www.kleine-maat-schoenen.nl

Issued by Sectigo RSA Domain Validation Secure Server CA

About this certificate

This digital certificate with serial number 82:64:f0:e9:ed:a0:16:fd:62:fb:d9:04:92:8a:30:48 was issued on by Sectigo Limited.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.kleine-maat-schoenen.nl,OU=Domain Control Validated+OU=PositiveSSL

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate has expire since

Certificate Details

Serial Number (hex): 82:64:f0:e9:ed:a0:16:fd:62:fb:d9:04:92:8a:30:48
Serial Number (int): 173323755449900772489858902890386174024
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: b2:8e:c7:f5:35:51:c7:77:15:78:e8:43:3a:db:5b:91:42:ac:bf:32
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1

Fingerprint (sha1): 8a:f5:10:f0:f9:b6:18:92:33:d2:ec:57:c7:34:14:60:7a:54:f8:9a
Fingerprint (sha256): 3c:cf:49:55:de:aa:da:2e:04:05:85:bc:7a:19:73:e4:63:e7:e4:f0:68:4a:fc:c2:10:5d:43:b9:96:89:16:0a

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.sectigo.com

Check the revocation status for certificate www.kleine-maat-schoenen.nl

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.kleine-maat-schoenen.nl

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.kleine-maat-schoenen.nl
kleine-maat-schoenen.nl

Other certificates including the domain name kleine-maat-schoenen.nl

(limited to 100 certificates)
en.kleine-maat-schoenen.nl
fr.kleine-maat-schoenen.nl
fr.kleine-maat-schoenen.nl
en.kleine-maat-schoenen.nl
kleine-maat-schoenen.nl
es.kleine-maat-schoenen.nl
en.kleine-maat-schoenen.nl
es.kleine-maat-schoenen.nl
www.kleine-maat-schoenen.nl
kleine-maat-schoenen.nl
kleine-maat-schoenen.nl
es.kleine-maat-schoenen.nl
de.kleine-maat-schoenen.nl
pt.kleine-maat-schoenen.nl
de.kleine-maat-schoenen.nl
kleine-maat-schoenen.nl
de.kleine-maat-schoenen.nl
fr.kleine-maat-schoenen.nl
kleine-maat-schoenen.nl
kleine-maat-schoenen.nl
it.kleine-maat-schoenen.nl

Certificate

The complete raw certificate details for www.kleine-maat-schoenen.nl in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApMOOl0ZVKkLXROq+wmTs
8sYbAHRyO/Aztmfgx035br4I2q37Jxlyq9Sj2i1m9xViBuKIgnGeiFIxHfXK83hd
0tUdow2EXeJ/T4362klj2D/Xyy+0woQJT7kVDRFjzNeDutWk3OV37de/+Xll0Ipx
cnnF+7UWUGxmo5jnMYSWH7w6t5ReYuChRnsj+DlxDBVBoKJmyeRgKomhcA1jbyhw
Vdfnl2lsyQT9cDnNGv4JltYI6VG+bklTcwLl9ShbYq0Snyr5DLcrR8oNAA5U/nZ7
VZNyj9lttUWR76MJqjNwaw6OTN4vaQQSku1yMvJglKFsACvyrpKAK9s7VRpZdtjW
t6cREdgR3s5Ao59Y0bJupunnDJI1w0pySKYBQlbEXXgsQBhKDu0eoJUFVLxH+Awl
NMuIsPSHq8/+Bm7kbhBmpG9ToKzR/r1spiOQ/6aY3H++BmqGB/nsEjBqv8GOjbzo
BCdwRS+Ciu9j4wZdJhonrLj93q89ENuA66Cx+8SOeRCUUr/XwtvT/MoxWmq3VYLh
2e1MSE/UeiuLdZepOVKHQ3TUH12h5Z5W9YvV3Sc/Viv8ce8DqO9sIxgg98jD+NzM
N0GkgFwfSThsmLWbW9r3U6dzpaagsVRlhjirx690FE0pHbmAVuveh5Mnt3CT4Mcv
B9XYqNU5SIKRPIZWBwGMv30CAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 173323755449900772489858902890386174024
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-27 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-27 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PositiveSSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.kleine-maat-schoenen.nl'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 672178044880887045193653107292540602591705958427825761706167971932342447955490128608992585521951880599081133561839669540268788898126962424149822668127230998087829133871224124136747052685916305421819447648631094960007431580112678141891508959293134116873216186402370880548429969874806389254075583549928157070840863907967639837114314229001186002754716783543248742181796405470167509489211796328144404778110107202118581427782090522179160496852120080487790759422149520115087964471684046894752325050594984095105176249099946592126490304895416824558016397605205117459160951061396371541066527451878447249650023537844584604313908994214892959318892597979776398928057627245905503878105851372925315218837846508117481243282054884455652375774093979403811124545839748874245304756160514418361426429140926672309570562337450734991542563736802612402627286574392254169466006082713789909890108377533080024051558200484275778277102033882235202301250859855249959483040867857514106544528414220649232522507112230625312111115402933771021880957036715426207956116899567801954956719083820880477922450476898503844377843578704119253933293015430740588711979789284979289594856771219656041804036776322648219705950764762189248979855847623138091345888060351868591334539133
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							b28ec7f53551c7771578e8433adb5b9142acbf32
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kleine-maat-schoenen.nl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kleine-maat-schoenen.nl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007700bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed185000001688f75912f000004030048304602210083701a53b798872fb0ed72f97f6c3bc761e3676f5bd07ad73d96af9ef4c060be022100a272ff94ee7c0b5bb99ea138c4783f60c62281a8924050dac546a99d37b1ecbd0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a112128418759681714558000001688f759166000004030046304402206f1b618280dd79547a8cf09bb2ad0e6e93ff7957677ab59a72f9b332675acfc902200c58178e76fae3f1a5c190e4ae82650be1e50a03ab2c9a5e04322c5c05839ad5
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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