tikio.app
Issued by WR3
About this certificate
This digital certificate with serial number 9e:c8:21:5a:68:0c:69:86:0a:ae:7b:89:28:28:a7:74 was issued on by Google Trust Services.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=tikio.app
Google Trust Services
Organization:
Google Trust Services
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 9e:c8:21:5a:68:0c:69:86:0a:ae:7b:89:28:28:a7:74Serial Number (int): 211057159187976666685791346771028911988
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 6c:70:24:41:c4:19:fd:4a:6f:1a:9b:d5:8f:a2:14:4e:26:21:10:c8
AuthorityKeyId: c7:81:f5:fd:8e:88:d9:00:3c:4d:63:a2:50:31:24:a0:ce:23:fe:23
Fingerprint (sha1): e0:9d:9a:13:99:13:c1:9f:23:51:8d:1a:18:5f:6e:4a:0b:aa:c9:12
Fingerprint (sha256): 94:9a:ff:85:19:74:7c:1c:0f:70:8f:0b:70:69:14:91:76:03:2f:b0:3b:6f:6b:00:fb:d0:dd:f1:ec:61:17:63
Issuing Certificate URL: http://i.pki.goog/wr3.crt
Revocation information
OCSP Server: http://o.pki.goog/s/wr3/nsgCRL Distribution Point: http://c.pki.goog/wr3/ONPJg2Q_E8w.crl
Check the revocation status for certificate tikio.app
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tikio.app
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tikio.app
www.tikio.app
www.tikio.app
Other certificates including the domain name tikio.app
(limited to 100 certificates)
Certificate
The complete raw certificate details for tikio.app in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLTCCBBWgAwIBAgIRAJ7IIVpoDGmGCq57iSgop3QwDQYJKoZIhvcNAQELBQAw OzELMAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczEM MAoGA1UEAxMDV1IzMB4XDTI0MDYyMDE0MzkyM1oXDTI0MDkxODE1Mzg0NVowFDES MBAGA1UEAxMJdGlraW8uYXBwMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEArHzJbk1o9thCDPn8EBwPDxRgbYO27ytZaZr48YqRBXXFKzBh7xok1uGfrOPi L4W9ZASsMfecoW8BcKRL67NFvqRmxWeQcamHH+SkLPui/lKpn22AJgAFY/rrFaMj I9F14W7K24sFxGx39ewcwUor1Edo701TqUuGcFXrw85IKsDInz3XEabKkfRJPZGy rLQiIkej6SVYwQ8B9M1BOvOE3m7cY7gNCOJwJmxwW2b7bU/43WrJ2DRubSQLytkG 719esH4p4AjVia+OZiEgwpYRsEQinoxv3NiFhY1oq+DU2BTJjSeM6aZYQvVvIX/5 T9tdarptYDNbiQUoyTrT22whrwIDAQABo4ICUTCCAk0wDgYDVR0PAQH/BAQDAgWg MBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFGxw JEHEGf1Kbxqb1Y+iFE4mIRDIMB8GA1UdIwQYMBaAFMeB9f2OiNkAPE1jolAxJKDO I/4jMF4GCCsGAQUFBwEBBFIwUDAnBggrBgEFBQcwAYYbaHR0cDovL28ucGtpLmdv b2cvcy93cjMvbnNnMCUGCCsGAQUFBzAChhlodHRwOi8vaS5wa2kuZ29vZy93cjMu Y3J0MCMGA1UdEQQcMBqCCXRpa2lvLmFwcIINd3d3LnRpa2lvLmFwcDATBgNVHSAE DDAKMAgGBmeBDAECATA2BgNVHR8ELzAtMCugKaAnhiVodHRwOi8vYy5wa2kuZ29v Zy93cjMvT05QSmcyUV9FOHcuY3JsMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA dv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGQNk1yjgAABAMARzBF AiA3aO2231PZWnLJtpvqMFjvRLtfVXGDHoMGMdcNyUszAQIhAIGJj4n6GxpYbJMH aiPoTSM20BAGY50MlmfglPqtyin3AHYAGZgQcQnw1lIuMIDSnj9ku4NuKMz5D1KO 7t/OSj8WtMoAAAGQNk1ybwAABAMARzBFAiEA+ut6SUnhor1Uw7wf1DkX1wdmcaZ7 wgrCglMb+fN1M44CIE2bVpBkAbNZe5uqwusOA9vFEYXqQd/ze11po7gf5z83MA0G CSqGSIb3DQEBCwUAA4IBAQA/puX4vJ3tNNPfuRL4oYc7NmAhOEzyLVjB1fVbwBEa cFPa4XOFaeC90CsZDQHsFFyzvbqp28pWXQOcbvWQZk3/jxiMKlOeCSmV+WrTBp1F 8IoKZ0JcqTF/31LuNXAYBaCbHmFPneubaJVRMABxfYkrbfVMgIw6AaAIQCfVCGyf mIF+ePD+RRrYmEuJVRGi4CJMjN4KcoOtHWzG5Kaqc48Sdrgt05PvNxcqa+Qoa38z /Rb9GHitRWxc8e1s+IN/1KIwPQSv3kCuguDmqH8K3r7pNEdiehofJ9uSVdlEKZ6v BjAdB5+fK+PCj/d8PrvTAgBSqT58RlZ2JdzfL4nwh2C3 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArHzJbk1o9thCDPn8EBwP DxRgbYO27ytZaZr48YqRBXXFKzBh7xok1uGfrOPiL4W9ZASsMfecoW8BcKRL67NF vqRmxWeQcamHH+SkLPui/lKpn22AJgAFY/rrFaMjI9F14W7K24sFxGx39ewcwUor 1Edo701TqUuGcFXrw85IKsDInz3XEabKkfRJPZGyrLQiIkej6SVYwQ8B9M1BOvOE 3m7cY7gNCOJwJmxwW2b7bU/43WrJ2DRubSQLytkG719esH4p4AjVia+OZiEgwpYR sEQinoxv3NiFhY1oq+DU2BTJjSeM6aZYQvVvIX/5T9tdarptYDNbiQUoyTrT22wh rwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 211057159187976666685791346771028911988 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WR3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-20 14:39:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-09-18 15:38:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tikio.app' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21774523138065173880144330839879559996839282298520201096340025136575862995707435476524457116592174930682297140414971055039109526496516021068085428489924640749445340770964953196233131808772155178178847578184811604281152612301783704251832035785975634256332684368952689289273974513874353510689553365565517738191181934271905151424332958115646568456403348588341665128013683986256421525466928660531252135847084654658016292471425327276619477891477759939436224780052388631203944642613498004245464320460958655086190546072812166334819424804022238032069306078512037050685523080406465372853373268890819005232898796644724913217967 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6c702441c419fd4a6f1a9bd58fa2144e262110c8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c781f5fd8e88d9003c4d63a2503124a0ce23fe23 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://o.pki.goog/s/wr3/nsg' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://i.pki.goog/wr3.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tikio.app' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tikio.app' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://c.pki.goog/wr3/ONPJg2Q_E8w.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a7400000190364d728e000004030047304502203768edb6df53d95a72c9b69bea3058ef44bb5f5571831e830631d70dc94b330102210081898f89fa1b1a586c93076a23e84d2336d01006639d0c9667e094faadca29f70076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca00000190364d726f0000040300473045022100faeb7a4949e1a2bd54c3bc1fd43917d7076671a67bc20ac282531bf9f375338e02204d9b56906401b3597b9baac2eb0e03dbc51185ea41dff37b5d69a3b81fe73f37 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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