www.castletonfestival.org

Issued by USERTrust Secure Server CA

About this certificate


This digital certificate with serial number 2c:86:05:f4:a5:11:88:f7:9b:f7:9d:ba:47:56:7d:a9 was issued on by The USERTRUST Network .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

www.castletonfestival.org

Organization unit: Domain Control Validated
Organization unit: Hosted by pair Networks, Inc.
Organization unit: COMODO SSL

The USERTRUST Network

Organization: The USERTRUST Network

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 2c:86:05:f4:a5:11:88:f7:9b:f7:9d:ba:47:56:7d:a9
Serial Number (int): 59181920388385862217722556053510847913
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: 7f:04:f5:ae:c5:54:a3:1e:7a:82:8c:c1:28:a8:f2:39:57:45:a0:07
AuthorityKeyId: 24:c5:9d:2d:59:f6:12:f0:17:24:24:0b:94:da:d9:6b:f0:5b:c0:20

Fingerprint (sha1): 8c:80:6d:9d:eb:2c:5b:30:41:a7:d5:4e:d3:0c:81:3e:20:97:06:9b
Fingerprint (sha256): 19:33:59:9d:55:19:33:ef:76:51:5b:7d:f8:92:41:50:ce:fc:b6:70:c2:6f:b4:05:35:17:2c:67:1c:32:de:41

Issuing Certificate URL: http://crt.usertrust.com/USERTrustSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.usertrust.com
CRL Distribution Point: http://crl.usertrust.com/USERTrustSecureServerCA.crl

Check the revocation status for the current certificate on www.castletonfestival.org
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

www.castletonfestival.org
castletonfestival.org

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIQLIYF9KURiPeb9526R1Z9qTANBgkqhkiG9w0BAQUFADB9 MQswCQYDVQQGEwJVUzETMBEGA1UECBMKTmV3IEplcnNleTEUMBIGA1UEBxMLSmVy c2V5IENpdHkxHjAcBgNVBAoTFVRoZSBVU0VSVFJVU1QgTmV0d29yazEjMCEGA1UE AxMaVVNFUlRydXN0IFNlY3VyZSBTZXJ2ZXIgQ0EwHhcNMTMwNTE4MDAwMDAwWhcN MTQwNTE4MjM1OTU5WjCBhDEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRh dGVkMSYwJAYDVQQLEx1Ib3N0ZWQgYnkgcGFpciBOZXR3b3JrcywgSW5jLjETMBEG A1UECxMKQ09NT0RPIFNTTDEiMCAGA1UEAxMZd3d3LmNhc3RsZXRvbmZlc3RpdmFs Lm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKMkVJgFsZMpoGaC QX9B9iESCfkfT0+6vSUzdOm11R6XuVJk2D7UL79bgesl+yvRBg3sLWOPwpQRxbIn O3ZamDR6JDQtbRsVJqjjQ4DyaQ8pk41NRd5mMCkwgXgqsQ85Ij+LtpXjbXHL3zjP NUayJHMd+qNpCX6gYaY8LUrR5/ADTBbVfjZBB7hB0OFiQfSbQoTrHkvb6/dYdBjK 5RqHaQpdgIJqNpVNH/W/++QlMnS1zbmR/DU/PS4i8nYj5vJ32IYbHiSIbn1xet4s AWr1LBLnX6geE4NH2IK4qVcqn44GSqBAV3K1DQCtUDASlxLks+K8gSGvH5vhcbpM 6xCKtNkCAwEAAaOCAcwwggHIMB8GA1UdIwQYMBaAFCTFnS1Z9hLwFyQkC5Ta2Wvw W8AgMB0GA1UdDgQWBBR/BPWuxVSjHnqCjMEoqPI5V0WgBzAOBgNVHQ8BAf8EBAMC BaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw TAYDVR0gBEUwQzA3BgwrBgEEAbIxAQIBAwQwJzAlBggrBgEFBQcCARYZaHR0cHM6 Ly9jcHMudXNlcnRydXN0LmNvbTAIBgZngQwBAgEwRQYDVR0fBD4wPDA6oDigNoY0 aHR0cDovL2NybC51c2VydHJ1c3QuY29tL1VTRVJUcnVzdFNlY3VyZVNlcnZlckNB LmNybDB3BggrBgEFBQcBAQRrMGkwQAYIKwYBBQUHMAKGNGh0dHA6Ly9jcnQudXNl cnRydXN0LmNvbS9VU0VSVHJ1c3RTZWN1cmVTZXJ2ZXJDQS5jcnQwJQYIKwYBBQUH MAGGGWh0dHA6Ly9vY3NwLnVzZXJ0cnVzdC5jb20wOwYDVR0RBDQwMoIZd3d3LmNh c3RsZXRvbmZlc3RpdmFsLm9yZ4IVY2FzdGxldG9uZmVzdGl2YWwub3JnMA0GCSqG SIb3DQEBBQUAA4IBAQA5598WsAKjR0nHCxzGYUZ/F7B2awHM427Ormq0fQCOCcaP Kp36/EoLWv3vCc/8ZlJ5aciqYd04BpSIKL2gHTQOk7d6ph1frpZvUO9hQGGene1g RI6l69O19fINHkTG+ETEvOF4ynmkdPIGdKCu+JaxcUZt+dYd9fbuX2V/09uDVqad zejOp2ir2GMKiL512JByNLARF0vBNjD3ajMwMHZl/GlEENDzPRv0Kt7pwIQiodeh 0o5snir5+UqJ15vzhhnRKnHAA0SyDf11mHX3go509ufTuo1pPKX9HRhLujkDrFQk W4Bz8J8NpHPq4cpAfre/qRqVJB1vwJrqiZPt6fYk -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoyRUmAWxkymgZoJBf0H2 IRIJ+R9PT7q9JTN06bXVHpe5UmTYPtQvv1uB6yX7K9EGDewtY4/ClBHFsic7dlqY NHokNC1tGxUmqONDgPJpDymTjU1F3mYwKTCBeCqxDzkiP4u2leNtccvfOM81RrIk cx36o2kJfqBhpjwtStHn8ANMFtV+NkEHuEHQ4WJB9JtChOseS9vr91h0GMrlGodp Cl2Agmo2lU0f9b/75CUydLXNuZH8NT89LiLydiPm8nfYhhseJIhufXF63iwBavUs EudfqB4Tg0fYgripVyqfjgZKoEBXcrUNAK1QMBKXEuSz4ryBIa8fm+FxukzrEIq0 2QIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 59181920388385862217722556053510847913 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Jersey' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Jersey City' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'The USERTRUST Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'USERTrust Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-05-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-05-18 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hosted by pair Networks, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.castletonfestival.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20594758919445968507373170465155285644192216072292477194320276590381371950602858415671788971908682725237443132090310622353295449360129791817350376054654488456354995736486029899154275470720120101258926594934645211900641310140668741062697021324829390216117210458324825167772077084623915166853687826648105647027004734143288321670874601575087821495045665541379076809248959356424443653160387034619614512012047556886252843460010197330027890278284539253650268314858366858138614903750276202324736397452757088567039824869365312492213637974848174450984669930328626747330918102521233993516822726192885557782506124251835457516761 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 24c59d2d59f612f01724240b94dad96bf05bc020 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7f04f5aec554a31e7a828cc128a8f2395745a007 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.1.3.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://cps.usertrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (62 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.usertrust.com/USERTrustSecureServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (107 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.usertrust.com/USERTrustSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.usertrust.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.castletonfestival.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'castletonfestival.org' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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