egov-nsdl.co.in

- NSDL e-Governance Infrastructure Limited -

Issued by Entrust Certification Authority - L1K

About this certificate

This digital certificate with serial number d0:79:07:a6:3f:96:b7:bc:00:00:00:00:50:e1:ba:fe was issued on by Entrust, Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

NSDL e-Governance Infrastructure Limited

Organization: NSDL e-Governance Infrastructure Limited
State / Province: Maharashtra
Locality: Mumbai
Country: IN

Entrust, Inc.

Organization: Entrust, Inc.
Organization unit: See www.entrust.net/legal-terms
Organization unit: (c) 2012 Entrust, Inc. - for authorized use only
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): d0:79:07:a6:3f:96:b7:bc:00:00:00:00:50:e1:ba:fe
Serial Number (int): 277107846191567180789358251462895975166
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 57:dd:45:f6:ca:b7:a3:22:83:c1:f3:37:e5:72:03:60:9d:7e:5a:8f
AuthorityKeyId: 82:a2:70:74:dd:bc:53:3f:cf:7b:d4:f7:cd:7f:a7:60:c6:0a:4c:bf

Fingerprint (sha1): 13:d9:c7:6c:7d:fe:58:b1:7a:15:26:3d:4c:07:a3:f0:ca:92:2b:57
Fingerprint (sha256): 7a:09:fb:42:b7:75:0e:15:f3:a3:d1:bc:fd:c2:29:b9:1c:c7:8c:2b:8b:40:c9:b2:04:b6:fe:a2:6a:91:91:99

Issuing Certificate URL: http://aia.entrust.net/l1k-chain256.cer

Revocation information

OCSP Server: http://ocsp.entrust.net
CRL Distribution Point: http://crl.entrust.net/level1k.crl

Check the revocation status for certificate egov-nsdl.co.in

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for egov-nsdl.co.in

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

egov-nsdl.co.in
www.egov-nsdl.co.in

Other certificates including the domain name egov-nsdl.co.in

(limited to 100 certificates)
chatbot.egov-nsdl.co.in
egov-nsdl.co.in
vhpeeps4ci.sap.egov-nsdl.co.in
egov-nsdl.co.in
egov-nsdl.co.in
vhpeeps4ci.sap.egov-nsdl.co.in
egov-nsdl.co.in
egov-nsdl.co.in
egov-nsdl.co.in
egov-nsdl.co.in
gikhova0896.egov-nsdl.co.in
s.egov-nsdl.co.in
asp.portal.egov-nsdl.co.in
egov-nsdl.co.in
egov-nsdl.co.in
egov-nsdl.co.in
egov-nsdl.co.in
egov-nsdl.co.in
chatbot.egov-nsdl.co.in

Certificate

The complete raw certificate details for egov-nsdl.co.in in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0AZ/crRTlz+UTDKTYCDc
NLvAYKYC5EKxDA9oCxuQLtXNV1zKsx2xwWw8hpNcQenCvNe2GWZH5UoXrd46+EtF
CixlDMFMd5/fj7jblsiEASUJcaIlQIjlt8ZvLdzjnoOUMINf8yO9jgf5boCADzvu
keW4vgIvBVRhFiBtZRzaESGBI5yALbD56PSxBoJNfPIQLu5t42BUVMKu/hJQikbx
ly2NPKqhOE0cSBuMsEpr4c0+pAMrV500+vhXqRHsLTQBU1WH90CiGj34dSd+CvWE
rwlKcYyCgW/UtuUJRlGcqV5LQEM9/Z3HnGot4oAo/kP3HHqYEocLr0Tf+ndpRVco
/wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 277107846191567180789358251462895975166
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.entrust.net/legal-terms'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString '(c) 2012 Entrust, Inc. - for authorized use only'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Entrust Certification Authority - L1K'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-13 11:39:05 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-17 12:09:04 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IN'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maharashtra'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Mumbai'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NSDL e-Governance Infrastructure Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'egov-nsdl.co.in'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26260771639239121739779648436506347879436817212174011163831368793132742161108560700960049228284869175323162030483706708804418429722138307342350626190772501314837867807997079238125872000711393679767532663657852016170863741414742363229144245767798572173642990697150380985163864408681921504759928366984868474413373211490324192370532975027591790603017551417205105038784758443703068252851937534131678805753514950867201342668372086898363295588117235877703738494530614704516256894720985038335236503285647965314913764842882572899972339642736096489903769565657538169708797423617218852827612680621270814435051630285169790232831
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'egov-nsdl.co.in'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.egov-nsdl.co.in'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes)
							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
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.entrust.net/level1k.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114028.10.1.5
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.entrust.net/rpa'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.entrust.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.entrust.net/l1k-chain256.cer'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 82a27074ddbc533fcf7bd4f7cd7fa760c60a4cbf
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							57dd45f6cab7a32283c1f337e57203609d7e5a8f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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