This digital certificate with serial number 3b:43:d6:d0 was issued on
This certificate has already expired and will cause a warning or error message in the browser it's
still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
The Subject Alternate Name extension MUST contain only 'dnsName' and 'ipaddress' name types.
Subscriber Certificate: authorityInformationAccess MUST contain the HTTP URL of the Issuing CA's OSCP responder.
Subscriber Certiifcate: authorityInformationAccess MUST be present, with the exception of stapling.
Subscriber certificate cRLDistributionPoints extension must contain the HTTP URL of the CA’s CRL service
Subscriber certificates MUST have the extended key usage extension present
Certificates should not have multiple attributes in a single RDN (subject)
Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate