www.brandywinemuseumshop.org

Issued by SecureTrust CA

About this certificate


This digital certificate with serial number cd:8e:7e:35:44:61:50:3b:3c:74:47:79:a7:ad:ed:02 was issued on by SecureTrust Corporation .

While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

Cerificate errors/warnings *beta

  • ERROR: Certificate contains no Authority Info Access Issuers
  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • ERROR: Certificate [key too small: 1024]
  • ERROR: Certificate doesn't contain any subjectAltName
  • ERROR: Certificate CN is not listed in subjectAltName

Brandywine River Museum

Organization: Brandywine River Museum
State / Province: PA
Locality: Chadds Ford
Country: US

SecureTrust Corporation

Organization: SecureTrust Corporation
State / Province: PA
Locality: Chadds Ford
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): cd:8e:7e:35:44:61:50:3b:3c:74:47:79:a7:ad:ed:02
Serial Number (int): 273231605093684998189401886598827470082
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: ba:51:90:d5:6a:55:51:cd:16:04:e6:f7:f4:2b:f0:3f:a5:73:e2:1b
AuthorityKeyId: 42:32:b6:16:fa:04:fd:fe:5d:4b:7a:c3:fd:f7:4c:40:1d:5a:43:af

Fingerprint (sha1): c1:88:66:46:8f:02:9a:3f:44:24:4a:83:a7:a3:cd:e3:4a:72:f2:e3
Fingerprint (sha256): cf:4d:46:fe:97:26:34:b1:b6:62:3a:f5:fc:f6:c5:f7:45:d0:2e:40:d7:ce:9e:cf:33:c3:d8:ac:f1:f9:95:97


Revocation information

CRL Distribution Point: http://crl.securetrust.com/STCA.crl

Check the revocation status for the current certificate on www.brandywinemuseumshop.org
0
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

1024

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

7 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names (DNS Name).

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIDtTCCAp2gAwIBAgIRAM2OfjVEYVA7PHRHeaet7QIwDQYJKoZIhvcNAQEFBQAw SDELMAkGA1UEBhMCVVMxIDAeBgNVBAoTF1NlY3VyZVRydXN0IENvcnBvcmF0aW9u MRcwFQYDVQQDEw5TZWN1cmVUcnVzdCBDQTAeFw0xMjA0MDQxNzIzMTRaFw0xMzA1 MDgxODQxNTdaMHkxJTAjBgNVBAMTHHd3dy5icmFuZHl3aW5lbXVzZXVtc2hvcC5v cmcxFDASBgNVBAcTC0NoYWRkcyBGb3JkMQswCQYDVQQIEwJQQTELMAkGA1UEBhMC VVMxIDAeBgNVBAoTF0JyYW5keXdpbmUgUml2ZXIgTXVzZXVtMIGfMA0GCSqGSIb3 DQEBAQUAA4GNADCBiQKBgQDq0+86L/qILBuKfor1Wj4sZvJ8IeS0gkeME/Qhvseb o05yZBafXfJYZrMRlPV88WUBd7ZBGnR45nkfWKqz4rqtfJLv9dK3gH79d8gCf7Nd ud/MHpDL/S2JUQrw4x1KxMxoWv7VV1COmWmJqayJeWVRIPPXQS6CfUq3J79i+cOK 9QIDAQABo4HsMIHpMAkGA1UdEwQCMAAwHQYDVR0OBBYEFLpRkNVqVVHNFgTm9/Qr 8D+lc+IbMB8GA1UdIwQYMBaAFEIythb6BP3+XUt6w/33TEAdWkOvMAsGA1UdDwQE AwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATA0BgNVHR8ELTArMCmgJ6AlhiNodHRw Oi8vY3JsLnNlY3VyZXRydXN0LmNvbS9TVENBLmNybDBEBgNVHSAEPTA7MDkGDGCG SAGG/WQBAQIDATApMCcGCCsGAQUFBwIBFhtodHRwOi8vc3NsLnRydXN0d2F2ZS5j b20vQ0EwDQYJKoZIhvcNAQEFBQADggEBAAuWkpvfwdOuXHIpBGlttYdlaVdpr4Gc Xk806RGeKq7nUyCDGPgv+RL5xxZCdPGW81C3c5pAGqHhOGWPiudB/Ab1G2HA9Bvp q3lQZBzqmCtmgwxL2qfGrBzoZa7/5A9d9fBuuWV17HlVTP75tZG+2cAy8TZjty3W F8aWn/9KhgssOKJT9U/67/1wzXw4LwWrwTsjoZpSoeuWyje4z34BAmNgjdR5O0ss PvsltifUA3CEcYv54TbGfuFMNEJPnM0OqAsqknXGsUQSBK6kbZ7RbYynJo+lfI/T DgJfPIfawhpVQfngfKNyNrH1QRBzp+GJ/4pgiroN8lw9pYehNBZKB4k= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDq0+86L/qILBuKfor1Wj4sZvJ8 IeS0gkeME/Qhvsebo05yZBafXfJYZrMRlPV88WUBd7ZBGnR45nkfWKqz4rqtfJLv 9dK3gH79d8gCf7Ndud/MHpDL/S2JUQrw4x1KxMxoWv7VV1COmWmJqayJeWVRIPPX QS6CfUq3J79i+cOK9QIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 273231605093684998189401886598827470082 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SecureTrust Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SecureTrust CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-04-04 17:23:14 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-05-08 18:41:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.brandywinemuseumshop.org' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chadds Ford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Brandywine River Museum' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1120 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 164901737538818632073089864651122585427110533145949922664294528740404966208778286909756832089772685867705836596096409845599264220132720236611695107720223500407602501205150725298101779554746574032407524116997619558096196438322043120093694857825692605797673585918595203448338407763604074407412094785693291875061 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ba5190d56a5551cd1604e6f7f42bf03fa573e21b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4232b616fa04fdfe5d4b7ac3fdf74c401d5a43af . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (45 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.securetrust.com/STCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (61 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114404.1.1.2.3.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://ssl.trustwave.com/CA' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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