alavi.org
Issued by Encryption Everywhere DV TLS CA - G1
About this certificate
This digital certificate with serial number 0b:98:1c:98:ca:6f:92:74:54:a5:9a:48:63:08:74:46 was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=alavi.org
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:98:1c:98:ca:6f:92:74:54:a5:9a:48:63:08:74:46Serial Number (int): 15411317088931827177746887992182076486
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 73:ae:bc:69:58:bb:d4:22:df:02:bb:37:ce:a1:1d:15:4d:a0:51:ae
AuthorityKeyId: 55:74:4f:b2:72:4f:f5:60:ba:50:d1:d7:e6:51:5c:9a:01:87:1a:d7
Fingerprint (sha1): 2f:f2:80:6c:24:ea:99:d5:b7:97:fe:af:b1:cb:47:1b:c6:c0:50:43
Fingerprint (sha256): 80:58:90:cc:88:bb:d1:1d:5d:ad:1c:38:ba:87:93:cd:cc:1f:f4:94:e8:d5:66:2d:28:bf:48:9b:20:ab:57:8b
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G1.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate alavi.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for alavi.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alavi.org
*.alavi.org
*.alavi.org
Other certificates including the domain name alavi.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for alavi.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFhzCCBG+gAwIBAgIQC5gcmMpvknRUpZpIYwh0RjANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzEwHhcNMjAwMjA4MDAwMDAwWhcNMjEwMjA4MTIwMDAwWjAU MRIwEAYDVQQDEwlhbGF2aS5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDiq++429bqeJeUu6hNgOTbJ12hCG/Rk08Pf6UwM0l6lA++yth2XiemRqk/ LexgKxkoYHnqJq3Y/1Vdi/qzxAKCLevLhAq82UVlkgP2+Tci9t3kX14KHHFi0b9v VP1iJWLr9YY0ieQ0+yDIIoAGcMrYt1QPU2Q2MzCNpA+qSwgSsPjMT0a+LWFBoK+b OFbOb0rrXUq+oDpB7+FOgfXEsE5BoRHk9+8SMMf1bmWx3HkG4zfXBLHOVf5fwvhd 7VGmLVT4xWckL0novh0I//4V8OrKSn3z6NWBgFb4E4JwpKV55kkdfcoNgVHgNOlf IHWymcKd856e2qKePg38FfDfyQHXAgMBAAGjggJ5MIICdTAfBgNVHSMEGDAWgBRV dE+yck/1YLpQ0dfmUVyaAYca1zAdBgNVHQ4EFgQUc668aVi71CLfArs3zqEdFU2g Ua4wIQYDVR0RBBowGIIJYWxhdmkub3JnggsqLmFsYXZpLm9yZzAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEwGA1UdIARFMEMw NwYJYIZIAYb9bAECMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3LmRpZ2ljZXJ0 LmNvbS9DUFMwCAYGZ4EMAQIBMIGABggrBgEFBQcBAQR0MHIwJAYIKwYBBQUHMAGG GGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBKBggrBgEFBQcwAoY+aHR0cDovL2Nh Y2VydHMuZGlnaWNlcnQuY29tL0VuY3J5cHRpb25FdmVyeXdoZXJlRFZUTFNDQS1H MS5jcnQwCQYDVR0TBAIwADCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB1ALvZ37wf inG1k5Qjl6qSe0c4V5UKq1LoGpCWZDaOHtGFAAABcCbbalYAAAQDAEYwRAIgKJcn oQ6gxHYLcTVoxx0rMJz0FnUMA4qDb4WHzD8IoH0CID6MIPS1BxX1Lp0Q5iaKCiFt t09uQftNvQuvdXLHnbjdAHYARJRlLrDuzq/EQAfYqP4owNrmgr7YyzG1P9MzlrW2 gagAAAFwJttqDAAABAMARzBFAiBYtQRUlVq6RtqrWhKTi9YKqEo/Thk+q8MgMn8N N9qEMgIhAPrlzoDxlEG+bDqB+MeI2iMV29AZEmj8jylsoG4YNdJyMA0GCSqGSIb3 DQEBCwUAA4IBAQCh9WaVm8pfJzjZTIuqtocACYgZJ2fVIIoqw9Snj1BotfnDZGPR h14P53jIocq7N48ispZEIMAvdm1gS9/BKyah9e6Ml9jGTXFVRAN5uph/oGr5LHnz