tcm.nz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:3d:ce:ed:1b:aa:9f:69:69:0e:50:b7:5d:ce:4a:47:97:d0 was issued on by Let's Encrypt.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tcm.nz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:3d:ce:ed:1b:aa:9f:69:69:0e:50:b7:5d:ce:4a:47:97:d0Serial Number (int): 282369134280088334111008939121381508356048
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 89:2b:29:ad:f2:0f:71:3d:4c:3b:7d:9e:82:f2:e7:79:df:84:e6:6c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 83:82:93:69:c2:74:53:ec:e7:4d:42:f8:72:95:9b:69:2b:8c:8e:ea
Fingerprint (sha256): e1:1e:f7:3a:0f:2f:77:25:c9:28:cf:40:c5:1d:0c:43:cf:ff:6f:cd:15:78:48:97:e0:6f:7f:9a:ab:f5:4f:57
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate tcm.nz
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tcm.nz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
amiton.org
tcm.nz
www.amiton.org
www.tcm.nz
tcm.nz
www.amiton.org
www.tcm.nz
Other certificates including the domain name tcm.nz
(limited to 100 certificates)
www.pikibit.com
www.nimba.fr
www.cityphil.com
earkick.com
venturiautomation.com
www.veryimportantmail.com
tcm.nz
sriharsha.dev
www.tcm.nz
qigong.net.nz
seacoastpremiereleague.com
api.clic.run
tcm.nz
hansen.onecharthealth.com
www.softwarelc.com
amiton.org
amiton.org
earkick.com
www.geghispanoamerica.app
maildo.app
www.pikibit.com
merterim.dev
www.veryimportantmail.com
brettstenerson.com
sso.stage.platoon.fm
courtspaceapp.com
api.clic.run
amiton.org
soporte.astitel.com.mx
amiton.org
tcm.nz
qigong.net.nz
www.cityphil.com
tripek.ru
tcm.nz
tcm.nz
sinhvien.td.edu.vn
amiton.org
vendor.mydealer.app
iqsmanagement.com
brettstenerson.com
sso.stage.platoon.fm
tcm.nz
www.businesslogic2.dev
www.geghispanoamerica.app
tcm.nz
www.marche-design.com
amiton.org
www.nimba.fr
www.cityphil.com
earkick.com
venturiautomation.com
www.veryimportantmail.com
tcm.nz
sriharsha.dev
www.tcm.nz
qigong.net.nz
seacoastpremiereleague.com
api.clic.run
tcm.nz
hansen.onecharthealth.com
www.softwarelc.com
amiton.org
amiton.org
earkick.com
www.geghispanoamerica.app
maildo.app
www.pikibit.com
merterim.dev
www.veryimportantmail.com
brettstenerson.com
sso.stage.platoon.fm
courtspaceapp.com
api.clic.run
amiton.org
soporte.astitel.com.mx
amiton.org
tcm.nz
qigong.net.nz
www.cityphil.com
tripek.ru
tcm.nz
tcm.nz
sinhvien.td.edu.vn
amiton.org
vendor.mydealer.app
iqsmanagement.com
brettstenerson.com
sso.stage.platoon.fm
tcm.nz
www.businesslogic2.dev
www.geghispanoamerica.app
tcm.nz
www.marche-design.com
amiton.org
Certificate
The complete raw certificate details for tcm.nz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFazCCBFOgAwIBAgISAz3O7Ruqn2lpDlC3Xc5KR5fQMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODExMTYyMTMwMjBaFw0x OTAyMTQyMTMwMjBaMBExDzANBgNVBAMTBnRjbS5uejCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBAMjCJqFN7F0VhB9B1M3WjyZxG5Rcv7qU+Pra/iuCIHH3 YtU7MU6SJS+6lRMyIwWQ6mrOOc1m44d6es1PAhHk7i2dh5Q+xxKunNtBE1mscTx2 2n7NU9kiU6Zjbx8E8g3ywlCLk199iFn+Q//BglWUGmifhXo3wX7T2ZWC2GrMoEvw bmUZ59H5sPMjcV/IzQZ/ePJT1+prLLPBc++m6vKkckr//l8UzAofG07OgWx0zHCA FnKqLKzOIHxgraDuNIaZb4RQMgY+151UzTFobiuaAgFKrM7gt/wsUgSu7L9+r2MU ZvtrnSEmGx22jT/0Z31H269JwqSa5/yiynqoTV83jZ8CAwEAAaOCAoIwggJ+MA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQUiSsprfIPcT1MO32egvLned+E5mwwHwYDVR0j BBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsG AQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsG AQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzA5BgNV HREEMjAwggphbWl0b24ub3JnggZ0Y20ubnqCDnd3dy5hbWl0b24ub3Jnggp3d3cu dGNtLm56MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHW eQIEAgSB9ASB8QDvAHUA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4A AAFnHqV6mQAABAMARjBEAiAywx6JYTfPIpruteo723xeyVtWv0U+C7Dts5GmIWdU +gIgSg+YT520O8GFly1g47GXeFs1p/j83COLpTi+ZCzEdtIAdgBj8tvN6DvMLM8L coQnV2szpI1hd4+9daY4scdoVEvYjQAAAWcepXqZAAAEAwBHMEUCIQDNWgejZ1xS 3ZN7VdJXeSbecpZldJKQ/VjsejNvld954wIgQwtNdkl0tZJElf+iGNGxuZeLKsbb wVRT2/aA2+o1cXswDQYJKoZIhvcNAQELBQADggEBAC7yO9uD/Ss5zmi1+V03bkfD ay6O7deRnopNZe7EyOgtVidEK4mpN1e05QFevfweMfaRnJ2AOkWTolGumLJkm6Po 6VNABB6R8cruhJ0H5Z/9+D8n6LFM4UJrlmwqkmcBDU1ErgsEdIcVeTvcEplMeNEv uBVn0Cqqchz6GCdfxw7A65UQIQvni73+qNfPd3HPtKKfOfUXYrn6bcntfc26tZ/P OYEPlF/Mk2kTIsyE3OnSG76xA9pozhtRKMuX1OnxOVD/X/sJN6NQiNjWQ7FM3rEW IlD+BRt5TIN+Jyg15a1ZxDofuTCyKP3asLsw6tu+0Ct/hAfcgg+Ln4/bUjVksa4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyMImoU3sXRWEH0HUzdaP JnEblFy/upT4+tr+K4Igcfdi1TsxTpIlL7qVEzIjBZDqas45zWbjh3p6zU8CEeTu LZ2HlD7HEq6c20ETWaxxPHbafs1T2SJTpmNvHwTyDfLCUIuTX32IWf5D/8GCVZQa aJ+FejfBftPZlYLYasygS/BuZRnn0fmw8yNxX8jNBn948lPX6msss8Fz76bq8qRy Sv/+XxTMCh8bTs6BbHTMcIAWcqosrM4gfGCtoO40hplvhFAyBj7XnVTNMWhuK5oC AUqszuC3/CxSBK7sv36vYxRm+2udISYbHbaNP/RnfUfbr0nCpJrn/KLKeqhNXzeN nwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 282369134280088334111008939121381508356048 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-16 21:30:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-02-14 21:30:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tcm.nz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25343400369670179080000175836698081617914167117866583634973939262983383318091934253206368600710932737527125263100157310701619393258796539456852026167311682994455978255916615536063101863680668409157072045724007536719483620154463957536996484926380559481703805132958099317629539175216434568937746838536028133688582777591385050728616303673656659493897528719321784507630735839038251446335042282215085182599039533700627919023529541752924466125019691897462842923623486217877979468467607066141796333469694390786249157156630834487121978431490245411903948659630217141448290138048474258485910718791562201272352523994850005585311 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 892b29adf20f713d4c3b7d9e82f2e779df84e66c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'amiton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tcm.nz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.amiton.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tcm.nz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe000001671ea57a990000040300463044022032c31e896137cf229aeeb5ea3bdb7c5ec95b56bf453e0bb0edb391a6216754fa02204a0f984f9db43bc185972d60e3b197785b35a7f8fcdc238ba538be642cc476d200760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d000001671ea57a990000040300473045022100cd5a07a3675c52dd937b55d2577926de729665749290fd58ec7a336f95df79e30220430b4d764974b5924495ffa218d1b1b9978b2ac6dbc15453dbf680dbea35717b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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