www.balcy.org

Issued by AlphaSSL CA - G2

About this certificate


This digital certificate with serial number 11:21:e1:10:b9:26:38:b5:d5:73:90:af:e0:32:48:7a:3f:15 was issued on by AlphaSSL .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

www.balcy.org

Organization unit: Domain Control Validated

AlphaSSL

Organization: AlphaSSL

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 11:21:e1:10:b9:26:38:b5:d5:73:90:af:e0:32:48:7a:3f:15
Serial Number (int): 1492437342079390502750763347713213303766805
Serial Number lenght: 141 bits, 18 octets

SubjectKeyId: a3:b8:be:35:e3:10:40:dc:a9:95:1f:cf:0d:0c:37:67:7f:b3:82:51
AuthorityKeyId: 14:ea:19:55:f0:0e:0d:32:c6:1f:74:33:b7:8e:66:1a:4c:12:31:1e

Fingerprint (sha1): 10:42:b5:36:50:6b:ec:ed:cf:86:81:ac:a1:59:e5:d8:f5:a3:f3:67
Fingerprint (sha256): f4:21:45:5a:e7:66:84:aa:9c:ad:ea:69:fb:0b:28:ec:c6:c1:ac:d7:93:c9:c6:e2:e3:59:96:b5:6a:a6:3a:c0

Issuing Certificate URL: http://secure2.alphassl.com/cacert/gsalphag2.crt

Revocation information

OCSP Server: http://ocsp2.globalsign.com/gsalphag2
CRL Distribution Point: http://crl2.alphassl.com/gs/gsalphag2.crl

Check the revocation status for the current certificate on www.balcy.org
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

