www.omb.mx
Issued by SSL.com DV CA
About this certificate
This digital certificate with serial number de:50:b6:77:5a:40:bc:b7:a2:3d:c3:26:69:fe:2a:d5 was issued on by SSL.com.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.omb.mx,OU=Domain Control Validated+OU=Hosted by SSL.com
SSL.com
Organization:
SSL.com
Organization unit: www.ssl.com
Organization unit: www.ssl.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): de:50:b6:77:5a:40:bc:b7:a2:3d:c3:26:69:fe:2a:d5Serial Number (int): 295507699667565227125120991332075973333
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: c0:c7:eb:16:d2:53:36:af:55:b9:7e:49:ec:f1:ae:e8:4b:f0:f1:08
AuthorityKeyId: 46:9a:fd:fc:51:5e:7c:54:53:52:e2:99:e3:b3:32:ef:93:1a:7f:56
Fingerprint (sha1): 0f:4f:1e:03:4f:5d:c3:03:76:e6:51:5e:94:b7:7d:d6:7d:60:e8:ad
Fingerprint (sha256): 1d:ae:08:0d:a3:46:dd:33:4e:64:25:42:86:8a:0e:cb:49:82:43:d3:c3:d5:ab:80:5d:68:a3:dd:29:e6:9c:c9
Issuing Certificate URL: http://crt.ssl.com/SSLcomDVCA_2.crt
Revocation information
OCSP Server: http://ocsp.ssl.comCRL Distribution Point: http://crl.ssl.com/SSLcomDVCA_2.crl
Check the revocation status for certificate www.omb.mx
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.omb.mx
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.omb.mx
omb.mx
omb.mx
Other certificates including the domain name omb.mx
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.omb.mx in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEsjCCA5qgAwIBAgIRAN5QtndaQLy3oj3DJmn+KtUwDQYJKoZIhvcNAQELBQAw TTELMAkGA1UEBhMCVVMxEDAOBgNVBAoTB1NTTC5jb20xFDASBgNVBAsTC3d3dy5z c2wuY29tMRYwFAYDVQQDEw1TU0wuY29tIERWIENBMB4XDTE3MTAyNTAwMDAwMFoX DTE4MTAyNTIzNTk1OVowVDEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRh dGVkMRowGAYDVQQLExFIb3N0ZWQgYnkgU1NMLmNvbTETMBEGA1UEAxMKd3d3Lm9t Yi5teDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANYokbTN15pC8fmB eZtMISUAWruAAbXRQNEaYpQWi7Ch3O252JtCjOXDU1/CWtFqwe08cqhl5qWqNT0g uVpmli2XpiTdkX5oTgdWG1N5GKUmcO7PKzfaraiyahqa+gGftkQQzyKg621b+Lig K+eeaU0S5N4Gtvnxju/vj+nrQCK4lixzCdPoq5ZHk/HZvLOQLHJqJ1V+lgE5+oPL 4mwJ70ujwby93j4Pz3GvBX7U3oC81qmXztstKJ4yixxkf+E3Nccs69ereVIF72cD pBxv/Hw2Rjuoqo9RbLVdLOUSot9ivDn/3i0BhdqViNM8BuTrh7v2FsnWIWqq8DiZ ikrmBpkCAwEAAaOCAYQwggGAMB8GA1UdIwQYMBaAFEaa/fxRXnxUU1LimeOzMu+T Gn9WMB0GA1UdDgQWBBTAx+sW0lM2r1W5fkns8a7oS/DxCDAOBgNVHQ8BAf8EBAMC BaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw SgYDVR0gBEMwQTA1BgorBgEEAYKpMAEBMCcwJQYIKwYBBQUHAgEWGWh0dHBzOi8v Y3BzLnVzZXJ0cnVzdC5jb20wCAYGZ4EMAQIBMDQGA1UdHwQtMCswKaAnoCWGI2h0 dHA6Ly9jcmwuc3NsLmNvbS9TU0xjb21EVkNBXzIuY3JsMGAGCCsGAQUFBwEBBFQw UjAvBggrBgEFBQcwAoYjaHR0cDovL2NydC5zc2wuY29tL1NTTGNvbURWQ0FfMi5j cnQwHwYIKwYBBQUHMAGGE2h0dHA6Ly9vY3NwLnNzbC5jb20wHQYDVR0RBBYwFIIK d3d3Lm9tYi5teIIGb21iLm14MA0GCSqGSIb3DQEBCwUAA4IBAQAzodjE1rssXrab lN4X/vl5K9+rsTKUBSa3l+Kt2pTmNDfZ3bxnfHcXqtc0h5kMEXzcZZGzl2359U9o fsN4qCvPJdJ025S6onqhylBc1/0L2tTojm+2WGoStjQFKXOVt7HN28/GdTB9K2z/ ZR/WKzhRAzhbPT+t/UyGmLdEmwaxy+fjGlXPjW75no1X9vLqbz5ajezjjNQBcSna ygUiTh6bab4lUZ2OnuChZHEXhUt6aC9hMcEj1rJZJt3VgyeCc769hHzkg8tcYEJx TGewtqPeH+R0jsE9MYDPUn/5yBsIRtrtCh9VxDyt+JefRcQgSkcE8vc8y3PP4qmR axBgX+LV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1iiRtM3XmkLx+YF5m0wh JQBau4ABtdFA0RpilBaLsKHc7bnYm0KM5cNTX8Ja0WrB7TxyqGXmpao1PSC5WmaW LZemJN2RfmhOB1YbU3kYpSZw7s8rN9qtqLJqGpr6AZ+2RBDPIqDrbVv4uKAr555p TRLk3ga2+fGO7++P6etAIriWLHMJ0+irlkeT8dm8s5AscmonVX6WATn6g8vibAnv S6PBvL3ePg/Pca8FftTegLzWqZfO2y0onjKLHGR/4Tc1xyzr16t5UgXvZwOkHG/8 fDZGO6iqj1FstV0s5RKi32K8Of/eLQGF2pWI0zwG5OuHu/YWydYhaqrwOJmKSuYG mQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 295507699667565227125120991332075973333 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SSL.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ssl.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SSL.com DV CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hosted by SSL.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.omb.mx' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27035002663659441399358472074096508077784631016962154524587464633778029000813975154978723253149986918038530193975265284653809582527300957338786464028410337922116885131234380263386998621468890654347488982816366260954377886152244011736644019605085087624002080344037597887704665004997643963730341042021363066187902329302001948995312195681538019490343842381970294770937234142228763158961722640927892122259580432350708574304380798525834620051549629561489912591671812808266889072795437331472278695604291752587845810523600537885686209224509599453618416015163227460333367301835036740738075904648020278723643003418073064933017 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 469afdfc515e7c545352e299e3b332ef931a7f56 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c0c7eb16d25336af55b97e49ecf1aee84bf0f108 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (67 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.38064.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (45 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.ssl.com/SSLcomDVCA_2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (84 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.ssl.com/SSLcomDVCA_2.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.ssl.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.omb.mx' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'omb.mx' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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