pics.ymca.co.uk
Issued by GlobalSign Domain Validation CA - SHA256 - G2
About this certificate
This digital certificate with serial number 11:21:5b:33:55:b6:05:61:70:a5:d5:19:a2:b8:b5:db:54:a3 was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=pics.ymca.co.uk,OU=Domain Control Validated
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 11:21:5b:33:55:b6:05:61:70:a5:d5:19:a2:b8:b5:db:54:a3Serial Number (int): 1492259405241497382018346774244897882592419
Serial Number lenght: 141 bits, 18 octets
SubjectKeyId: 0c:c1:c3:7e:f0:32:bc:0c:18:1b:2a:12:ba:c4:5a:80:c1:45:53:59
AuthorityKeyId: ea:4e:7c:d4:80:2d:e5:15:81:86:26:8c:82:6d:c0:98:a4:cf:97:0f
Fingerprint (sha1): f8:b7:3b:ce:5f:6f:82:d6:4c:2f:9b:da:79:e2:fb:d3:6a:f0:19:9b
Fingerprint (sha256): 00:fc:92:28:cc:77:b1:40:d4:94:ad:7c:2b:b4:ec:cc:73:4b:bf:71:e3:42:0e:6a:15:b6:4a:a9:5c:84:58:8a
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsdomainvalsha2g2CRL Distribution Point: http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl
Check the revocation status for certificate pics.ymca.co.uk
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pics.ymca.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pics.ymca.co.uk
Other certificates including the domain name ymca.co.uk
(limited to 100 certificates)
pics.ymca.co.uk
*.ymca.co.uk
*.ymca.co.uk
mycrm.ymca.co.uk
myvpn.ymca.co.uk
elearning.ymca.co.uk
myvpn.ymca.co.uk
sip.ymca.co.uk
elearning.ymca.co.uk
*.ymca.co.uk
elearning.ymca.co.uk
elearning.ymca.co.uk
myvpn.ymca.co.uk
elearning.ymca.co.uk
myvpn.ymca.co.uk
webmail.centralymca.org.uk
myvpn.ymca.co.uk
elearning.ymca.co.uk
elearning.ymca.co.uk
myvpn.ymca.co.uk
*.ymca.co.uk
*.ymca.co.uk
*.ymca.co.uk
*.ymca.co.uk
*.ymca.co.uk
mycrm.ymca.co.uk
myvpn.ymca.co.uk
elearning.ymca.co.uk
myvpn.ymca.co.uk
sip.ymca.co.uk
elearning.ymca.co.uk
*.ymca.co.uk
elearning.ymca.co.uk
elearning.ymca.co.uk
myvpn.ymca.co.uk
elearning.ymca.co.uk
myvpn.ymca.co.uk
webmail.centralymca.org.uk
myvpn.ymca.co.uk
elearning.ymca.co.uk
elearning.ymca.co.uk
myvpn.ymca.co.uk
*.ymca.co.uk
*.ymca.co.uk
*.ymca.co.uk
Certificate
The complete raw certificate details for pics.ymca.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE7DCCA9SgAwIBAgISESFbM1W2BWFwpdUZori121SjMA0GCSqGSIb3DQEBCwUA MGAxCzAJBgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTYwNAYD VQQDEy1HbG9iYWxTaWduIERvbWFpbiBWYWxpZGF0aW9uIENBIC0gU0hBMjU2IC0g RzIwHhcNMTUxMDI2MTQ1MzQyWhcNMTYxMDI2MTQ1MzQyWjA9MSEwHwYDVQQLExhE b21haW4gQ29udHJvbCBWYWxpZGF0ZWQxGDAWBgNVBAMTD3BpY3MueW1jYS5jby51 azCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKxJAXDIDpDen+fCOrjB aVNLA9kwGLX4nboM5ZtjR4hnJ2p2xtqdm1UY9CYaVL6RU17O2rOJBJL4VatDT7nR gH4upsGOzC4VbbBU/WXHKifOdFK1eYqbu3HJQT3bdVQiX1cNxalCMOJym+PGzS/R 4s+mb4sElWLhnaSa7MiY46ZPkXWNEtwqs1GV957lT8BTCatmP3zSy2Aa+DEzyCiz SaKlK6JledDAlIPBsm0min8btKl9wXlJQHnS+4N993VJdsQTSg59jd52lK5j0y20 K+aW9smySzzLNLimBQJkAz5Usuwfj61e/bHwiMMyMc2P/G8HLepH3VunrZeUHe8b