ufc.com

Issued by Certainly Intermediate R1

About this certificate

This digital certificate with serial number 76:b3:58:40:a9:93:bf:bc:29:7f:69:44:f6:90:cc:44:39:9f was issued on by Certainly.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=ufc.com

Certainly

Organization: Certainly
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 76:b3:58:40:a9:93:bf:bc:29:7f:69:44:f6:90:cc:44:39:9f
Serial Number (int): 10340277591436618210104974428487748816222623
Serial Number lenght: 143 bits, 18 octets

SubjectKeyId: aa:6a:7e:77:12:f4:22:bf:5a:f7:2d:a3:48:38:36:e1:4b:e1:f4:4f
AuthorityKeyId: bd:97:9d:df:a1:d8:1b:25:99:e3:0c:04:06:89:64:12:d7:65:24:c7

Fingerprint (sha1): f3:84:5c:ee:fc:a3:70:a8:be:0d:c4:7c:91:96:19:81:a0:18:16:5d
Fingerprint (sha256): 1e:1f:5b:ee:82:57:85:5a:68:9c:ac:de:1c:19:03:66:93:2e:51:2b:5e:3c:8c:0b:a6:23:78:0b:32:71:75:b6

Issuing Certificate URL: http://int-r1.certainly.com

Revocation information

OCSP Server: http://ocsp.int-r1.certainly.com

Check the revocation status for certificate ufc.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for ufc.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

ufc.com

Other certificates including the domain name ufc.com

(limited to 100 certificates)
au.ufc.com
3fadmin.govdelivery.com
facebook.bars.ufc.com
*.ufc.com
ftp.ufc.com
webmail.ufc.com
2021convention.ncte.org
au.ufc.com
5755424754106368-fe2.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
live.ucdavis.edu
5766752193478656-fe4.pantheonsite.io
a.ns.christiancentury.org
ftp.ufc.com
academi.ufc.com
dev.ufc.com
communityadvancementfirm.com
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
on.ufc.com
a.ns.christiancentury.org
alumnimail.albion.edu
71.ufc.com
live.bme.cornell.edu
5766752193478656-fe4.pantheonsite.io
*.dev.ufc.com
5755424754106368-fe2.pantheonsite.io
jp.ufc.com
ftp.ufc.com
ufc.com
*.test.ufc.com
5766752193478656-fe4.pantheonsite.io
collector.ufc.com
5755424754106368-fe2.pantheonsite.io
ufc.com
asikmpo.discoverlosangeles.com
alumnimail.albion.edu
alumnimail.albion.edu
5766752193478656-fe4.pantheonsite.io
sandiegozoo100.org
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
bars.ufc.com
5766752193478656-fe4.pantheonsite.io
2fsupport.govdelivery.com
webmail.ufc.com
2fsupport.govdelivery.com
5755424754106368-fe2.pantheonsite.io
on.ufc.com
5766752193478656-fe4.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
sandiegozoo100.org
5755424754106368-fe2.pantheonsite.io
sters.us
71.ufc.com
5755424754106368-fe2.pantheonsite.io
*.dev.ufc.com
live.ucdavis.edu
lp.programs.carey.jhu.edu.help
*.ufc.com
on.ufc.com
on.ufc.com
ufc.com
webmail.ufc.com
5766752193478656-fe4.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
webmail.ufc.com
5766752193478656-fe4.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
ufc.com
5755424754106368-fe2.pantheonsite.io
rewards.ufc.com
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
jc.edu
ufc.com
5766752193478656-fe4.pantheonsite.io
5755424754106368-fe2.pantheonsite.io
cci520-new.courtinnovation.org
jc.edu
2fsupport.govdelivery.com
collector.ufc.com
71.ufc.com
71.ufc.com
5766752193478656-fe4.pantheonsite.io
bars.ufc.com
5766752193478656-fe4.pantheonsite.io
*.ufc.com
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
ufc.com
5755424754106368-fe2.pantheonsite.io
5766752193478656-fe4.pantheonsite.io
cervello.ufc.com
sandiegozoo100.org