lX4BZauU5IeHIZE8I15LDyCWMS5elalzmntClPJ39jRLti+Juwq6iHgW0y/rj/g4 W7sbSXNtHGgtVdiHx1AUYealVn/T8f2RDAGh0ePnYKETCov7fdEBl66l2C5wmS55 9ft52e+sJFqbSODzm2ENA6/KiZakk9DiqyZ1OJjd36+W8A0h90PYGr1wPTvi9Nym WYZdFtumtpVzf0gjtQSIIUT8T482Fio1hb8d -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4qvvuNvW6niXlLuoTYDk 2yddoQhv0ZNPD3+lMDNJepQPvsrYdl4npkapPy3sYCsZKGB56iat2P9VXYv6s8QC gi3ry4QKvNlFZZID9vk3Ivbd5F9eChxxYtG/b1T9YiVi6/WGNInkNPsgyCKABnDK 2LdUD1NkNjMwjaQPqksIErD4zE9Gvi1hQaCvmzhWzm9K611KvqA6Qe/hToH1xLBO QaER5PfvEjDH9W5lsdx5BuM31wSxzlX+X8L4Xe1Rpi1U+MVnJC9J6L4dCP/+FfDq ykp98+jVgYBW+BOCcKSleeZJHX3KDYFR4DTpXyB1spnCnfOentqinj4N/BXw38kB 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 15411317088931827177746887992182076486 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-02-08 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'alavi.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28614641928285169632241749250460373124873340848490338259020340595335448947317183206816328755445356617508058662159101666804940426635159048159571144659924261918556186424656771198771959064668824828569524315824209196866490143914946933257436775397153282673794423481385567136917522486870462807401388400522472518327598743255046218018975657286079559309240441541880016085715477208581036543136705169702595786332935241187652990312770821478978963321713871817904684993317899196045137295300039918598559276200383397831320028731724711098934711525396156369913536074461086111613629225583441874113685384028195178372442987567792148513239 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 55744fb2724ff560ba50d1d7e6515c9a01871ad7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 73aebc6958bbd422df02bb37cea11d154da051ae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alavi.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alavi.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000017026db6a5600000403004630440220289727a10ea0c4760b713568c71d2b309cf416750c038a836f8587cc3f08a07d02203e8c20f4b50715f52e9d10e6268a0a216db74f6e41fb4dbd0baf7572c79db8dd0076004494652eb0eeceafc44007d8a8fe28c0dae682bed8cb31b53fd33396b5b681a80000017026db6a0c0000040300473045022058b50454955aba46daab5a12938bd60aa84a3f4e193eabc320327f0d37da8432022100fae5ce80f19441be6c3a81f8c788da2315dbd0191268fc8f296ca06e1835d272 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00a1f566959bca5f2738d94c8baab687000988192767d5208a2ac3d4a78f5068b5f9c36463d1875e0fe778c8a1cabb378f22b2964420c02f766d604bdfc12b26a1f5ee8c97d8c64d7155440379ba987fa06af92c79f3957e0165ab94e4878721913c235e4b0f2096312e5e95a9739a7b4294f277f6344bb62f89bb0aba887816d32feb8ff8385bbb1b49736d1c682d55d887c7501461e6a5567fd3f1fd910c01a1d1e3e760a1130a8bfb7dd10197aea5d82e70992e79f5fb79d9efac245a9b48e0f39b610d03afca8996a493d0e2ab26753898dddfaf96f00d21f743d81abd703d3be2f4dca659865d16dba6b695737f4823b504882144fc4f8f36162a3585bf1d