQV7Mxd9PtEdGx5aph/8M4e8Qneo45wlUhbPdaLbms1KYZx9dAfmf2DAgMB AAGjggGzMIIBrzALBgNVHQ8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsG AQUFBwMBMAkGA1UdEwQCMAAwHQYDVR0OBBYEFFuO+29MlkXl5Xsg8mdgngEmLx+P MB8GA1UdIwQYMBaAFNKnFiB8r9mVnutDChny4Ll0DqjHMH0GCCsGAQUFBwEBBHEw bzA0BggrBgEFBQcwAYYoaHR0cDovL29jc3A2Lndvc2lnbi5jb20vY2E2L3NlcnZl cjEvZnJlZTA3BggrBgEFBQcwAoYraHR0cDovL2FpYTYud29zaWduLmNvbS9jYTYu c2VydmVyMS5mcmVlLmNlcjA9BgNVHR8ENjA0MDKgMKAuhixodHRwOi8vY3JsczYu d29zaWduLmNvbS9jYTYtc2VydmVyMS1mcmVlLmNybDAlBgNVHREEHjAcggprYWxh bmlrLmlygg53d3cua2FsYW5pay5pcjBRBgNVHSAESjBIMAgGBmeBDAECATA8Bg0r BgEEAYKbUQYBAgIBMCswKQYIKwYBBQUHAgEWHWh0dHA6Ly93d3cud29zaWduLmNv bS9wb2xpY3kvMA0GCSqGSIb3DQEBCwUAA4IBAQBYjyLmrZQ2HQNCnUS1e88m6WO2 g/5NSlEo70IDEBG8FW278090zmibq7yMW4jtb4gLvdye24b3vFJIauekLHms4CV0 /PwfViKUZpJ06VKJsaxrTtft5MVv744hlMUZSUYEbThja2WEPIgBQuSmITFvTRNS skDUGOJPSiX8ei0WPiC2FNngjvoMoqYJAIVKfBf3UTbiJeecp+7UN9gqX6bI5QgJ KEukEye6S9jmgC54y31b26gJvNKGlc/lzP9N2FUgTPAUfaabw1K2KEafcDl4Dssg aKT23xhRUai4z/4S1GbqAn3kiL/+d6bXj/558ac5PxOt2ACBR24urhlTUHOn -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2+aNpYiOKh4lb00u/iMU NYLG7ygQqK64R8sYa9Ar54YXy+d13dOr3EBXyRguMpUwhWsgNfqI39lHzo7VZzT9 30jZyhO+pgjUsIzSluAO0Op2bHQIBtIIaZOx/jVYI98A2xnm6galNGQ0pKDJb5AU nkdGUj7djb+ip1bK53lFMrxCZ3A7MBD6MIQGYtMcmeRck+EvPre28CmHr0OI9FiD VgvWF9ouPOWYGZYUAJ/u9A1cEBzJcwrezMvPRy0t24g9K5Dy2OI8mVlarkpU/Vlf uWySUWbk2eyUFezMXfT7RHRseWqYf/DOHvEJ3qOOcJVIWz3Wi25rNSmGcfXQH5n9 gwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 38987314706080634128830013270591257519 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WoSign CA Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WoSign CA Free SSL Certificate G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-05-28 17:58:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-28 18:30:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'kalanik.ir' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27759878860579733228241814318380491952818686371376124133510358652803009789663971493495793222934518987863993775463174451312977889794609725891459362886178980519950680314921192642045972678944385163853892408180428384850581614040244977096632035054087108619004502051765144134188316536621095056056688413731916772969482787717931914707340981030009907294325458414541664342758219690678684980501985029946065626499466522779693097438066044768242839196458349936540957991529095961062354541004576793310445147947503977996721520327965316197315641616593802247822835223846253291222730627600810063705647600691778426847409371054303818153347 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5b8efb6f4c9645e5e57b20f267609e01262f1f8f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d2a716207cafd9959eeb430a19f2e0b9740ea8c7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp6.wosign.com/ca6/server1/free' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia6.wosign.com/ca6.server1.free.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls6.wosign.com/ca6-server1-free.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kalanik.ir' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kalanik.ir' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.36305.6.1.2.2.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.wosign.com/policy/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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