tPkCAwEAAaOCAcEwggG9MA4GA1UdDwEB/wQEAwIFoDBJBgNVHSAEQjBAMD4GBmeB DAECATA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxzaWduLmNvbS9y ZXBvc2l0b3J5LzAaBgNVHREEEzARgg9waWNzLnltY2EuY28udWswCQYDVR0TBAIw ADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwQwYDVR0fBDwwOjA4oDag NIYyaHR0cDovL2NybC5nbG9iYWxzaWduLmNvbS9ncy9nc2RvbWFpbnZhbHNoYTJn Mi5jcmwwgZQGCCsGAQUFBwEBBIGHMIGEMEcGCCsGAQUFBzAChjtodHRwOi8vc2Vj dXJlLmdsb2JhbHNpZ24uY29tL2NhY2VydC9nc2RvbWFpbnZhbHNoYTJnMnIxLmNy dDA5BggrBgEFBQcwAYYtaHR0cDovL29jc3AyLmdsb2JhbHNpZ24uY29tL2dzZG9t YWludmFsc2hhMmcyMB0GA1UdDgQWBBQMwcN+8DK8DBgbKhK6xFqAwUVTWTAfBgNV HSMEGDAWgBTqTnzUgC3lFYGGJoyCbcCYpM+XDzANBgkqhkiG9w0BAQsFAAOCAQEA ZRkGzjyxNZezBKcSmwRor4nd4Uj3Wwwknq01eaLcDz/1FcKzQa0MSkUu3+yOj5u9 dd1a5MbN9y0rwWsQU+cClwZYbFoUIIxE6dfxXeLzkiTFsjX5z1t3CQKkPoVlx00e IVG75SBxA1+ai+iaYBMKLxe7S+qrs0grzqnWc5H4w/Os/R3ei3EvKpsGR0i4ZzgD wyCtRPXXHSDV/zDxCc41cFxld5dsVHmI01AGJWrUOo4x0E3gg78fNK5aSyxFII7e r+h57pgtx/A6iJhxZOVkR6EVX3pwYyHyVE3ZC+hLz0agc4HO6VlwkZf7aINdXpsH jO6/0Ff55bTWZ4GYoJKluw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArEkBcMgOkN6f58I6uMFp U0sD2TAYtfidugzlm2NHiGcnanbG2p2bVRj0JhpUvpFTXs7as4kEkvhVq0NPudGA fi6mwY7MLhVtsFT9ZccqJ850UrV5ipu7cclBPdt1VCJfVw3FqUIw4nKb48bNL9Hi z6ZviwSVYuGdpJrsyJjjpk+RdY0S3CqzUZX3nuVPwFMJq2Y/fNLLYBr4MTPIKLNJ oqUromV50MCUg8GybSaKfxu0qX3BeUlAedL7g333dUl2xBNKDn2N3naUrmPTLbQr 5pb2ybJLPMs0uKYFAmQDPlSy7B+PrV79sfCIwzIxzY/8bwct6kfdW6etl5Qd7xu0 +QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1492259405241497382018346774244897882592419 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Domain Validation CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-10-26 14:53:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-10-26 14:53:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pics.ymca.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21748988870667933633483611755972699249586152629784767377659687984506491681608552430921346984130852786249649877247138771822399088714982386660028201820509853657204931011469881423622547536145734915928183977621937540756118807758276470159560659524420581590254433384500496637435963291826090773629115730287418249337895860083560865196866530062151515162631707865915068603841130809679605400953345599330813377496187302033470455025768608191663503272728140835481628089996198799530812422627811550268372387799085759488653520495509213302091216564596350829445495878028678399627286303510854794097154642473847173116459070431666678510841 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pics.ymca.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsdomainvalsha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 0cc1c37ef032bc0c181b2a12bac45a80c1455359 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ea4e7cd4802de5158186268c826dc098a4cf970f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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