www.co2-raportti.fi
Issued by Telia Domain Validation SSL CA v1
About this certificate
This digital certificate with serial number 01:63:91:7c:32:14:05:58:db:ab:9b:29:71:15:ed was issued on by Telia Finland Oyj.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- If certificate policy 2.23.140.1.2.2 is included, organizationName MUST be included in subject (BRs: 7.1.6.4)
- If certificate policy 2.23.140.1.2.2 is included, countryName MUST be included in subject (BRs: 7.1.6.4)
- If certificate policy 2.23.140.1.2.2 is included, localityName or stateOrProvinceName MUST be included in subject (BRs: 7.1.6.4)
- KeyUsage [DataEncipherment DigitalSignature KeyEncipherment] (00001101) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.co2-raportti.fi
Telia Finland Oyj
Organization:
Telia Finland Oyj
Country:
FI
This certificate has expire since
Certificate Details
Serial Number (hex): 01:63:91:7c:32:14:05:58:db:ab:9b:29:71:15:edSerial Number (int): 7211781929542966123250058280375789
Serial Number lenght: 113 bits, 15 octets
SubjectKeyId: d9:2b:2a:8a:38:86:46:b7:bb:59:03:c8:32:fe:da:e0:b9:c9:0e:83
AuthorityKeyId: 49:6c:32:53:7c:5d:ed:2b:e3:a2:ab:9c:0b:c9:5d:e4:95:d4:92:5f
Fingerprint (sha1): 49:de:29:6f:d8:68:27:15:6c:17:44:fa:86:c3:b9:3c:19:4f:2c:0f
Fingerprint (sha256): 05:56:25:b7:55:85:7a:2a:85:10:03:d5:43:47:4d:14:db:ce:c0:ee:2a:86:30:67:72:6b:15:c6:fc:c9:3d:58
Issuing Certificate URL: http://httpcrl.trust.telia.com/teliadomainvalidationsslcav1.cer
Revocation information
OCSP Server: http://ocsp.trust.telia.comCRL Distribution Point: http://httpcrl.trust.telia.com/teliadomainvalidationsslcav1.crl
Check the revocation status for certificate www.co2-raportti.fi
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.co2-raportti.fi
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Data Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.co2-raportti.fi
co2-raportti.fi
co2-raportti.fi
Other certificates including the domain name co2-raportti.fi
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.co2-raportti.fi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF0DCCA7igAwIBAgIPAWORfDIUBVjbq5spcRXtMA0GCSqGSIb3DQEBCwUAMFUx CzAJBgNVBAYTAkZJMRowGAYDVQQKDBFUZWxpYSBGaW5sYW5kIE95ajEqMCgGA1UE AwwhVGVsaWEgRG9tYWluIFZhbGlkYXRpb24gU1NMIENBIHYxMB4XDTE4MDUyNDA5 MzAyNVoXDTE5MDUyNDA5MzAyNVowHjEcMBoGA1UEAwwTd3d3LmNvMi1yYXBvcnR0 aS5maTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJxrlVnI5zVwS81j 75HbhTnPCzbfkC4iTzkzHxTyF+XQteWnEzNTQ50uldXwKjWt9s2sA5WIzvjDHWM7 WjUb2YtFh9dRB48/SqLsBVTP505TTbd2HRUmiHlXFbxsAhpG/yWe8lcDdXoLk4Do lTs8uTisynkbGK3RVt4SmuOfoXK0bdKHZ7so/oIdvI3xndSSiFFDYD/RsPaNKasO Y0paHKPLoPFwZzNz8V9uUDcpqMdkE4D86qe7D8jaYENRlMwFnLkx/qdsOdG7ul55 cRJOZS78kClN+AaIaMZz89fs1U2Z/61Mc/lD30/3jgBIZaBSbAYxfGstwZ/zeD5B CjC/8o8CAwEAAaOCAdIwggHOMB8GA1UdIwQYMBaAFElsMlN8Xe0r46KrnAvJXeSV 1JJfMB0GA1UdDgQWBBTZKyqKOIZGt7tZA8gy/trguckOgzAOBgNVHQ8BAf8EBAMC BLAwPgYDVR0gBDcwNTAzBgZngQwBAgIwKTAnBggrBgEFBQcCARYbaHR0cDovL2Nw cy50cnVzdC50ZWxpYS5jb20vMC8GA1UdEQQoMCaCE3d3dy5jbzItcmFwb3J0dGku ZmmCD2NvMi1yYXBvcnR0aS5maTBQBgNVHR8ESTBHMEWgQ6BBhj9odHRwOi8vaHR0 cGNybC50cnVzdC50ZWxpYS5jb20vdGVsaWFkb21haW52YWxpZGF0aW9uc3NsY2F2 MS5jcmwwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMIGEBggrBgEFBQcB AQR4MHYwJwYIKwYBBQUHMAGGG2h0dHA6Ly9vY3NwLnRydXN0LnRlbGlhLmNvbTBL BggrBgEFBQcwAoY/aHR0cDovL2h0dHBjcmwudHJ1c3QudGVsaWEuY29tL3RlbGlh ZG9tYWludmFsaWRhdGlvbnNzbGNhdjEuY2VyMBMGCisGAQQB1nkCBAMBAf8EAgUA MA0GCSqGSIb3DQEBCwUAA4ICAQBFwyY9G9FF/T1QNkjXcGWcnYm6vt9ODn+2Em9t XxUuKI1Si4I15bBlvdzgk4I/JLvHG4cgERoWmC80KApyX5PDB3ChkfwVDwYRULDF zgjYrflXCf+Z1H/ZwN+MuWyBuPVlnUStOGnkBIyZYYjwGSHjkHnvJRAAKWc2m3tT p8V9PEub+/hpeowvQopr14+Ks/uqHdrIqCT2ulAkVrNr9TPOr97tVpZKJV9enthW eshbzAIJAq8mwKsjtzFH3fS2kDhrjMB4Vc1Y1Log9rbSNsjHtrYT3VlJt8RxP6M4 