www.venacava.com
Issued by GlobalSign Domain Validation CA - SHA256 - G3
About this certificate
This digital certificate with serial number 51:8e:ac:bd:91:ce:9e:77:34:98:f8:32 was issued on by GlobalSign nv-sa.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.venacava.com,OU=Domain Control Validated
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 51:8e:ac:bd:91:ce:9e:77:34:98:f8:32Serial Number (int): 25240769005890420635120236594
Serial Number lenght: 95 bits, 12 octets
SubjectKeyId: f6:d6:fb:da:c0:ea:fd:8d:61:72:9e:22:a2:00:17:a7:44:0f:05:d1
AuthorityKeyId: 3d:80:82:79:c5:48:82:a3:c3:12:ee:df:99:0f:57:35:48:9e:d0:cb
Fingerprint (sha1): 19:89:3b:d8:7e:85:92:e1:91:f4:69:11:1b:4e:74:af:e6:70:f5:9f
Fingerprint (sha256): 3c:d7:b9:8f:3a:cd:67:60:d6:9a:d7:38:63:3e:8c:ef:59:3d:9a:95:cb:69:1e:57:87:da:9e:ac:02:23:ec:54
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsdomainvalsha2g3.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsdomainvalsha2g3CRL Distribution Point: http://crl.globalsign.com/gsdomainvalsha2g3.crl
Check the revocation status for certificate www.venacava.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.venacava.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.venacava.com
venacava.com
venacava.com
Other certificates including the domain name venacava.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.venacava.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8TCCA9mgAwIBAgIMUY6svZHOnnc0mPgyMA0GCSqGSIb3DQEBCwUAMGAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTYwNAYDVQQDEy1H bG9iYWxTaWduIERvbWFpbiBWYWxpZGF0aW9uIENBIC0gU0hBMjU2IC0gRzMwHhcN MTUxMTEzMjM1NzIxWhcNMTYxMTEzMjM1NzIxWjA+MSEwHwYDVQQLExhEb21haW4g Q29udHJvbCBWYWxpZGF0ZWQxGTAXBgNVBAMTEHd3dy52ZW5hY2F2YS5jb20wggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDcEgAfeyh1i1ImKE5qX4qmMxp6 ShiHR1ipMp+0erLcXKDuseNrKzfTG2CPRXIIWaHI6HRLpYUZng8G0lpjdB2DPDKn 2BsNvqAAsfDG02Db+sISAEcxHcHOwQxnemlTRXrbnuMde2XaXulDQITsKCtT9VWR aRb3/8NubMHiPE/EA8+mxg4y/VEl0Y0n7W9QjVfKcNC57QabZs2zUIUto3jlVBlr Gin4yV2Uwjj+r3N7UFkZp1whHrut0rfxnETA36SUZEu+mwfmqe6mvxpD7YTfWCTA aGBocwhH4DpM0kq4tfFinAARLscTTpkjxNfanZVwSZNbV94/AOof7eUXhtYJAgMB AAGjggHLMIIBxzAOBgNVHQ8BAf8EBAMCBaAwgZIGCCsGAQUFBwEBBIGFMIGCMEUG CCsGAQUFBzAChjlodHRwOi8vc2VjdXJlLmdsb2JhbHNpZ24uY29tL2NhY2VydC9n c2RvbWFpbnZhbHNoYTJnMy5jcnQwOQYIKwYBBQUHMAGGLWh0dHA6Ly9vY3NwMi5n bG9iYWxzaWduLmNvbS9nc2RvbWFpbnZhbHNoYTJnMzBJBgNVHSAEQjBAMD4GBmeB DAECATA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxzaWduLmNvbS9y ZXBvc2l0b3J5LzAJBgNVHRMEAjAAMEAGA1UdHwQ5MDcwNaAzoDGGL2h0dHA6Ly9j cmwuZ2xvYmFsc2lnbi5jb20vZ3Nkb21haW52YWxzaGEyZzMuY3JsMCkGA1UdEQQi MCCCEHd3dy52ZW5hY2F2YS5jb22CDHZlbmFjYXZhLmNvbTAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwHQYDVR0OBBYEFPbW+9rA6v2NYXKeIqIAF6dEDwXR MB8GA1UdIwQYMBaAFD2AgnnFSIKjwxLu35kPVzVIntDLMA0GCSqGSIb3DQEBCwUA A4IBAQAfrCpUnr32mi71GOC5qNaVGZLXXac+nYyuLTccB9KD1pfv8xwQ/K6GBITL irLXfny2rpPNCf3s26iWzwIt16GlCLH9qgmAyQIEN3yrFsYQNHZW/W7xyYPRalcp +jLddcXgJ7AwfSQjjK4U8R6979vf083fXjm59Dr6JuAWyNpSosrXm8oGkb1gsW7D 3rwKIghry+F+ALK2ftWzhoWOY3tL5QW3cgKRWgjMgCWd2HOGOs3b3drs9Xp2d7Cq 3EJm7DcBYVUkqAKFCt6tzWDnlbfd7fix/2PUef+8X7apWG9F41mqsljcQeGs1wyj r65XURUE0Cq8BhWXh10K4SGJsRXF -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3BIAH3sodYtSJihOal+K pjMaekoYh0dYqTKftHqy3Fyg7rHjays30xtgj0VyCFmhyOh0S6WFGZ4PBtJaY3Qd gzwyp9gbDb6gALHwxtNg2/rCEgBHMR3BzsEMZ3ppU0V6257jHXtl2l7pQ0CE7Cgr U/VVkWkW9//DbmzB4jxPxAPPpsYOMv1RJdGNJ+1vUI1XynDQue0Gm2bNs1CFLaN4 5VQZaxop+MldlMI4/q9ze1BZGadcIR67rdK38ZxEwN+klGRLvpsH5qnupr8aQ+2E 31gkwGhgaHMIR+A6TNJKuLXxYpwAES7HE06ZI8TX2p2VcEmTW1fePwDqH+3lF4bW CQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 25240769005890420635120236594 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Domain Validation CA - SHA256 - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-11-13 23:57:21 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-13 23:57:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.venacava.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27781303460226771130258882442416427305227525824740718509343510986884552401154656331662151229466466947649055983167550949197700906130773646442643975512221218221781474340823163569490592417846190138824686027420011478078011907722977659557596803736273667161636775786679279918443521371453203325459365216381843187594861692102853463690846568488234343357254355115079079772583021532995577219958255126449910933602957406244984443481759778218038973027007293104118864098614493519054118319326636017090070942812944559787085396453559712386874214765610296149592496064515719914913965554074920830359238403838726904096195520940994839631369 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsdomainvalsha2g3.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsdomainvalsha2g3' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsdomainvalsha2g3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.venacava.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'venacava.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f6d6fbdac0eafd8d61729e22a20017a7440f05d1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3d808279c54882a3c312eedf990f5735489ed0cb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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