www.twako.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:74:a5:a2:07:73:0f:10:6a:6e:62:da:93:f5:b5:e1:ae:b7 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.twako.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:74:a5:a2:07:73:0f:10:6a:6e:62:da:93:f5:b5:e1:ae:b7Serial Number (int): 301029776280597963497997741076755280670391
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: dc:6f:67:68:4e:20:f7:32:ed:db:e5:d3:98:02:d6:1f:f9:90:fe:29
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0f:7d:57:c3:73:e6:c1:ee:09:55:13:b6:6e:1b:74:aa:39:91:92:b9
Fingerprint (sha256): f7:c8:98:53:7b:a9:d8:8c:f0:cc:fc:ff:a5:0a:91:b0:b2:62:7f:5f:b3:44:ca:79:cd:91:0c:e1:83:03:7b:52
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.twako.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.twako.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.twako.com
Other certificates including the domain name twako.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.twako.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISA3SlogdzDxBqbmLak/W14a63MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MTcxMDQyMjVaFw0x OTEwMTUxMDQyMjVaMBgxFjAUBgNVBAMTDXd3dy50d2Frby5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCjKEcdtW7f6xakx+vR6anHyBZOApGF/VVX /c1BwgOL3qRcI56R2W5zbV9448o2khGowP7aJgN57fJN60yHWrHQKqxBGiFU4u5p nAm9yGeO3JQfQOYVDyijuGgwO1tl0jLbU8mGxfqww5iIbZ4DvHqVFLm7BSvFJOSt kwAQGgaKvRoUYIu6QVfuemvbh3+/ZRS2zUnwnrXkH8M9vWkxuVGJpfWJr0w7+VmZ jGx3UMz8tHq/32TrvNpEQzlFaYjrRTUvWDpNzYQHaOprV0zHZvRKR3PLR6kGKAJl vbrA+AqIsIs6ok2DppAJuwaehcjgy0/3saFEdsOWhBoM1pgdr1D/wuPXxqF1hIDe J7GG5wbfsOvOKekoUoKg4n5apIHl5awcUQGbgkDIHh3mArUVD2uOiO9Za8EEm4Er W7aYmX+2OoQRR9d24jevs8WmFdiRRkApEddZNTdoMNm3/GwqiQhTnTbcdP/tBdFd lbVilDC8mZ/gS0QnR1HJMC7cvOjqhts4NnSt+ZqJ89OklFTt3UhSv/MRocpDCrU4 6o3R2QrZpeqqGO1O0nepKPk/l1quwLdo56E4E6FPUvJ7RS9txuprk13sVbyjOAEq JKhx1ikggF59lXc//mFJJXQgSggj3maFj3vVD+yfulIK/JgIqOsfp3AxCVbS7sMn 0XK5eL0/QwIDAQABo4ICYTCCAl0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTcb2do TiD3Mu3b5dOYAtYf+ZD+KTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy50d2Frby5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHx AO8AdgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAWv/vZ3OAAAE AwBHMEUCIQDYZYsuKAp86XdV4VJ7bsUecvWpJ5uGj/xQCjgsyiS82AIgEVE3r7Fa eofwl10wNXJW+C6Spf1VsfQ7zEciON7ESv8AdQApPFGWVMg5ZbqqUPxYB9S3b79Y eily3KTDDPTlRUf0eAAAAWv/vZ2bAAAEAwBGMEQCIC1nRCfc1LHr67fimyw/xA9L oSDOL9HyjUidHjyDzvXqAiBa02el42O+udR97tDRn3hkbZrt4H7IPtJaqhRn/28/ cjANBgkqhkiG9w0BAQsFAAOCAQEAd9OtFEhxAC2e+XlPrhF9ce0QjSTqJDPQyvpA dia26KaTZXKzFBe+5P38v55lJQ6kI2ML2VqG9C1uHlk5gAtaMgGJTbDH/Mhv/oxG 5soaoURwI0/3Uvm2paxWHdyXfgeotSxvLdX8f+WxaUiXLzGPbY8WqtX4J3ue31Tj HUkaCewo/U77HwN3ncM8CDdzQIa/GmLlxkIeZqs24j5BdUYVd4VVeHv0AzmaYg5z XUPkr/8e+36EPwaf4GgdLIzFiBqjCgDRba/CoKDydYXOmZEyxQpNvg+qv7QneKlj nJ4FzC7Wg3bEK9qO86KA5mbwdRgrxqKW2LjdgqrD6HvNKcfhIA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoyhHHbVu3+sWpMfr0emp