decarlo.design
Issued by Sectigo RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number e7:c0:32:b1:b2:20:e0:aa:ea:1d:2d:74:d5:0a:24:47 was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=decarlo.design
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): e7:c0:32:b1:b2:20:e0:aa:ea:1d:2d:74:d5:0a:24:47Serial Number (int): 308049616222147279491101673096580047943
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: b8:a4:61:6f:8e:b2:1c:fc:64:fc:f6:1d:41:58:b9:0e:aa:96:3b:93
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1
Fingerprint (sha1): 45:f0:39:a9:d3:45:70:5b:c4:13:5a:84:7d:77:a3:22:e4:86:07:b3
Fingerprint (sha256): 12:24:ba:ac:fc:d9:3c:35:4b:fc:b0:c6:4d:86:05:13:b9:9e:82:c9:52:87:2c:85:6b:74:b8:d7:a0:7d:09:e0
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCheck the revocation status for certificate decarlo.design
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for decarlo.design
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
decarlo.design
www.decarlo.design
www.decarlo.design
Other certificates including the domain name decarlo.design
(limited to 100 certificates)
Certificate
The complete raw certificate details for decarlo.design in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGOTCCBSGgAwIBAgIRAOfAMrGyIOCq6h0tdNUKJEcwDQYJKoZIhvcNAQELBQAw gY8xCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE3MDUGA1UE AxMuU2VjdGlnbyBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBD QTAeFw0yMTEyMTUwMDAwMDBaFw0yMzAxMTUyMzU5NTlaMBkxFzAVBgNVBAMTDmRl Y2FybG8uZGVzaWduMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7VS QRBphYsibcE1QvJAkcZ8FbESM2clq+2HJW2vasgITxDv3SfnFLr4Ip3FTGFy3P33 qMiwz8DKpqBCvIpRCjiVyErGHguxW8EikC9iKIFyS3g/7qQsziDKUmQTGotxqXdZ 0eTITHouRlLe7vvfGvCcW0iSdRfRWUqdrv7FehMr3S/ymdfS3JdEIP4WarFcfx87 qTTSIE/kDdFdW4OwhNQ8VYHhKl77I9ruTYQ+sWmXPxWagf4neNMmR451xZC+8xau e/CStoevH55tPeV+T/22puDtnGhsxqehJQr7EY5Sscg3fx+CFzyKt5SNi1IVMj1u X0Pgh7j2KQirZBFGbwIDAQABo4IDAzCCAv8wHwYDVR0jBBgwFoAUjYxexFStiuF3 6Zv5mwXhuAGNYeEwHQYDVR0OBBYEFLikYW+Oshz8ZPz2HUFYuQ6qljuTMA4GA1Ud DwEB/wQEAwIFoDAMBgNVHRMBAf8EAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggr BgEFBQcDAjBJBgNVHSAEQjBAMDQGCysGAQQBsjEBAgIHMCUwIwYIKwYBBQUHAgEW F2h0dHBzOi8vc2VjdGlnby5jb20vQ1BTMAgGBmeBDAECATCBhAYIKwYBBQUHAQEE eDB2ME8GCCsGAQUFBzAChkNodHRwOi8vY3J0LnNlY3RpZ28uY29tL1NlY3RpZ29S U0FEb21haW5WYWxpZGF0aW9uU2VjdXJlU2VydmVyQ0EuY3J0MCMGCCsGAQUFBzAB hhdodHRwOi8vb2NzcC5zZWN0aWdvLmNvbTAtBgNVHREEJjAkgg5kZWNhcmxvLmRl c2lnboISd3d3LmRlY2FybG8uZGVzaWduMIIBfQYKKwYBBAHWeQIEAgSCAW0EggFp AWcAdgCt9776fP8QyIudPZwePhhqtGcpXc+xDCTKhYY069yCigAAAX2/1FGZAAAE AwBHMEUCIEh/GfvB2wudupcUR0ZSsOpnmjPBZXXxaWjfp8mztUyaAiEAnhnO9L7j f8VVKSaoXpLdfQi+wqKZhZ2p53zO+kymp5AAdgB6MoxU2LcttiDqOOBSHumEFnAy E4VNO9IrwTpXo1LrUgAAAX2/1FFjAAAEAwBHMEUCIFBdL/gi4Ia4CLxkegFV0W+G /97L8csr7isK/0DNeNcOAiEA8aQTFfvPIBxLgjmKYt3Hm/RdHQt+Go8VeeVVWIt7 ZG8AdQDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9bQa9bgAAAX2/1FE9AAAE AwBGMEQCIDN4f6Fyb2XrZacwcIFmO+WgClT41eZmGJk9w7r9C+8GAiATXfXQHtwb Y3KL5H6l5K5lLdcpgEoCmvW+7qlMybXr/DANBgkqhkiG9w0BAQsFAAOCAQEAknEs JqarneF/brbOpOZC/rqnDEa95lBEw/4MvhTdSrou+jG2CU2G4c6wwwA95hTOCf1J MAhDErfmvgy/yLKIXpIydnlLVsW8DlBgxIyoG985Xs1YvSaKO1MR8kDHFlDeSXFk bWDCa/Bqtv8eJcbAJnGd+5ibfFyEQBQei4dw32D5zT0HyD3SIvJcJfbxtvaA29l8 DlLNE/yh503+Ouf3yUPOAYz0zZm3A4213K+OBYU3z20kZNl0dX15Gv+LOs+zqImF /eX05NEkTOqLzifdyfLxI4OQTPHSqbepFqmpjThDM/fD6L8Bmtod3al4WkDlY+aB 99xiA442RQ3m+vNonA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr7VSQRBphYsibcE1QvJA kcZ8FbESM2clq+2HJW2vasgITxDv3SfnFLr4Ip3FTGFy3P33qMiwz8DKpqBCvIpR CjiVyErGHguxW8EikC9iKIFyS3g/7qQsziDKUmQTGotxqXdZ0eTITHouRlLe7vvf GvCcW0iSdRfRWUqdrv7FehMr3S/ymdfS3JdEIP4WarFcfx87qTTSIE/kDdFdW4Ow hNQ8VYHhKl77I9ruTYQ+sWmXPxWagf4neNMmR451xZC+8xaue/CStoevH55tPeV+ T/22puDtnGhsxqehJQr7EY5Sscg3fx+CFzyKt5SNi1IVMj1uX0Pgh7j2KQirZBFG bwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 308049616222147279491101673096580047943 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-12-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'decarlo.design' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22181116237166689165818551667138069080748041735737598109874477233298842577811209309534148009902672183162570021079602804633592911779161300711832851285379377119684044907528068054468956265308985549259891312013092355967390296799696265687527462069086235119940807395342607466010829977710982238458985087638053349615885594824031256435688710190153051544367114578931428694370127073870423737085177178531411839995875479111221053996870409777145102776182202238641009266604324738068920659568469876179403743174376078295430597650343440856362794514714460938630107626465096624564570885482060734905529650228729110541668910877876608386671 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b8a4616f8eb21cfc64fcf61d4158b90eaa963b93 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'decarlo.design' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.decarlo.design' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0092712c26a6ab9de17f6eb6cea4e642febaa70c46bde65044c3fe0cbe14dd4aba2efa31b6094d86e1ceb0c3003de614ce09fd4930084312b7e6be0cbfc8b2885e923276794b56c5bc0e5060c48ca81bdf395ecd58bd268a3b5311f240c71650de4971646d60c26bf06ab6ff1e25c6c026719dfb989b7c5c8440141e8b8770df60f9cd3d07c83dd222f25c25f6f1b6f680dbd97c0e52cd13fca1e74dfe3ae7f7c943ce018cf4cd99b7038db5dcaf8e058537cf6d2464d974757d791aff8b3acfb3a88985fde5f4e4d1244cea8bce27ddc9f2f12383904cf1d2a9b7a916a9a98d384333f7c3e8bf019ada1ddda9785a40e563e681f7dc62038e36450de6faf3689c