Certificate for

Certificate is witin its validity period

Issued by itself (self-signed)

About the Certificate

This certificate with serial number 08:00:03:2b:c5:ca:99:80:40:ac:87:aa:70:cb:42:bf:60:26:4c:d4 for was issued on by itself (self-signed).

This Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this Certificate review for provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
  • Subscriber certificates MUST contain the Subject Alternate Name extension (BRs: 7.1.4.2.1)
  • Certificate issuer field MUST NOT be empty and must have a non-empty distinguished name (RFC 5280: 4.1.2.4)
  • Subscriber Certificate: authorityInformationAccess MUST be present. (BRs: 7.1.2.3)
  • Subscriber certificates must contain at least one policy identifier that indicates adherence to CAB standards (BRs: 7.1.2.3)
  • Subscriber Certificate: certificatePolicies MUST be present and SHOULD NOT be marked critical. (BRs: 7.1.2.3)
  • Subscriber certificates MUST have the extended key usage extension present (BRs: 7.1.2.3)
  • CAs MUST support subject alternative name if the subject field is an empty sequence (RFC 5280: 4.2 & 4.2.1.6)
  • TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC must not have a validity period greater than 398 days (https://support.apple.com/en-us/HT211025)
  • Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 08:00:03:2b:c5:ca:99:80:40:ac:87:aa:70:cb:42:bf:60:26:4c:d4
Serial Number (int): 45672202398500161579901259026702842456472702164
Serial Number Length: 156 bits, 20 octets

Subject Key Identifier: bb:c2:a1:1d:3d:f7:e0:58:6f:f9:c9:6b:ad:8a:d5:89:df:9a:fa:e7
Authority Key Identifier:

Fingerprint (SHA-1): a9:a6:b1:70:da:3e:01:30:be:32:35:ca:25:7d:ec:78:b8:d7:b5:4e
Fingerprint (SHA-256): 73:24:10:46:9f:38:b7:ce:65:09:e4:df:31:ee:7e:49:95:f3:f8:1e:31:9b:e7:f6:d9:ef:fa:b7:d1:3d:e6:af


Revocation Information


Check the revocation status for certificate
0
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
None
Extended Key Usages
None
Extensions
1
CA Certificate
This is not a CA certificate

Subject Alternative Names

This X.509 certificate doesn't contain any subject alternative names.

X.509 Certificate

The complete raw X.509 certificate details for in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAkTdUILnxq829/hEaAZ7V
fqpP6UU9AtpYhgO+csGKUFWWA9O5Rtz1kelzVmnAeU8CYa6o5q9jmV719dkgx64m
vlBKWYowgt4Z0Ilvutv3DhJMMuKqYC/cXozJvc98+N+76uYjc1iDlGQs3y803RAR
VuvhggucQxV99h8vSUTK9E85QAWiXtaq9hDkAefGD/fJa1Jn5zzoj4EI6SO/J5nF
SnlheEQIg9sQgqAKVj3KQCbD4U92rDg4qLfgsCU3/s5EuIOf4qKDxcVr7MoqWpSh
U335bdlyMRmHN9qGihPicOYGeeO6FFaoSqDIthDMicKB5ksFfCr7m0wB7sRgu6tr
NQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 45672202398500161579901259026702842456472702164
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-30 16:41:04 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2035-04-28 16:41:04 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18331837781624839355504883066592394849622470065024694435721699433138160285534778092333059699427859379531782945753965199559275634630760877406679184230755539740325426200971376039742720509607955289671180940965844231455232072534581628732916968149872430086475187279729245064088843056947266802239508815096343806892062107293740613352933670443640668452786591593850100483064578570793167284631125088942772677158259102702564918859351318773230766202257009400161040496976141048810198130241837646700739808057327057531068489120584513168220124073615718225397660417296506473354262428298767528073352065218322208681858525414487761840949
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							bbc2a11d3df7e0586ff9c96bad8ad589df9afae7
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		007141f575704775a3e8db0a632727c1bf75d8cac61464f0a944b6f2f30ee9ba44abd12a3f7dc8165471f78bbbd3b9a338aaee18009c55c0850eb1c72980784df72ff2aae764fe09f4ab942dae92455a9dc0dfd645f43a242ef4558b0899a83b657c0f4e992b62393eec6ecc42d17ce79e0e2364053f1c6f5450a8fc855387d9b7557779eccdf28f2e9ba7750712beaab600c8bc582867ed434146a18567e0f129396741c5371aba5a844f0919b1225ee758c1e521e8772cef9356fd72c6f50ba8928a5c69ba3039b70d54198a88e7b3f375be417c2d51a3ba4bc967480ffcff316c955eb758321dda66594d8e34ee2877a24d5804fc49c6569f376e57be34d04d