x8gWTgKRhf1VV/3NQcIDi96kXCOekdluc21feOPKNpIRqMD+2iYDee3yTetMh1qx 0CqsQRohVOLuaZwJvchnjtyUH0DmFQ8oo7hoMDtbZdIy21PJhsX6sMOYiG2eA7x6 lRS5uwUrxSTkrZMAEBoGir0aFGCLukFX7npr24d/v2UUts1J8J615B/DPb1pMblR iaX1ia9MO/lZmYxsd1DM/LR6v99k67zaREM5RWmI60U1L1g6Tc2EB2jqa1dMx2b0 Skdzy0epBigCZb26wPgKiLCLOqJNg6aQCbsGnoXI4MtP97GhRHbDloQaDNaYHa9Q /8Lj18ahdYSA3iexhucG37DrzinpKFKCoOJ+WqSB5eWsHFEBm4JAyB4d5gK1FQ9r jojvWWvBBJuBK1u2mJl/tjqEEUfXduI3r7PFphXYkUZAKRHXWTU3aDDZt/xsKokI U5023HT/7QXRXZW1YpQwvJmf4EtEJ0dRyTAu3Lzo6obbODZ0rfmaifPTpJRU7d1I Ur/zEaHKQwq1OOqN0dkK2aXqqhjtTtJ3qSj5P5darsC3aOehOBOhT1Lye0Uvbcbq a5Nd7FW8ozgBKiSocdYpIIBefZV3P/5hSSV0IEoII95mhY971Q/sn7pSCvyYCKjr H6dwMQlW0u7DJ9FyuXi9P0MCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 301029776280597963497997741076755280670391 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-17 10:42:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-15 10:42:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.twako.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 665623854477460500360972762573409315059186893169015699769472194282361782933855910587484724838123587550020408712261226237023234174653658831680067674897033016686789615337501261846395251505021681172250283162778206357445670083329601889221468591248105813544892122825329479024593808799962327859950462947865496891270958075100346821879591339910083542591533049805523652113802154137551271154110223561248708666452527897478746700027994559125429043151719807491546021339157865010161872575929484515152865210506667133129891178952313693971629356604933634739673053856095401066086889236753998195540073293311902722799789505583086738566269274612993326653636005272828249559423085700913175718238334250590693846496506282099804511836571586666795705695376698835361182959276562757580872111384126218022007017976217731467659421759013989015427770535204964188146024120126864414790880804109149017495430411797011687059008298545305636830940813414490936205073623906204361637981432721797337939899194867387352380253670946586162666477421389341061115073808580104638111633221402237402994094873675404667488758240069146897591681561062499363881684104458848288051831963410345966319154136166830430044477510376198156313467258165939896744829371360606222905313593035366352797122371 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dc6f67684e20f732eddbe5d39802d61ff990fe29 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.twako.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016bffbd9dce0000040300473045022100d8658b2e280a7ce97755e1527b6ec51e72f5a9279b868ffc500a382cca24bcd80220115137afb15a7a87f0975d30357256f82e92a5fd55b1f43bcc472238dec44aff007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016bffbd9d9b000004030046304402202d674427dcd4b1ebebb7e29b2c3fc40f4ba120ce2fd1f28d489d1e3c83cef5ea02205ad367a5e363beb9d47deed0d19f78646d9aede07ec83ed25aaa1467ff6f3f72 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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