portal.ajgrant.com.au
Issued by USERTrust Secure Server CA
About this certificate
This digital certificate with serial number da:2f:ea:e8:28:11:15:e4:9e:3f:6b:65:df:1b:c4:38 was issued on by The USERTRUST Network.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=portal.ajgrant.com.au,OU=Domain Control Validated+OU=EssentialSSL
The USERTRUST Network
Organization:
The USERTRUST Network
State / Province:
New Jersey
Locality: Jersey City
Country: US
Locality: Jersey City
Country: US
This certificate has expire since
Certificate Details
Serial Number (hex): da:2f:ea:e8:28:11:15:e4:9e:3f:6b:65:df:1b:c4:38Serial Number (int): 290020505510643810510520389207678764088
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: b7:d5:eb:9b:54:b4:38:19:c0:37:ab:07:fb:3a:ec:7d:96:27:9a:49
AuthorityKeyId: 24:c5:9d:2d:59:f6:12:f0:17:24:24:0b:94:da:d9:6b:f0:5b:c0:20
Fingerprint (sha1): 17:e2:12:13:29:f5:51:4e:c8:ab:32:94:86:18:d8:96:eb:da:92:4a
Fingerprint (sha256): 1b:0f:05:f3:c3:54:e5:76:6b:30:29:ba:a7:98:cd:56:32:d5:8d:92:4a:ee:33:cb:5c:6e:22:0e:f2:89:3f:15
Issuing Certificate URL: http://crt.usertrust.com/USERTrustSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.usertrust.comCRL Distribution Point: http://crl.usertrust.com/USERTrustSecureServerCA.crl
Check the revocation status for certificate portal.ajgrant.com.au
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for portal.ajgrant.com.au
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
portal.ajgrant.com.au
www.portal.ajgrant.com.au
www.portal.ajgrant.com.au
Other certificates including the domain name ajgrant.com.au
(limited to 100 certificates)
Certificate
The complete raw certificate details for portal.ajgrant.com.au in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFMDCCBBigAwIBAgIRANov6ugoERXknj9rZd8bxDgwDQYJKoZIhvcNAQEFBQAw fTELMAkGA1UEBhMCVVMxEzARBgNVBAgTCk5ldyBKZXJzZXkxFDASBgNVBAcTC0pl cnNleSBDaXR5MR4wHAYDVQQKExVUaGUgVVNFUlRSVVNUIE5ldHdvcmsxIzAhBgNV BAMTGlVTRVJUcnVzdCBTZWN1cmUgU2VydmVyIENBMB4XDTEzMTAwOTAwMDAwMFoX DTE1MTAwOTIzNTk1OVowWjEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRh dGVkMRUwEwYDVQQLEwxFc3NlbnRpYWxTU0wxHjAcBgNVBAMTFXBvcnRhbC5hamdy YW50LmNvbS5hdTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAP0gVrKz sPrjwyaDJkI29Qr3RmqeC/clGUkYPkMnik2aeW1tzUop+CHTuHl/WBLa2u95RB/S mCN0zJ3x9HdhSK3Q3hDfCOvfKipy1b7WyFdLxpxMdaY40D7SrCNmb0ViC7Ia7xuW By9L7NOzcUMqQVpCImL1hyQVY+XVzK70Y1Ly+gWRYDlqJDvXENODgkOiVeVZMSYF XyemPbsU/asbliQbIeXLqu0RGKe3d6mNQylePkvfn2kOzBHd184EptP5+dnI/vdo ENEYDZB991pIU04VXT62aAkOOLVBYoFZ6TYEsQsuZDm+YFKGrVAZZTsjUuLczR1Z oLtOlcAYZQ0q3nsCAwEAAaOCAcwwggHIMB8GA1UdIwQYMBaAFCTFnS1Z9hLwFyQk C5Ta2WvwW8AgMB0GA1UdDgQWBBS31eubVLQ4GcA3qwf7Oux9lieaSTAOBgNVHQ8B Af8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwTAYDVR0gBEUwQzA3BgwrBgEEAbIxAQIBAwQwJzAlBggrBgEFBQcCARYZ aHR0cHM6Ly9jcHMudXNlcnRydXN0LmNvbTAIBgZngQwBAgEwRQYDVR0fBD4wPDA6 oDigNoY0aHR0cDovL2NybC51c2VydHJ1c3QuY29tL1VTRVJUcnVzdFNlY3VyZVNl cnZlckNBLmNybDB3BggrBgEFBQcBAQRrMGkwQAYIKwYBBQUHMAKGNGh0dHA6Ly9j cnQudXNlcnRydXN0LmNvbS9VU0VSVHJ1c3RTZWN1cmVTZXJ2ZXJDQS5jcnQwJQYI KwYBBQUHMAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wOwYDVR0RBDQwMoIV cG9ydGFsLmFqZ3JhbnQuY29tLmF1ghl3d3cucG9ydGFsLmFqZ3JhbnQuY29tLmF1 MA0GCSqGSIb3DQEBBQUAA4IBAQAwgFYjAex+U61AmT6L1xRjZeMEyujWkX7O3F99 u+hWg9JEB2JhD+Q5B0zjeKyPOuPqmrCFLi/EtVSsG7wBHvpuzobeq+ryu1+3YYsG ATExo+pxHpdUtgDwYB6HzhQUUmOzbkT9oIGxa0/TwX2C6QcZDOAGvtS+zELEbv23 BDHfoOjC6cUWe811hCmGExL6wQ5hcMIe2K8wklgzFqJEeZ8qDYAVGUiUY+X16JhL TCwY5bXNcmUPd2r8zatvtsvXEtgOQSDF8wCmmQ/jton13AkjulbNrPus0KJMOLYH qwsHQK+F8K9qfOWc580ii93jx8tcQ1c4HfyMWCSqc7tAkpjI -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/SBWsrOw+uPDJoMmQjb1 CvdGap4L9yUZSRg+QyeKTZp5bW3NSin4IdO4eX9YEtra73lEH9KYI3TMnfH0d2FI rdDeEN8I698qKnLVvtbIV0vGnEx1pjjQPtKsI2ZvRWILshrvG5YHL0vs07NxQypB WkIiYvWHJBVj5dXMrvRjUvL6BZFgOWokO9cQ04OCQ6JV5VkxJgVfJ6Y9uxT9qxuW JBsh5cuq7REYp7d3qY1DKV4+S9+faQ7MEd3XzgSm0/n52cj+92gQ0RgNkH33WkhT ThVdPrZoCQ44tUFigVnpNgSxCy5kOb5gUoatUBllOyNS4tzNHVmgu06VwBhlDSre ewIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 290020505510643810510520389207678764088 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Jersey City' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The USERTRUST Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'USERTrust Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-10-09 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-10-09 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'EssentialSSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'portal.ajgrant.com.au' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31954237946111771529484321133798227041730220571505718680001057704791528617634721701303704196590054732217445193351311940164667278534652630969253636774928838361118908049839917112926330278739693525871940204339116336935407856378507328785770216097019166848619905451034705272894305388612578135830152542750015858619293275968063696625227838459123186372393856502962232489086863976560390110404938409922546613942003291442988289911623361454013396995849622706837131640275120175130254797267420624820457850704038710827466570528894401410737501981704359767309781425629214989536788768805882851209729530601568739054538178346608059145851 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 24c59d2d59f612f01724240b94dad96bf05bc020 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b7d5eb9b54b43819c037ab07fb3aec7d96279a49 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/USERTrustSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (107 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/USERTrustSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.ajgrant.com.au' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.portal.ajgrant.com.au' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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