Certificate for self-sign.com Issued to Your Company

Certificate is witin its validity period

Issued by itself (self-signed)

About the self-sign.com Certificate

This certificate with serial number 44:4f:6f:75:44:a3:3a:73:8b:90:6f:85:46:21:68:81:f1:ac:0f:96 for self-sign.com was issued on by Your Company.

This Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this Certificate review for self-sign.com provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Root and Subordinate CA certificate keyUsage extension MUST be present (BRs: 7.1.2.1, RFC 5280: 4.2.1.3)
  • Root CA certificates MUST have Key Usage Extension Present (BRs: 7.1.2.1)
  • The OU attribute in the Subject is prohibited in Root and TLS CA certificates The organizationalUnitName MUST NOT be included in Root CA certs or TLS Subordinate CA certs. organizationalUnitName is allowed for cross signed certificates, although not recommended. This lint may be configured to signify that the target is a cross signed certificate. (CABF BR §7.1.2.10.2 (CA Certificate Naming))

Your Company

Organization: Your Company
Organizational unit: IT Department
State / Province: California
Locality: San Francisco
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 44:4f:6f:75:44:a3:3a:73:8b:90:6f:85:46:21:68:81:f1:ac:0f:96
Serial Number (int): 389982840654715395648717291424009978148404596630
Serial Number Length: 159 bits, 20 octets

Subject Key Identifier: 36:38:36:7b:c3:7d:ad:44:e3:2c:f3:0f:7b:47:f8:69:02:c6:e5:a2
Authority Key Identifier: 36:38:36:7b:c3:7d:ad:44:e3:2c:f3:0f:7b:47:f8:69:02:c6:e5:a2

Fingerprint (SHA-1): 4e:d2:58:71:7f:87:d6:d1:ca:52:45:b4:da:d2:67:51:ae:e6:4e:ff
Fingerprint (SHA-256): ff:19:e8:25:63:04:4a:fa:c3:b4:01:db:30:6b:90:59:f5:84:28:2a:0c:24:96:db:ee:14:46:5d:4b:70:44:91


Revocation Information


Check the revocation status for certificate self-sign.com
0
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for self-sign.com

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
None
Extended Key Usages
None
Extensions
3
CA Certificate
This is a CA certificate
Maximum Path Length: -1

Subject Alternative Names

This X.509 certificate doesn't contain any subject alternative names.

X.509 Certificate

The complete raw X.509 certificate details for self-sign.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAz36Rjp8ljrO0we5ki/Cd
LTKpPcIOaitEg4f0cUuNQAw+wF/Xx1h51Yp4SpLAah3dNgH/quJh+qutWWFgHg1q
FXxrjSnO6O3Dr7yJlC51PMDW5mriCEk1oaqH26tzvT7EZApeQ1vVDDtD2fSULuIS
M2Tpks/iVGgiVdzSmvkYMMoy80wrKM/GuOx6gT6gyrUr+7sf4U4V+QKzVJzmMgeK
Oa/Up4EH28HfsK/JaBYtUI/phMNS1qXeHlzp9OGY1Q+3zYCc1iREn3K/rGqMXDad
cfpG1u/L0uHJ+oFZNcZQzwzufuEYDX+vd53fqON0/mA5t8c5esjBgqx7iZT30oEb
UwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 389982840654715395648717291424009978148404596630
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'San Francisco'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Your Company'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT Department'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'self-sign.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-05 18:22:20 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2035-07-03 18:22:20 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'San Francisco'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Your Company'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'IT Department'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'self-sign.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26193742422172291411575616840729481100349929233279916020869837170501033484461956833828566302201293422065013388756284301820915715287140753514815405787986000210762111051308226085112918050074272635941769879518755054138238995955313197424139970852144316184036733297325747571368267783910141075475129645837437941009276872815759859047404975462308809431960132444067743394245222705916357143961044059329390265386101351067899292360065908131411419590401622120316063810836876101055186314284603613490707706970993988616245592644711969150520092671533987641559851547999476125898957193452202279956651450454832348751662602016986725686099
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3638367bc37dad44e32cf30f7b47f86902c6e5a2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 3638367bc37dad44e32cf30f7b47f86902c6e5a2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (5 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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