shop.stevenotwinery.com

Issued by VeriSign Class 3 Secure Server CA - G3

About this certificate

This digital certificate with serial number 1e:a5:34:28:09:52:b0:80:d6:5f:3a:85:81:0b:0f:77 was issued on by VeriSign, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

As someone interested in digital certificates you will love EV SSL Certificates without the hessle, right? Easy, automated EV SSL Certificates for only € 99 ($ 121 or £ 87).


We have idenified some issues with this certificate:

  • The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

Stevenot Winery

Organization: Stevenot Winery
Organization unit: Corporate
Organization unit: Terms of use at www.verisign.com/rpa (c)05
State / Province: California
Locality: Murphys
Country: US

VeriSign, Inc.

Organization: VeriSign, Inc.
Organization unit: VeriSign Trust Network
Organization unit: Terms of use at https://www.verisign.com/rpa (c)10
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 1e:a5:34:28:09:52:b0:80:d6:5f:3a:85:81:0b:0f:77
Serial Number (int): 40734626712516943721989153996759830391
Serial Number lenght: 125 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: 0d:44:5c:16:53:44:c1:82:7e:1d:20:ab:25:f4:01:63:d8:be:79:a5

Fingerprint (sha1): 15:de:68:b2:78:e2:36:38:d4:65:77:85:f1:5c:eb:27:e8:5b:09:74
Fingerprint (sha256): 00:48:12:4f:d4:a0:6e:8e:21:fe:d4:84:ba:16:73:48:a5:04:47:4a:1d:fa:ec:32:87:cf:02:8b:1f:64:1e:e5

Issuing Certificate URL: http://SVRSecure-G3-aia.verisign.com/SVRSecureG3.cer

Revocation information

OCSP Server: http://ocsp.verisign.com
CRL Distribution Point: http://SVRSecure-G3-crl.verisign.com/SVRSecureG3.crl

Check the revocation status for the current certificate on shop.stevenotwinery.com
0
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names.

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFzTCCBLWgAwIBAgIQHqU0KAlSsIDWXzqFgQsPdzANBgkqhkiG9w0BAQUFADCB tTELMAkGA1UEBhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMR8wHQYDVQQL ExZWZXJpU2lnbiBUcnVzdCBOZXR3b3JrMTswOQYDVQQLEzJUZXJtcyBvZiB1c2Ug YXQgaHR0cHM6Ly93d3cudmVyaXNpZ24uY29tL3JwYSAoYykxMDEvMC0GA1UEAxMm VmVyaVNpZ24gQ2xhc3MgMyBTZWN1cmUgU2VydmVyIENBIC0gRzMwHhcNMTIwMzIz MDAwMDAwWhcNMTgwMzI0MjM1OTU5WjCBuTELMAkGA1UEBhMCVVMxEzARBgNVBAgT CkNhbGlmb3JuaWExEDAOBgNVBAcUB011cnBoeXMxGDAWBgNVBAoUD1N0ZXZlbm90 IFdpbmVyeTESMBAGA1UECxQJQ29ycG9yYXRlMTMwMQYDVQQLFCpUZXJtcyBvZiB1 c2UgYXQgd3d3LnZlcmlzaWduLmNvbS9ycGEgKGMpMDUxIDAeBgNVBAMUF3Nob3Au c3RldmVub3R3aW5lcnkuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEAmKejo3ktSw72HUmSuEAUGKfm3CVIaxk9ujhTaM9PBzHdyzbSkkaMkBwLhRhy z0PWSt3mx7UHSvZUayKm0wU9hksX6hpuFsZlBD/S6IXKiw2SOfND9I8qE9oEKN/D fJ4Gu51lww7IblkiZt6pSpP4o/GQhzH4lVVrotczdIoA7VjKiBjSiTTz1XaWl5wi 0SQuIuop0wxls1bpDofCXYg0u5jXzRyEAV7GJC31eqU0K7eZUBvsJ3ORKG02AUVP /2UL8UblBychm0VI3Na2YJ3qDabUDiR2pbZjIBn5KPMhy5GMsIFC0aeUlH64J695 DkmSzepZfT3Z3qqQTGpY3RZW9wIDAQABo4IB0TCCAc0wCQYDVR0TBAIwADALBgNV HQ8EBAMCBaAwRQYDVR0fBD4wPDA6oDigNoY0aHR0cDovL1NWUlNlY3VyZS1HMy1j cmwudmVyaXNpZ24uY29tL1NWUlNlY3VyZUczLmNybDBEBgNVHSAEPTA7MDkGC2CG SAGG+EUBBxcDMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LnZlcmlzaWduLmNv bS9ycGEwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1UdIwQYMBaA FA1EXBZTRMGCfh0gqyX0AWPYvnmlMHYGCCsGAQUFBwEBBGowaDAkBggrBgEFBQcw AYYYaHR0cDovL29jc3AudmVyaXNpZ24uY29tMEAGCCsGAQUFBzAChjRodHRwOi8v U1ZSU2VjdXJlLUczLWFpYS52ZXJpc2lnbi5jb20vU1ZSU2VjdXJlRzMuY2VyMG4G CCsGAQUFBwEMBGIwYKFeoFwwWjBYMFYWCWltYWdlL2dpZjAhMB8wBwYFKw4DAhoE FEtruSiWBgy70FI4mymsSweLIQUYMCYWJGh0dHA6Ly9sb2dvLnZlcmlzaWduLmNv bS92c2xvZ28xLmdpZjANBgkqhkiG9w0BAQUFAAOCAQEAHbkzQJZIuEJDmytyZJZG MtIQ/kh+brjFg0P6ptjmerKKIB8Ql0KQAdqfg4RpZBwsaMTTTOMibFP/mHGsz6Hn 7p6drTJX8iSN2C5IQHkWf6zNcv66TYXENPIOxGPP+ibHKAf3BpiZxqinc2OUYOVZ iaGKx0eqtxtg+8w/qQFV3EI+XdFOL1h2Kn+QiZk5ePWa8jnz121utBgpYXEYfJqf 95KjGY/Cv2XGOwbGY/s6nPxVVvHwHAyEzC26sFZ0ebD08oyJ9f76sYh/cfcD90W4 ENYI8Ab/boPfTcpqt3ggsD/R/NHmmmIVgpG4q39PjJ/4tD02BxUgF4fA589ms7Wt vA== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmKejo3ktSw72HUmSuEAU GKfm3CVIaxk9ujhTaM9PBzHdyzbSkkaMkBwLhRhyz0PWSt3mx7UHSvZUayKm0wU9 hksX6hpuFsZlBD/S6IXKiw2SOfND9I8qE9oEKN/DfJ4Gu51lww7IblkiZt6pSpP4 o/GQhzH4lVVrotczdIoA7VjKiBjSiTTz1XaWl5wi0SQuIuop0wxls1bpDofCXYg0 u5jXzRyEAV7GJC31eqU0K7eZUBvsJ3ORKG02AUVP/2UL8UblBychm0VI3Na2YJ3q DabUDiR2pbZjIBn5KPMhy5GMsIFC0aeUlH64J695DkmSzepZfT3Z3qqQTGpY3RZW 9wIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded