www.freshcolony.com

Issued by GlobalSign Domain Validation CA - SHA256 - G3

About this certificate


This digital certificate with serial number 4b:96:b2:3d:64:59:9f:71:94:6b:60:5f was issued on by GlobalSign nv-sa .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

www.freshcolony.com

Organization unit: Domain Control Validated

GlobalSign nv-sa

Organization: GlobalSign nv-sa

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 4b:96:b2:3d:64:59:9f:71:94:6b:60:5f
Serial Number (int): 23393556323259399810585419871
Serial Number lenght: 95 bits, 12 octets

SubjectKeyId: bf:8c:66:f5:32:12:be:4b:0b:80:c0:56:a3:a6:5e:8b:a5:ee:95:53
AuthorityKeyId: 3d:80:82:79:c5:48:82:a3:c3:12:ee:df:99:0f:57:35:48:9e:d0:cb

Fingerprint (sha1): 62:c0:81:31:de:24:41:1c:9d:16:a5:7a:9a:d7:41:01:de:86:99:c9
Fingerprint (sha256): a5:a1:47:3d:e6:cf:29:21:bd:95:98:0b:86:aa:19:2d:15:17:7a:63:d7:43:a9:cd:0d:9a:dd:f4:2b:a8:d6:88

Issuing Certificate URL: http://secure.globalsign.com/cacert/gsdomainvalsha2g3.crt

Revocation information

OCSP Server: http://ocsp2.globalsign.com/gsdomainvalsha2g3
CRL Distribution Point: http://crl.globalsign.com/gsdomainvalsha2g3.crl

Check the revocation status for the current certificate on www.freshcolony.com
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

www.freshcolony.com
freshcolony.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIE+jCCA+KgAwIBAgIMS5ayPWRZn3GUa2BfMA0GCSqGSIb3DQEBCwUAMGAxCzAJ BgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTYwNAYDVQQDEy1H bG9iYWxTaWduIERvbWFpbiBWYWxpZGF0aW9uIENBIC0gU0hBMjU2IC0gRzMwHhcN MTUxMjMwMTExMjA0WhcNMTYxMjMwMTExMjA0WjBBMSEwHwYDVQQLExhEb21haW4g Q29udHJvbCBWYWxpZGF0ZWQxHDAaBgNVBAMTE3d3dy5mcmVzaGNvbG9ueS5jb20w ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDu5HgpkHyy8VBWxSey0WxZ 2Z4JsQ0SGh2O0FbiYzWpQos6XYJbsZN0gUXzEK2uJpN89Dzxw43JdNjX0A3Rv+vf 0gCmfpy+ZeR4hjmpWM3gLGWbDRaS1/JAf+P0jbVFXBuztFiK6LNFZZNiyGIcdwh/ 1uPMu6eaGJ9ThIg2zsIkWm83tOczn/B+uewzw2PK8Oxitjo0G7DE9gCfHZ8/qeSk Hcn4FPlBU6X6pmiy5WbjekUqOPUH7K3w9tWK3UBFgOmaIKaD393hVw04vxJhxhcl eB8zzrJOb5zHMKG18rXEYPYpdRVD8Eb/fOxvvaiMEj1P5DqtKGPxZSHSr75Dmxw/ AgMBAAGjggHRMIIBzTAOBgNVHQ8BAf8EBAMCBaAwgZIGCCsGAQUFBwEBBIGFMIGC MEUGCCsGAQUFBzAChjlodHRwOi8vc2VjdXJlLmdsb2JhbHNpZ24uY29tL2NhY2Vy dC9nc2RvbWFpbnZhbHNoYTJnMy5jcnQwOQYIKwYBBQUHMAGGLWh0dHA6Ly9vY3Nw Mi5nbG9iYWxzaWduLmNvbS9nc2RvbWFpbnZhbHNoYTJnMzBJBgNVHSAEQjBAMD4G BmeBDAECATA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5nbG9iYWxzaWduLmNv bS9yZXBvc2l0b3J5LzAJBgNVHRMEAjAAMEAGA1UdHwQ5MDcwNaAzoDGGL2h0dHA6 Ly9jcmwuZ2xvYmFsc2lnbi5jb20vZ3Nkb21haW52YWxzaGEyZzMuY3JsMC8GA1Ud EQQoMCaCE3d3dy5mcmVzaGNvbG9ueS5jb22CD2ZyZXNoY29sb255LmNvbTAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHQYDVR0OBBYEFL+MZvUyEr5LC4DA VqOmXoul7pVTMB8GA1UdIwQYMBaAFD2AgnnFSIKjwxLu35kPVzVIntDLMA0GCSqG SIb3DQEBCwUAA4IBAQCxi1S02IlNfndrjGZ/afz5bUAWyKaOvBxhukexD9RFIKFo Y9droW75J81UikMDUEVahkQw5Ik2AkQ6rb/m9I0ORxGpd/3TF0Iq8iYFq7d+CdJR kqQDxTv396RmDCtNxzDSEm86ncSQArX0w3xAW4QaDmncJcbEezVcdjvLXs9AkNbK ORHeSC6LnjqHCo5VT8vtrXraaw4MFXIQIHKlDETyB04LNH4XRiB1C7tfKbwIYDRE cC7TV1luGhrqsmoWX1hQAq18mgXe19j2ws72+BdAfcdnsuCPUvjnsBfpjeSnZcy7 nVDhSOsaAzLW1wy6vlt+GKc6ye615UkT/izLHAl5 -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7uR4KZB8svFQVsUnstFs WdmeCbENEhodjtBW4mM1qUKLOl2CW7GTdIFF8xCtriaTfPQ88cONyXTY19AN0b/r 39IApn6cvmXkeIY5qVjN4Cxlmw0WktfyQH/j9I21RVwbs7RYiuizRWWTYshiHHcI f9bjzLunmhifU4SINs7CJFpvN7TnM5/wfrnsM8NjyvDsYrY6NBuwxPYAnx2fP6nk pB3J+BT5QVOl+qZosuVm43pFKjj1B+yt8PbVit1ARYDpmiCmg9/d4VcNOL8SYcYX JXgfM86yTm+cxzChtfK1xGD2KXUVQ/BG/3zsb72ojBI9T+Q6rShj8WUh0q++Q5sc PwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 23393556323259399810585419871 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Domain Validation CA - SHA256 - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-12-30 11:12:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-30 11:12:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.freshcolony.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30157379034269146592435944112192075881377196024291808212271727768631768182950409030387480244032417336723153198805800117175704480811787775966327919405386364509377054761319398313291267831378223988945416138938885850134358991217204829126891615973847140417315304234514499127456910930187556733339977583670909576901426659975623959950490968639406407215198113479297121480656245471246566037796995809407679891045808445122359582369800339482166626500329299200891747663077204988199642842157934256640772409577065687742820181231149550648371098595333063180333619810437865246070504321490657581174464443673798609590075119698117327002687 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsdomainvalsha2g3.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsdomainvalsha2g3' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gsdomainvalsha2g3.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.freshcolony.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freshcolony.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bf8c66f53212be4b0b80c056a3a65e8ba5ee9553 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3d808279c54882a3c312eedf990f5735489ed0cb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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