portal.st-clements.co.uk

Issued by VeriSign Class 3 Secure Server CA - G3

About this certificate

This digital certificate with serial number 0e:25:32:7b:9e:60:53:47:5a:ae:35:6c:13:2f:bb:c0 was issued on by VeriSign, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

As someone interested in digital certificates you will love EV SSL Certificates without the hessle, right? Easy, automated EV SSL Certificates for only € 99 ($ 121 or £ 87).


We have idenified some issues with this certificate:

  • The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

St Clements Services Ltd

Organization: St Clements Services Ltd
Organization unit: NST
Organization unit: Terms of use at www.verisign.co.uk/rpa (c)05
Organization unit: Authenticated by VeriSign
Organization unit: Member, VeriSign Trust Network
State / Province: Northamptonshire
Locality: Daventry
Country: GB

VeriSign, Inc.

Organization: VeriSign, Inc.
Organization unit: VeriSign Trust Network
Organization unit: Terms of use at https://www.verisign.com/rpa (c)10
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 0e:25:32:7b:9e:60:53:47:5a:ae:35:6c:13:2f:bb:c0
Serial Number (int): 18802330839313864384070300097450064832
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: 0d:44:5c:16:53:44:c1:82:7e:1d:20:ab:25:f4:01:63:d8:be:79:a5

Fingerprint (sha1): 51:e5:e1:c2:c3:27:a4:87:91:42:42:cc:0c:54:fd:cf:51:d0:7d:a8
Fingerprint (sha256): 29:82:ff:4d:7c:ba:1f:4d:57:36:10:61:50:6f:89:69:d9:9e:2f:27:e1:d4:69:5c:bb:56:f4:16:78:d3:8d:72

Issuing Certificate URL: http://SVRSecure-G3-aia.verisign.com/SVRSecureG3.cer

Revocation information

OCSP Server: http://ocsp.verisign.com
CRL Distribution Point: http://SVRSecure-G3-crl.verisign.com/SVRSecureG3.crl

Check the revocation status for the current certificate on portal.st-clements.co.uk
0
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names.

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGKjCCBRKgAwIBAgIQDiUye55gU0darjVsEy+7wDANBgkqhkiG9w0BAQUFADCB tTELMAkGA1UEBhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMR8wHQYDVQQL ExZWZXJpU2lnbiBUcnVzdCBOZXR3b3JrMTswOQYDVQQLEzJUZXJtcyBvZiB1c2Ug YXQgaHR0cHM6Ly93d3cudmVyaXNpZ24uY29tL3JwYSAoYykxMDEvMC0GA1UEAxMm VmVyaVNpZ24gQ2xhc3MgMyBTZWN1cmUgU2VydmVyIENBIC0gRzMwHhcNMTExMjEz MDAwMDAwWhcNMTcxMjA3MjM1OTU5WjCCARMxCzAJBgNVBAYTAkdCMRkwFwYDVQQI ExBOb3J0aGFtcHRvbnNoaXJlMREwDwYDVQQHFAhEYXZlbnRyeTEhMB8GA1UEChQY U3QgQ2xlbWVudHMgU2VydmljZXMgTHRkMQwwCgYDVQQLFANOU1QxNTAzBgNVBAsU LFRlcm1zIG9mIHVzZSBhdCB3d3cudmVyaXNpZ24uY28udWsvcnBhIChjKTA1MSIw IAYDVQQLExlBdXRoZW50aWNhdGVkIGJ5IFZlcmlTaWduMScwJQYDVQQLEx5NZW1i ZXIsIFZlcmlTaWduIFRydXN0IE5ldHdvcmsxITAfBgNVBAMUGHBvcnRhbC5zdC1j bGVtZW50cy5jby51azCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMn1 U/TbHJ62TbW6z/XXcTvSP708LAUklCgZj5JFqEvSjtdcMebhoCe+1oytZBe4+jNO etxTX3JGREDGoszRRXH6+lIUpBviBL+iFBcVzGpZdUSBMaESU5gblsbnrbF7G7Cn 3cNbaK+0pacnj+tTihFYdKXPWt8gWSwwW64MKqjXimTuq76u2lgrKEhRmcrCoX83 WNhoO7dd8/5oFx7ycN8WKM+MnOyKu1XCtXcpGAbDQsxlFjD2Fz6yZpGKjoY8VfVV dt06av9jIbzEj/9H4jHMfTz2pmyFSlBtgUhcrLU/senFiPEpIwKoRvPGcaN0WBQg 1yL2YU1bGD7fd8dDR1MCAwEAAaOCAdMwggHPMAkGA1UdEwQCMAAwCwYDVR0PBAQD AgWgMEUGA1UdHwQ+MDwwOqA4oDaGNGh0dHA6Ly9TVlJTZWN1cmUtRzMtY3JsLnZl cmlzaWduLmNvbS9TVlJTZWN1cmVHMy5jcmwwRgYDVR0gBD8wPTA7BgtghkgBhvhF AQcXAzAsMCoGCCsGAQUFBwIBFh5odHRwczovL3d3dy52ZXJpc2lnbi5jby51ay9y cGEwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMB8GA1UdIwQYMBaAFA1E XBZTRMGCfh0gqyX0AWPYvnmlMHYGCCsGAQUFBwEBBGowaDAkBggrBgEFBQcwAYYY aHR0cDovL29jc3AudmVyaXNpZ24uY29tMEAGCCsGAQUFBzAChjRodHRwOi8vU1ZS U2VjdXJlLUczLWFpYS52ZXJpc2lnbi5jb20vU1ZSU2VjdXJlRzMuY2VyMG4GCCsG AQUFBwEMBGIwYKFeoFwwWjBYMFYWCWltYWdlL2dpZjAhMB8wBwYFKw4DAhoEFEtr uSiWBgy70FI4mymsSweLIQUYMCYWJGh0dHA6Ly9sb2dvLnZlcmlzaWduLmNvbS92 c2xvZ28xLmdpZjANBgkqhkiG9w0BAQUFAAOCAQEAoAbKkLODJGWjHepsciv096Jt ReeQ6g0S+gGzkxWOgL9t63ddl12mLeyj0mPScpt9Vs94bGE64AUOElahNp4S4+Ye CFxfUQrlVtyyxzHpDMf60N1UQyWgYlhFtmcTrHMiiIGLWL16Sgumiq/mw5vZrJHh 70KYrzDxMBTjvO/oOZYVqyemNvSiasuDY3gXTwB+WnE2TyzuJxBwgJH6dS3B0vb7 fa1DbvlTGQO3dqbPHbyQgE4mzzJL3Xbfpv6jvDNnhr9WqsJK0UtvS114u4yvPKo/ u9kzKDddFdK+TpEt5Y+AVtcdcMvkS1cZcRLxtnOe3Pl+MKJwRhYpELSV8lH+FQ== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfVT9NscnrZNtbrP9ddx O9I/vTwsBSSUKBmPkkWoS9KO11wx5uGgJ77WjK1kF7j6M0563FNfckZEQMaizNFF cfr6UhSkG+IEv6IUFxXMall1RIExoRJTmBuWxuetsXsbsKfdw1tor7SlpyeP61OK EVh0pc9a3yBZLDBbrgwqqNeKZO6rvq7aWCsoSFGZysKhfzdY2Gg7t13z/mgXHvJw 3xYoz4yc7Iq7VcK1dykYBsNCzGUWMPYXPrJmkYqOhjxV9VV23Tpq/2MhvMSP/0fi Mcx9PPambIVKUG2BSFystT+x6cWI8SkjAqhG88Zxo3RYFCDXIvZhTVsYPt93x0NH UwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded