Certificate for self-sign.com Issued to Your Company

Certificate is witin its validity period

Issued by itself (self-signed)

About the self-sign.com Certificate

This certificate with serial number 67:54:66:74:49:56:89:c0:e4:98:3a:38:f5:45:f1:56:94:d4:10:fc for self-sign.com was issued on by Your Company.

This Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this Certificate review for self-sign.com provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Root and Subordinate CA certificate keyUsage extension MUST be present (BRs: 7.1.2.1, RFC 5280: 4.2.1.3)
  • Root CA certificates MUST have Key Usage Extension Present (BRs: 7.1.2.1)
  • The OU attribute in the Subject is prohibited in Root and TLS CA certificates The organizationalUnitName MUST NOT be included in Root CA certs or TLS Subordinate CA certs. organizationalUnitName is allowed for cross signed certificates, although not recommended. This lint may be configured to signify that the target is a cross signed certificate. (CABF BR §7.1.2.10.2 (CA Certificate Naming))

Your Company

Organization: Your Company
Organizational unit: IT Department
State / Province: California
Locality: San Francisco
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 67:54:66:74:49:56:89:c0:e4:98:3a:38:f5:45:f1:56:94:d4:10:fc
Serial Number (int): 589908237014934620908724907964726187329301254396
Serial Number Length: 159 bits, 20 octets

Subject Key Identifier: 98:be:16:6c:7c:05:5a:8a:c0:1a:21:78:13:df:b7:fe:09:d7:08:da
Authority Key Identifier: 98:be:16:6c:7c:05:5a:8a:c0:1a:21:78:13:df:b7:fe:09:d7:08:da

Fingerprint (SHA-1): 09:58:d0:56:07:85:66:84:e6:6f:b6:69:10:5f:ad:5d:85:33:6c:68
Fingerprint (SHA-256): 28:07:6a:39:36:0d:3a:54:3e:79:5c:9e:66:e7:0d:25:c6:e6:b4:5f:d4:79:c7:15:30:26:e7:19:66:7b:31:6d


Revocation Information


Check the revocation status for certificate self-sign.com
0
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for self-sign.com

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
None
Extended Key Usages
None
Extensions
3
CA Certificate
This is a CA certificate
Maximum Path Length: -1

Subject Alternative Names

This X.509 certificate doesn't contain any subject alternative names.

X.509 Certificate

The complete raw X.509 certificate details for self-sign.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA9Qx4fZVys+BVf6eLXCDo
gIdWj+WYI7BwzXRRWs+NDa1ma4Riu4Hle4G9wC/bW+1g1mFO89+iPheBeHruSz1S
Ai8RxjXRbvcx/5RzEHEaVlKznyTt9C+eyruUpQLVoszNoNO+FyS2/AiMTYTlQ4k8
UvmcOuxmOWq9F/WDigntIgYdFwxka2XjwHJX8sn89DqubbO1ed1K29mgTOb7EmaH
s4H9VuHK5QuHeKIat3Fl1X9ECQidQCEq9lyAeQ/Tdc3rhQ0NSXBhoX/zMorzcYIr
DhhRx7IzlWjYfGxlx+BrhlDkB6c0P3BH4RyS+uQRTW4X4iWq1fotZ39LBZx10DFq
aQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 589908237014934620908724907964726187329301254396
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'San Francisco'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Your Company'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT Department'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'self-sign.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-06-28 19:24:01 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2035-06-26 19:24:01 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'San Francisco'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Your Company'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT Department'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'self-sign.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30934534231410961264962913153076630117950027686823816681827314493031292636444324847606710632244428211996814795516508082207520385537023258349652005806594687916884901265018892627816891964988933820866509328637739973925944136397330953167446044644874866214907205538551767353913441496104550874994590998743643568601829667376355598055124572277160686193216869773103119684712182971178880553155154801808511324566419962019576123380797485691744462860578213474300893351859821537692914532187256912846450104368853859711615663387183402486567131318762449648627977483597484719854166077567437676341089005266534679773226790628473391114857
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							98be166c7c055a8ac01a217813dfb7fe09d708da
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 98be166c7c055a8ac01a217813dfb7fe09d708da
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (5 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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