www.balcy.org
balcy.org

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFojCCBIqgAwIBAgISESHhELkmOLXVc5Cv4DJIej8VMA0GCSqGSIb3DQEBBQUA MC4xETAPBgNVBAoTCEFscGhhU1NMMRkwFwYDVQQDExBBbHBoYVNTTCBDQSAtIEcy MB4XDTEzMDcyMjE5MDA0NVoXDTE1MDcyMzE5MDA0NVowOzEhMB8GA1UECxMYRG9t YWluIENvbnRyb2wgVmFsaWRhdGVkMRYwFAYDVQQDEw13d3cuYmFsY3kub3JnMIIC IjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuDxYsoUqNAgy12cXSVLGJjQc p8lvhgeSLGHlUU+/kMM95FOsbZJXYXC8Tfvd9HXsgvMYLyjF5yrTD2LwoUEvw9p2 kPSuj76YdF51xcB7a1ViqT7yKtGMuT7zSbckT9YtC+K7/Zbhc9CEjXODRL5VJL/A OE9CmbDQForV9pbG62zPsxrWyniImmtwyHL1s+s9cPmdf0V4tX7o/QQDCJhN6xoo E/ULUx8zG2sGsWhpQpVdDWOdOQXkarQiuqoK1Db+bEVrGPCLNJbhxhPWa/0yjr2r CwLo9umU8F3OYDfvcw6Hpl7SCGCDf6bTwu10/RmFnY5OIfhVtHVTs2LcYVMcmSg4 JQAvG+GD+Fr0OIQ9dmgcwrbpTECU1hToeVhw58yq1UnRO/DTKU4W3LF/hd1KeMwi xxqt8ni4KvkwQW9cQsp/dxojV/Vljhc+/ADUu2Vjb7puGKsx2jHQPBXRVt2MiGmM 4JRMKwkv30qiJcU1NIprFsE3YUwCNLwxck6bO0tN6mi/12EKXcnyLsgPiQJrMkvr JdXLHQM0khIBIKtdCDlIWpgGpv3MZ07dIsOpQ3W0ziqFFrT7/uPFTsFEk6ltQ665 bzJI5r8rjcxgfAqfsMFvKbcJD4U6jAb5ePfGGQcKSWuYIJg7dvVxE/tRLVel+Ca9 OLxdcCKuKtJi5WHgcKUCAwEAAaOCAaswggGnMA4GA1UdDwEB/wQEAwIFoDBJBgNV HSAEQjBAMD4GBmeBDAECATA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9i YWxzaWduLmNvbS9yZXBvc2l0b3J5LzAjBgNVHREEHDAagg13d3cuYmFsY3kub3Jn ggliYWxjeS5vcmcwCQYDVR0TBAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL2NybDIuYWxwaGFzc2wuY29t L2dzL2dzYWxwaGFnMi5jcmwwfwYIKwYBBQUHAQEEczBxMDwGCCsGAQUFBzAChjBo dHRwOi8vc2VjdXJlMi5hbHBoYXNzbC5jb20vY2FjZXJ0L2dzYWxwaGFnMi5jcnQw MQYIKwYBBQUHMAGGJWh0dHA6Ly9vY3NwMi5nbG9iYWxzaWduLmNvbS9nc2FscGhh ZzIwHQYDVR0OBBYEFKO4vjXjEEDcqZUfzw0MN2d/s4JRMB8GA1UdIwQYMBaAFBTq GVXwDg0yxh90M7eOZhpMEjEeMA0GCSqGSIb3DQEBBQUAA4IBAQA+bfP07cTAeR5x ESE2sOm1nYqVT1NlzBnPfTVe+cfjtiqcMh2yaJ5N+az+4Tv8Wl/0JUxV58N9wN5v LqiKaNLd62Mah1A3O3NsAsEF+V3csxMbpGZvu+qLLpGRUtFWA4cZRBuXg6ZgmRbr gI2Hx975rQD1muwK6/l7Pj/1DTHUa0Q7Rrew3hbwhygF3aVmqNUQVgVFwqGM85/P 9yQ0S25RYAKcON+ojGN7JCZOnMGPeWr44/G8jVakyPfY9shsFV4miwFLu2hzHob5 h9O4sSc3/ph7odPUU9z4K6G6GOMjWNFG5NVIH5gqzt4TX5qe4vAK8lR3EU+VvWRo s6tG0yWd -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAuDxYsoUqNAgy12cXSVLG JjQcp8lvhgeSLGHlUU+/kMM95FOsbZJXYXC8Tfvd9HXsgvMYLyjF5yrTD2LwoUEv w9p2kPSuj76YdF51xcB7a1ViqT7yKtGMuT7zSbckT9YtC+K7/Zbhc9CEjXODRL5V JL/AOE9CmbDQForV9pbG62zPsxrWyniImmtwyHL1s+s9cPmdf0V4tX7o/QQDCJhN 6xooE/ULUx8zG2sGsWhpQpVdDWOdOQXkarQiuqoK1Db+bEVrGPCLNJbhxhPWa/0y jr2rCwLo9umU8F3OYDfvcw6Hpl7SCGCDf6bTwu10/RmFnY5OIfhVtHVTs2LcYVMc mSg4JQAvG+GD+Fr0OIQ9dmgcwrbpTECU1hToeVhw58yq1UnRO/DTKU4W3LF/hd1K eMwixxqt8ni4KvkwQW9cQsp/dxojV/Vljhc+/ADUu2Vjb7puGKsx2jHQPBXRVt2M iGmM4JRMKwkv30qiJcU1NIprFsE3YUwCNLwxck6bO0tN6mi/12EKXcnyLsgPiQJr MkvrJdXLHQM0khIBIKtdCDlIWpgGpv3MZ07dIsOpQ3W0ziqFFrT7/uPFTsFEk6lt Q665bzJI5r8rjcxgfAqfsMFvKbcJD4U6jAb5ePfGGQcKSWuYIJg7dvVxE/tRLVel +Ca9OLxdcCKuKtJi5WHgcKUCAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1492437342079390502750763347713213303766805 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AlphaSSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AlphaSSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-07-22 19:00:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-07-23 19:00:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.balcy.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 751616196541824279604353489670726990804361016937064313468037943667680694043561317069230803607205044814919925012723068416900539090735212071072280887798549127411552804424355319277158491068333155811444047184911377035681948915289684735292310222445507647103014482317083943116919909937270425015786831669180419314353926746930233859033792513770915947054865823143033495200745210676190877625097064057172673867656166739880960818771603255683295019328353305072632413909280406615346303617985120472698779349101380764540450209614431543967838978287557427251281109608537248317768402202341107678726640887041046461912402434985902236669872971971070705997161123256495692310509263594621714123085972333155531723017100343004595702156999434148117084482435874164016717232608253435601257297029081012074918350864595078864927186072648806169308179772251649311629779749583856051669801470809918605551002795719856111179979696400933813137728393814461686316308946648035482198963113031721551223847104804688250995588939558072714849828319557686117196738056940295671631164880160764415047823121583214558509468462709147219222495327253996954321416098931550989769417857032996264539370278952767447283896150913070531437668270518133864231649084594830868262269230487312818377879717 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.balcy.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'balcy.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl2.alphassl.com/gs/gsalphag2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure2.alphassl.com/cacert/gsalphag2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsalphag2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a3b8be35e31040dca9951fcf0d0c37677fb38251 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 14ea1955f00e0d32c61f7433b78e661a4c12311e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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