kalanik.ir
Issued by CA 沃通免费SSL证书 G2
About this certificate
This digital certificate with serial number 30:7b:b3:59:84:36:04:4b:f7:6c:c5:68:3a:47:93:7f was issued on by WoSign CA Limited.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=kalanik.ir
WoSign CA Limited
Organization:
WoSign CA Limited
Country:
CN
This certificate has expire since
Certificate Details
Serial Number (hex): 30:7b:b3:59:84:36:04:4b:f7:6c:c5:68:3a:47:93:7fSerial Number (int): 64445233954818586697701240455542838143
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 7b:66:12:56:9a:e3:67:b1:65:18:7d:de:58:ea:fd:08:a0:1e:db:ac
AuthorityKeyId: 30:da:74:86:f3:28:90:56:9e:d7:31:31:c2:bd:59:cd:93:12:39:1d
Fingerprint (sha1): 44:81:e4:4f:1c:da:9a:81:e8:3d:ee:74:49:4d:1e:97:02:73:c3:fa
Fingerprint (sha256): 85:84:9d:17:ae:0c:98:ce:46:03:85:71:f2:fe:60:1e:97:88:b1:98:0c:55:36:b9:78:48:39:0e:da:20:53:28
Issuing Certificate URL: http://aia2.wosign.cn/ca2g2.server1.free.cer
Revocation information
OCSP Server: http://ocsp2.wosign.cn/ca2g2/server1/freeCRL Distribution Point: http://crls2.wosign.cn/ca2g2-server1-free.crl
Check the revocation status for certificate kalanik.ir
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for kalanik.ir
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
kalanik.ir
Other certificates including the domain name kalanik.ir
(limited to 100 certificates)
Certificate
The complete raw certificate details for kalanik.ir in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEljCCA36gAwIBAgIQMHuzWYQ2BEv3bMVoOkeTfzANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJDTjEaMBgGA1UEChMRV29TaWduIENBIExpbWl0ZWQxJDAiBgNV BAMMG0NBIOayg+mAmuWFjei0uVNTTOivgeS5piBHMjAeFw0xNTA5MjIxNzM4Mjla Fw0xNjA5MjIxNzM4MjlaMBUxEzARBgNVBAMMCmthbGFuaWsuaXIwggEiMA0GCSqG SIb3DQEBAQUAA4IBDwAwggEKAoIBAQCs5bkxWOSb3wyQKfL6zaxaQJQvhHs5PB3c LbZDK1OKJ2VFEwmxM4YNU5Qt7Bn80jyVdcR1AVV+ZGkbYVqjmZigWKgNtUoKRNDD Fsn3kVbKBAW/3nC9l5X+5SLGvANr8JnQ58X2ny0OfSaR4TKlLnLf3AJPtEyPxX2S tqwZQj8nYGXHt711Brqu6OZ2m8Q11eM8uk4A0S0OlgWvfmaoThdx+CUub4CAxJU4 1aMnnwQ5rmUt+uwP77n5Mjy+CGOQQS52eWxmDJgFl4N3zXV9bOLIKky7W7MTlZju Yq7pdGVNOn73sFBPh/QTI9SVK6HHh+T46pJWLcVdAdp0Bt2CjJVhAgMBAAGjggGm MIIBojALBgNVHQ8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMB MAkGA1UdEwQCMAAwHQYDVR0OBBYEFHtmElaa42exZRh93ljq/QigHtusMB8GA1Ud IwQYMBaAFDDadIbzKJBWntcxMcK9Wc2TEjkdMH8GCCsGAQUFBwEBBHMwcTA1Bggr BgEFBQcwAYYpaHR0cDovL29jc3AyLndvc2lnbi5jbi9jYTJnMi9zZXJ2ZXIxL2Zy ZWUwOAYIKwYBBQUHMAKGLGh0dHA6Ly9haWEyLndvc2lnbi5jbi9jYTJnMi5zZXJ2 ZXIxLmZyZWUuY2VyMD4GA1UdHwQ3MDUwM6AxoC+GLWh0dHA6Ly9jcmxzMi53b3Np Z24uY24vY2EyZzItc2VydmVyMS1mcmVlLmNybDAVBgNVHREEDjAMggprYWxhbmlr LmlyMFEGA1UdIARKMEgwCAYGZ4EMAQIBMDwGDSsGAQQBgptRBgECAgIwKzApBggr BgEFBQcCARYdaHR0cDovL3d3dy53b3NpZ24uY29tL3BvbGljeS8wDQYJKoZIhvcN AQELBQADggEBAHLFJ/3BVNu1jQfciTr3/07jAyPXlnSnBmUP1Z1QS9vaj4KoIfrz Z9bfR1/5vTG4JuzF0QxQlB+LZ+GErfu6h5y4ykNI5iEvYGlAJSvXzNfNO6+/SqdH VDMTGXLKh1cqC/7hQAVBGbZusugMox5JAvDaaH2cNDcgyOO8mYAk3/s2sIs5OduK Va46aiHO4W+HLa1kwhnjBNKxQonK3Bbw17xAOg+sUN628pgiEJg/dJH23aVxBuVj CvFjs/7LKFvIEdi14T9f9S/PyEuYKeOm0iN5NSxG96W2sGQICrFZMOaJ1mCiiF53 2vp+HcHb7yH87zc22oxSISFkQPfy8mpXlWo= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArOW5MVjkm98MkCny+s2s WkCUL4R7OTwd3C22QytTiidlRRMJsTOGDVOULewZ/NI8lXXEdQFVfmRpG2Fao5mY oFioDbVKCkTQwxbJ95FWygQFv95wvZeV/uUixrwDa/CZ0OfF9p8tDn0mkeEypS5y 39wCT7RMj8V9krasGUI/J2Blx7e9dQa6rujmdpvENdXjPLpOANEtDpYFr35mqE4X cfglLm+AgMSVONWjJ58EOa5lLfrsD++5+TI8vghjkEEudnlsZgyYBZeDd811fWzi yCpMu1uzE5WY7mKu6XRlTTp+97BQT4f0EyPUlSuhx4fk+OqSVi3FXQHadAbdgoyV YQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 64445233954818586697701240455542838143 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WoSign CA Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'CA 沃通免费SSL证书 G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-09-22 17:38:29 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-22 17:38:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'kalanik.ir' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21826269289287496334117307589087012880366510114059326190517078637369824810722499283905835562816512648052661196814397281443184418535700815027578947681096840045166665909561582299305154641896431350677672678262002161584688156136081111234804718920501970441996601299873965079862444263984390540333380377151765495578450387574598392262625520547352963422084093847037941122636764817098534289487022771842716722382929790799896419423475017140403039941045944973946645510762029459217796632063015759559061022434365959744360455472927565441016389367447558141371340647429244871237325519794660611727418326423661030777052568655624881870177 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7b6612569ae367b165187dde58eafd08a01edbac . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 30da7486f32890569ed73131c2bd59cd9312391d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.wosign.cn/ca2g2/server1/free' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia2.wosign.cn/ca2g2.server1.free.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls2.wosign.cn/ca2g2-server1-free.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kalanik.ir' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.36305.6.1.2.2.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.wosign.com/policy/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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