DV SSL/TLS Certificate for *.maistro.hu

Certificate is witin its validity period

Issued by Sectigo Limited (Sectigo RSA Domain Validation Secure Server CA)

About the *.maistro.hu DV SSL/TLS Certificate

This certificate with serial number da:30:24:e2:af:34:3f:f3:54:77:d6:11:ae:be:98:f2 for *.maistro.hu was issued on by Sectigo Limited.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for *.maistro.hu provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): da:30:24:e2:af:34:3f:f3:54:77:d6:11:ae:be:98:f2
Serial Number (int): 290021681456854834562164108442736695538
Serial Number Length: 128 bits, 16 octets

Subject Key Identifier: 82:bc:68:36:4a:09:af:40:98:75:8b:10:8a:d2:3c:69:7f:d7:fd:f7
Authority Key Identifier: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1

Fingerprint (SHA-1): 25:e6:61:e3:5d:f2:46:ab:13:1d:48:97:73:e4:3c:11:8b:05:3a:4e
Fingerprint (SHA-256): 7a:47:7f:ef:d7:17:01:90:c3:b4:58:d9:97:22:a3:5c:23:d4:0d:82:66:74:51:6c:bc:6c:f1:f0:93:0a:00:ad

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt

Revocation Information

OCSP Server: http://ocsp.sectigo.com

Check the revocation status for certificate *.maistro.hu
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for *.maistro.hu

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for *.maistro.hu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAupa9/CUX8DBn51bom7DJ
BpgGuQEbx1uAfrVLFskLZ9BZ5kD9HEi2xh7gBguytVqhYezOa2uKE6f0HrcwZ7jB
pDG9UyuHGN22/QmKRmZ5/TpWiEccBhexazjQcmNadK9xAxZpVZ8cM7wIEDf1Q752
e/UVYa0/jSfyCy5+jVUeD2ZgAw5Zzz/wUh6LNEsxgEuak7b5P45fw0qNRBy5vo3F
3qS2Ugh/7r/+nIXsRvz4ZFGSQK9UayVodSp1Yb6zbAYY3uyoJM4S2VnoSlNlwmMR
/jJGQ+GhbcMrXTQOyUB5Oimr2De2MkdLkiT0B9WzI/StmKgIzBe49dt3cUos0jzg
qQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 290021681456854834562164108442736695538
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-13 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-02-24 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.maistro.hu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23554658437792400315532328119868539553990407334542690953775799984703595817198799713021897881323924422852352501562636027366114412863312816078568458046871207852703601952981038414995339914733249924276707695660410072416570994424589879550500227566236622650119187293166563882615889529441175449294772237351990266775964667329109845465389315875196974016910954154144592709894265173412626278830128106639692952401949434089462413081055915442124726404818995488197457707654785374404384503559467349076546848898535511222554148949583065448471589874587826213752307371853914084017724460954981965257615474831703772859245241733778549563561
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							82bc68364a09af4098758b108ad23c697fd7fdf7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.maistro.hu'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maistro.hu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							0169007700969764bf555897adf743876837084277e9f03ad5f6a4f3366e46a43f0fcaa9c600000194ff9c66330000040300483046022100f66eecec1f75ed35edefc48c5e0561a754a5f4671a78de3844f38f1a00758923022100d393f1e28152d71fa3e97772254399459c2cf83fdf11afc50c5b88fdec4369060076001986d4c728aa6ffeba036f782a4d0191aace2d72310faece5d70412d254cc7d400000194ff9c660a000004030047304502203f699e71300786438891d4bfef96e8b6f58f1fa59393def16200386ce76d3ff1022100b6c688fd21bdbc3824c414faaf5e0c13e948ce445562e2a74a554e0b58755ceb007600cb38f715897c84a1445f5bc1ddfbc96ef29a59cd470a690585b0cb14c31458e700000194ff9c6645000004030047304502207a8b8ffb1b69c60b89d341776c7fbafb4ca297e4a0744dc98de332ffd447d32602210094680279741ea87b19b9c75469a85d4dc3bd02030506f18b30a2fcd87be8cc5d
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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