www.heirloomology.com

Issued by GlobalSign Domain Validation CA - SHA256 - G3

About this certificate


This digital certificate with serial number 3f:60:85:db:eb:66:d5:a9:42:e9:42:9c was issued on by GlobalSign nv-sa .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

www.heirloomology.com

Organization unit: Domain Control Validated

GlobalSign nv-sa

Organization: GlobalSign nv-sa

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 3f:60:85:db:eb:66:d5:a9:42:e9:42:9c
Serial Number (int): 19614244628969397505124549276
Serial Number lenght: 94 bits, 12 octets

SubjectKeyId: e2:ca:ca:1f:22:9e:ca:61:5f:c7:79:b5:96:59:71:be:46:d1:4d:f4
AuthorityKeyId: 3d:80:82:79:c5:48:82:a3:c3:12:ee:df:99:0f:57:35:48:9e:d0:cb

Fingerprint (sha1): a1:da:6c:66:00:37:d9:b5:23:c5:2e:16:1a:42:79:35:4d:94:99:43
Fingerprint (sha256): 40:9c:a5:c2:8d:a6:80:0b:a4:61:7b:21:4c:57:86:1f:f1:08:26:e6:8b:93:fd:c3:65:16:34:82:46:75:7f:90

Issuing Certificate URL: http://secure.globalsign.com/cacert/gsdomainvalsha2g3.crt

Revocation information

OCSP Server: http://ocsp2.globalsign.com/gsdomainvalsha2g3
CRL Distribution Point: http://crl.globalsign.com/gsdomainvalsha2g3.crl

Check the revocation status for the current certificate on www.heirloomology.com
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

www.heirloomology.com
heirloomology.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFADCCA+igAwIBAgIMP2CF2+tm1alC6UKcMA0GCSqGSIb3DQEBCwUAMGAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTYwNAYDVQQDEy1H bG9iYWxTaWduIERvbWFpbiBWYWxpZGF0aW9uIENBIC0gU0hBMjU2IC0gRzMwHhcN MTUxMjE0MjAxNDMwWhcNMTYxMjE0MjAxNDMwWjBDMSEwHwYDVQQLExhEb21haW4g Q29udHJvbCBWYWxpZGF0ZWQxHjAcBgNVBAMTFXd3dy5oZWlybG9vbW9sb2d5LmNv bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPgixTDO41rCDfmGj4Vk wuzNKkO2xb8sh+CJ1p499h3X+4NIZJcNCU0aYGt7HvPYa+Jmwu/KvEZwk1/jUIJG gRxu/QxC6ttCCYCGP5fZcC7EGBUEOSyfiWDBEIVxV6FpE6BXlbhtHfew9YMno7uV LTTGBy9F6PGF2JFCYnSdL+4oneyTrhQzs8G8NrI9Orz3L8WK1IqSaTc53iuWhhNC E0hyAi45KPstp0rMWsCoJlCddpQUX7iPiBTzZ0P2zJBeuIy6kZ27joOCUju9mCGg E44aR3LEt/XjLfgGbjQiqRMWaKJOKI41VhJmbvDOc1u3Z0tTPZtcCgXzyTQ4DTuA 9Y8CAwEAAaOCAdUwggHRMA4GA1UdDwEB/wQEAwIFoDCBkgYIKwYBBQUHAQEEgYUw gYIwRQYIKwYBBQUHMAKGOWh0dHA6Ly9zZWN1cmUuZ2xvYmFsc2lnbi5jb20vY2Fj ZXJ0L2dzZG9tYWludmFsc2hhMmczLmNydDA5BggrBgEFBQcwAYYtaHR0cDovL29j c3AyLmdsb2JhbHNpZ24uY29tL2dzZG9tYWludmFsc2hhMmczMEkGA1UdIARCMEAw PgYGZ4EMAQIBMDQwMgYIKwYBBQUHAgEWJmh0dHBzOi8vd3d3Lmdsb2JhbHNpZ24u Y29tL3JlcG9zaXRvcnkvMAkGA1UdEwQCMAAwQAYDVR0fBDkwNzA1oDOgMYYvaHR0 cDovL2NybC5nbG9iYWxzaWduLmNvbS9nc2RvbWFpbnZhbHNoYTJnMy5jcmwwMwYD VR0RBCwwKoIVd3d3LmhlaXJsb29tb2xvZ3kuY29tghFoZWlybG9vbW9sb2d5LmNv bTAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHQYDVR0OBBYEFOLKyh8i nsphX8d5tZZZcb5G0U30MB8GA1UdIwQYMBaAFD2AgnnFSIKjwxLu35kPVzVIntDL MA0GCSqGSIb3DQEBCwUAA4IBAQBXzBFLFTggw0/2JSNBRayLhEGzcAAP8+iNGyDT EgkjmEZyQDGOSmtXOk9WeKrLCIFyQgwnI6+btWdJBRIAr0ZtoV/2Mr711fp32KX8 k6/OvceKThxfvdFqQ1veSw9hZteyCyKTJFWR+U63lUofAclriq5TRmq6jV6mimmL SizwntJXcQr8mPKsF2k6U5V4CkRUOwPP8w6oPph0zZvzciKBQUPmYdt3qlDYUjmU wYDDhI38Av4lIxwIP2HlfwINHoszYO4PpRzONPcRh7vsF64eGAJop8ib7QzU6O1N 4968v3EyJXZseoFStke5uqddLDp/91ucQGUXJHyjrpCBUJqB -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA+CLFMM7jWsIN+YaPhWTC 7M0qQ7bFvyyH4InWnj32Hdf7g0hklw0JTRpga3se89hr4mbC78q8RnCTX+NQgkaB HG79DELq20IJgIY/l9lwLsQYFQQ5LJ+JYMEQhXFXoWkToFeVuG0d97D1gyeju5Ut NMYHL0Xo8YXYkUJidJ0v7iid7JOuFDOzwbw2sj06vPcvxYrUipJpNzneK5aGE0IT SHICLjko+y2nSsxawKgmUJ12lBRfuI+IFPNnQ/bMkF64jLqRnbuOg4JSO72YIaAT jhpHcsS39eMt+AZuNCKpExZook4ojjVWEmZu8M5zW7dnS1M9m1wKBfPJNDgNO4D1 jwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 19614244628969397505124549276 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Domain Validation CA - SHA256 - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-12-14 20:14:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-14 20:14:30 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.heirloomology.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 31324245493714831540066853450957701592057546509679305540360650861365596371875451124206754874833011350067728727982216495744591099122348509134298848647887977594374066434703947627782934594244971743120101177993883325145864504819849733103693599566936243700822468107668334771688462416692373396124783313970551873169251402376628773877617847262879523698321978342717207524684812137927442908759913631666339630079466168367176745343429577443862864492379886457009493012108379652110466217393423361477922758460761171823795203366004794990345150015418775669148440869740680152910214311269588109832944526124601039567605532478119857943951 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsdomainvalsha2g3.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsdomainvalsha2g3' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsdomainvalsha2g3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.heirloomology.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'heirloomology.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e2caca1f229eca615fc779b5965971be46d14df4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3d808279c54882a3c312eedf990f5735489ed0cb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0057cc114b153820c34ff625234145ac8b8441b370000ff3e88d1b20d312092398467240318e4a6b573a4f5678aacb088172420c2723af9bb56749051200af466da15ff632bef5d5fa77d8a5fc93afcebdc78a4e1c5fbdd16a435bde4b0f6166d7b20b2293245591f94eb7954a1f01c96b8aae53466aba8d5ea68a698b4a2cf09ed257710afc98f2ac17693a5395780a44543b03cff30ea83e9874cd9bf37222814143e661db77aa50d8523994c180c3848dfc02fe25231c083f61e57f020d1e8b3360ee0fa51cce34f71187bbec17ae1e180268a7c89bed0cd4e8ed4de3debcbf713225766c7a8152b647b9baa75d2c3a7ff75b9c406517247ca3ae9081509a81