OV SSL/TLS Certificate for api-dev.mnstate.us Issued to Minnesota State Colleges and Universities

Certificate is witin its validity period

Issued by SSL Corporation (Entrust OV TLS Issuing RSA CA 1)

About the api-dev.mnstate.us OV SSL/TLS Certificate

This certificate with serial number 22:20:eb:4a:2a:e2:c4:db:6e:4b:fb:71:6b:b9:1c:0f for api-dev.mnstate.us was issued on by SSL Corporation.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This OV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this OV SSL/TLS Certificate review for api-dev.mnstate.us provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

SSL Corporation

Organization: SSL Corporation
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 22:20:eb:4a:2a:e2:c4:db:6e:4b:fb:71:6b:b9:1c:0f
Serial Number (int): 45364677598573655640297741563131927567
Serial Number Length: 126 bits, 16 octets

Subject Key Identifier: 90:48:cf:d1:51:16:af:9f:f6:4e:e7:2c:6b:b8:64:7d:69:06:94:e5
Authority Key Identifier: 68:0d:45:ca:35:c2:e7:9a:1b:f0:b3:84:dd:d5:da:7f:0b:89:c1:11

Fingerprint (SHA-1): f0:2b:0b:b1:ff:5a:91:36:71:76:93:57:62:a4:83:60:1f:27:73:6d
Fingerprint (SHA-256): e0:72:4f:35:84:48:de:68:5c:d1:b9:a9:b8:cd:64:0b:ab:02:3d:7b:82:65:06:90:c8:2e:98:72:dc:b3:6e:c7

Issuing Certificate URL: http://cert.ssl.com/Entrust-OVTLS-I-R1.cer

Revocation Information

OCSP Server: http://ocsps.ssl.com
CRL Distribution Point: http://crls.ssl.com/Entrust-OVTLS-I-R1.crl

Check the revocation status for certificate api-dev.mnstate.us
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for api-dev.mnstate.us

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Client Authentication
Server Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for api-dev.mnstate.us in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtsg0YHubzkqG9eaEiL3B
4fSYvTwlFHZETZpcxtMtszGVmodSOuCGcYvIs6pv6bDOjWIpjo0ZxtxWVqNUpFi+
1LqyWEMqKV0fDUMYs0R9hPici7CxTEepkN6P7smqBYmJWxgFLNFIa+u1+RT/moT7
hTP1460txHae6p6y4FnP8nVAQ5IZslcPyo65AUw+ipi9S7O0vdmTvw9fKYAtmTJg
yLcxwr1oDix8HMgswCXWU2bflTbnoEUjNWvFQMRlIoqHoJJR+7tSl8kfKYsGyCyi
Nbpf2V1gf/QRrYaZQ0+OhueaQ3TJeow+tCgNMxHapl7W3tV+m/vDytRsUka0AeKP
UwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 45364677598573655640297741563131927567
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'SSL Corporation'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Entrust OV TLS Issuing RSA CA 1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-12-27 18:40:24 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-01-14 13:52:29 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Minnesota'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Saint Paul'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Minnesota State Colleges and Universities'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'api-dev.mnstate.us'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23074096070222588587506668788852293655640893175672695028412555967894846950912001771801277503552333531386002853247574364407493031485254239069604880045294531522370662982249970353208642011415321065810177093224201806802034208395569677375276145023822755365733991777181211165852416212586383546070152304087979625587516764477869189823568582858120802766980184141496093819835959254543110881667791897936213132892774287697803940774673000472604308271261482677842467493290097610310061649064442152047918790293596949819202570750172835648531131991743762703025958700740320540329917081669046083926077827428663150408425134701573780442963
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 680d45ca35c2e79a1bf0b384ddd5da7f0b89c111
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.ssl.com/Entrust-OVTLS-I-R1.cer'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsps.ssl.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-dev.mnstate.us'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api-portal-dev.mnstate.us'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.38064.1.3.1.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.ssl.com/Entrust-OVTLS-I-R1.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9048cfd15116af9ff64ee72c6bb8647d690694e5
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		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