AbUJKmg/18McWJPZnpLzBlH1mXzmyJ+VtpFDDgNWv0XKmV9cwSBZc+XzmpQFziCv KM7QKGrXyKw2tI2bIdNjsvkj/RIpHciSFowTmuPAEvJWjjO0abcwNFb21/a04UYi Wab9n+9HjmJG4HYd88b4h3oF4LzaFtASSrL4WUSQ1wxUxgCcF6sEnFCl6xtMo4nu X7e6+VDU+HSLZGT/S6/pE4ze2FLztKo8kOVL2k4pz47SdSRtGKYorfanCsdm219k j3wm/7v6lvfYXeqbTSliZSMi/gHtOJp67dfYfoH8M6Yo8CUGkAYNmvcJAc38nnjm srjxmMkR/1GSxS3ROn5t+8mjr31FNjDYg+OuMRUAcuYqaZDBl49d9Uh0SEcB8NE/ xoHMlA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnGuVWcjnNXBLzWPvkduF Oc8LNt+QLiJPOTMfFPIX5dC15acTM1NDnS6V1fAqNa32zawDlYjO+MMdYztaNRvZ i0WH11EHjz9KouwFVM/nTlNNt3YdFSaIeVcVvGwCGkb/JZ7yVwN1eguTgOiVOzy5 OKzKeRsYrdFW3hKa45+hcrRt0odnuyj+gh28jfGd1JKIUUNgP9Gw9o0pqw5jSloc o8ug8XBnM3PxX25QNymox2QTgPzqp7sPyNpgQ1GUzAWcuTH+p2w50bu6XnlxEk5l LvyQKU34BohoxnPz1+zVTZn/rUxz+UPfT/eOAEhloFJsBjF8ay3Bn/N4PkEKML/y jwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7211781929542966123250058280375789 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Telia Finland Oyj' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Telia Domain Validation SSL CA v1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-05-24 09:30:25 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-24 09:30:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.co2-raportti.fi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19746226927115947829608873747869099693953911555318472820454801703953002373946963630904403516112472209233977773729387477709053497352856064056701981215603025933015580058349169219326231247596350954053526563678699988291074718552888796725676181057118397723663789180168530092567909035216994921404417310992427241948551413369990272388164766380037819673969122299916134531726558243227088057979403185529736712968062683496982577468033216094723156079358643369187728260951015623435829081371652345457813632995370976156234835779925664804486273565494633160652083321283474693155279604392733668478282780502566410481412012742735101424271 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 496c32537c5ded2be3a2ab9c0bc95de495d4925f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d92b2a8a388646b7bb5903c832fedae0b9c90e83 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04b0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.trust.telia.com/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.co2-raportti.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'co2-raportti.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://httpcrl.trust.telia.com/teliadomainvalidationsslcav1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.trust.telia.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://httpcrl.trust.telia.com/teliadomainvalidationsslcav1.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 0045c3263d1bd145fd3d503648d770659c9d89babedf4e0e7fb6126f6d5f152e288d528b8235e5b065bddce093823f24bbc71b8720111a16982f34280a725f93c30770a191fc150f061150b0c5ce08d8adf95709ff99d47fd9c0df8cb96c81b8f5659d44ad3869e4048c996188f01921e39079ef2510002967369b7b53a7c57d3c4b9bfbf8697a8c2f428a6bd78f8ab3fbaa1ddac8a824f6ba502456b36bf533ceafdeed56964a255f5e9ed8567ac85bcc020902af26c0ab23b73147ddf4b690386b8cc07855cd58d4ba20f6b6d236c8c7b6b613dd5949b7c4713fa33801b5092a683fd7c31c5893d99e92f30651f5997ce6c89f95b691430e0356bf45ca995f5cc1205973e5f39a9405ce20af28ced0286ad7c8ac36b48d9b21d363b2f923fd12291dc892168c139ae3c012f2568e33b469b7303456f6d7f6b4e1462259a6fd9fef478e6246e0761df3c6f8877a05e0bcda16d0124ab2f8594490d70c54c6009c17ab049c50a5eb1b4ca389ee5fb7baf950d4f8748b6464ff4bafe9138cded852f3b4aa3c90e54bda4e29cf8ed275246d18a628adf6a70ac766db5f648f7c26ffbbfa96f7d85dea9b4d2962652322fe01ed389a7aedd7d87e81fc33a628f0250690060d9af70901cdfc9e78e6b2b8f198c911ff5192c52dd13a7e6dfbc9a3af7d453630d883e3ae31150072e62a6990c1978f5df54874484701f0d13fc681cc94