Certificate

The complete raw certificate details for ufc.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIE/jCCA+agAwIBAgISdrNYQKmTv7wpf2lE9pDMRDmfMA0GCSqGSIb3DQEBCwUA
MEUxCzAJBgNVBAYTAlVTMRIwEAYDVQQKEwlDZXJ0YWlubHkxIjAgBgNVBAMTGUNl
cnRhaW5seSBJbnRlcm1lZGlhdGUgUjEwHhcNMjQwNjE3MDg0NjQ5WhcNMjQwNzE3
MDg0NjQ4WjASMRAwDgYDVQQDEwd1ZmMuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOC
AQ8AMIIBCgKCAQEAr4bzQc9aSkPmvHhLwP4Y2lAGz+XIUWXi+sKE8540V0f+xH24
x5/aTDhlN76/eXBSZn9mCQx/DUI3R8ma0zx3riSjC7Jguhm9r93DxeFxS0YBGFPa
ma67f08q1EBYQaNMipL5a6K2D01WHOnC+83XBLcraCt3EjzVxCSfmpDxhjI+slfa
JNCMCan7M8dAON22Ero2b5gn1gWc5IMo7VqFQttPIdUUqZcav7uPYVSyzNi2qh9W
JMqfOy59Aav+gkxx7ZMCimPutaHBxKl2xlkbaRhp038a7sg6fmv2CtgwfTr0Ni5v
CEZNFvB/TO5ztmxi62SW6BQoeV52ErrccH44uQIDAQABo4ICGTCCAhUwDgYDVR0P
AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMB
Af8EAjAAMB0GA1UdDgQWBBSqan53EvQiv1r3LaNIODbhS+H0TzAfBgNVHSMEGDAW
gBS9l53fodgbJZnjDAQGiWQS12UkxzBlBggrBgEFBQcBAQRZMFcwLAYIKwYBBQUH
MAGGIGh0dHA6Ly9vY3NwLmludC1yMS5jZXJ0YWlubHkuY29tMCcGCCsGAQUFBzAC
hhtodHRwOi8vaW50LXIxLmNlcnRhaW5seS5jb20wEgYDVR0RBAswCYIHdWZjLmNv
bTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2
AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABkCWXl3AAAAQDAEcw
RQIgFLNfyjb0HfEtOqGvn6JsiZI22TiEvrGXuTfAyj+R6DsCIQD5ypp6yYxJjMB8
UB+hpbYsw3b7rllEKELIomWcOHvQmAB2AEiw42vapkc0D+VqAvqdMOscUgHLVt0s
gdm7v6s52IRzAAABkCWXl0IAAAQDAEcwRQIgcZ5PlIGWoCggwKsQRL8Hs9sGVrL8
yJSNR2qCEfqiK/oCIQCf+/WlVdPoSGW0ONQLPxtvXLBwhTpuS0hQKMQ/0noDRTAN
BgkqhkiG9w0BAQsFAAOCAQEAYPHvySwTeXIq0dB4t0aeIP/o38D9chuMCuOuv/yy
LBZyfDX8bqwzXzYYbBm3NjMd/vP9Ey99CvXHTcHX3ueUwErnr0f8U4M4gD0j7a+p
DKNEortwSlf4rtr4CEPdmsD5l/qaDKm9Je/d5MLWa8udh4mOHt6ar1GmNR7r8Jw0
jsfiNT7KhCMQKf2l6m+X9KuKZbEXnGaQCliot+N4Nk7clKHtwV8QDgxGf5cmXj2q
Omm1DVBdysdaDcMoGUtWSv4p+enAd2CvWFosZeocSig3JTfq3P8q9MDZZBtI4vdE
ZSpgtXvrFxgn3Em4GgxkcUpdkWqS+FHM1rUlJEh9CmouQQ==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr4bzQc9aSkPmvHhLwP4Y
2lAGz+XIUWXi+sKE8540V0f+xH24x5/aTDhlN76/eXBSZn9mCQx/DUI3R8ma0zx3
riSjC7Jguhm9r93DxeFxS0YBGFPama67f08q1EBYQaNMipL5a6K2D01WHOnC+83X
BLcraCt3EjzVxCSfmpDxhjI+slfaJNCMCan7M8dAON22Ero2b5gn1gWc5IMo7VqF
QttPIdUUqZcav7uPYVSyzNi2qh9WJMqfOy59Aav+gkxx7ZMCimPutaHBxKl2xlkb
aRhp038a7sg6fmv2CtgwfTr0Ni5vCEZNFvB/TO5ztmxi62SW6BQoeV52ErrccH44
uQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 10340277591436618210104974428487748816222623
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Certainly'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Certainly Intermediate R1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-17 08:46:49 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-17 08:46:48 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ufc.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22158249804206878532780940595793421721704152799886390337283787091548824647392436679661466705886114717603656041354151073996951036363158702746100548544861965947033540883048643590606350283394877806493647926316558925685363254134227900778393442360170100046161071784005993333069207712599287691500117314384084178599639667665555427548539632270358093689765617511410371706637208386561385599370670172914963972062762214244047190445763413910019312947630863583639493352724797246481908204438906959836128414555435820965926120942088701243305557552109069320439778334067291426384314553957865635342040420363203006023519783042419701725369
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							aa6a7e7712f422bf5af72da3483836e14be1f44f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bd979ddfa1d81b2599e30c0406896412d76524c7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (89 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-r1.certainly.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://int-r1.certainly.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (11 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ufc.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b00000190259797700000040300473045022014b35fca36f41df12d3aa1af9fa26c899236d93884beb197b937c0ca3f91e83b022100f9ca9a7ac98c498cc07c501fa1a5b62cc376fbae59442842c8a2659c387bd09800760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d88473000001902597974200000403004730450220719e4f948196a02820c0ab1044bf07b3db0656b2fcc8948d476a8211faa22bfa0221009ffbf5a555d3e84865b438d40b3f1b6f5cb070853a6e4b485028c43fd27a0345
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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