humboldteum.com
Issued by Encryption Everywhere DV TLS CA - G2
About this certificate
This digital certificate with serial number 01:45:dd:4c:eb:ff:fa:5c:84:8b:a4:e8:a2:23:38:5c was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=humboldteum.com
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 01:45:dd:4c:eb:ff:fa:5c:84:8b:a4:e8:a2:23:38:5cSerial Number (int): 1691984985925012772815663295155615836
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 33:19:3d:98:7f:80:f1:93:db:84:53:91:e2:30:fe:0e:85:2d:c9:7a
AuthorityKeyId: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6
Fingerprint (sha1): 5c:60:f4:b0:43:d6:63:c5:bf:a1:02:02:f7:5f:fc:2b:0d:ff:d7:29
Fingerprint (sha256): 85:89:2b:8a:09:5d:53:2a:16:7f:f1:8a:bd:88:85:37:b1:4a:c1:05:46:45:0a:3b:dd:60:1f:fd:5b:97:b4:ed
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate humboldteum.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for humboldteum.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
humboldteum.com
www.humboldteum.com
www.humboldteum.com
Other certificates including the domain name humboldteum.com
(limited to 100 certificates)
nahoryirgaalem.dev
api.crew.sgospel.no
www.humboldteum.com
www.humboldteum.com
pois.raha.fi
astrofetus.space
www.thedatahitchhiker.com
www.humboldteum.com
forms.humboldteum.com
www.humboldteum.com
www.darkchurchill.com
nahoryirgaalem.dev
humboldteum.com
btbeauty.de
forms.humboldteum.com
www.darkchurchill.com
www.humboldteum.com
humboldteum.com
www.humboldteum.com
api.crew.sgospel.no
www.humboldteum.com
www.humboldteum.com
pois.raha.fi
astrofetus.space
www.thedatahitchhiker.com
www.humboldteum.com
forms.humboldteum.com
www.humboldteum.com
www.darkchurchill.com
nahoryirgaalem.dev
humboldteum.com
btbeauty.de
forms.humboldteum.com
www.darkchurchill.com
www.humboldteum.com
humboldteum.com
www.humboldteum.com
Certificate
The complete raw certificate details for humboldteum.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGCzCCBPOgAwIBAgIQAUXdTOv/+lyEi6TooiM4XDANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzIwHhcNMjQwMzEwMDAwMDAwWhcNMjUwMzIzMjM1OTU5WjAa MRgwFgYDVQQDEw9odW1ib2xkdGV1bS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQC28NRNuyMMPPpjwmGmnF3w7rKM+PI3M8UShDoSoGDVjrs7T/yK ptGoJTjFj8d2TjkFSvuHOcLIJalN3VlgTSyA1Lc8W+5/kGMXMbdtst4BLd22TZ3K m+GOb4cDJya/kHnkY90zAYlE/i/pSg8iq9NU6qRmwgy5wGtbfeSeBEWDnmudoqlG CDl346EL1lQ1kWgqmgU5So26wmvTXZ3TMv3nV0xFtAJGpQ8uqfLL4STTulQgQ3M2 +AL6wy8FUk4vqB43X+O3ci0Gd1q4kTNv1SQKdf0nEoyzPhNLyFzKU5wgP/df6AHe euMikdEJCXiFg9E6BKnNuIgYzcVnPSS7b/2VAgMBAAGjggL3MIIC8zAfBgNVHSME GDAWgBR435GQX+7erPbFdevVTFVT7yRKtjAdBgNVHQ4EFgQUMxk9mH+A8ZPbhFOR 4jD+DoUtyXowLwYDVR0RBCgwJoIPaHVtYm9sZHRldW0uY29tghN3d3cuaHVtYm9s ZHRldW0uY29tMD4GA1UdIAQ3MDUwMwYGZ4EMAQIBMCkwJwYIKwYBBQUHAgEWG2h0 dHA6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGABggrBgEFBQcBAQR0MHIwJAYIKwYB BQUHMAGGGGh0dHA6Ly9vY3NwLmRpZ2ljZXJ0LmNvbTBKBggrBgEFBQcwAoY+aHR0 cDovL2NhY2VydHMuZGlnaWNlcnQuY29tL0VuY3J5cHRpb25FdmVyeXdoZXJlRFZU TFNDQS1HMi5jcnQwDAYDVR0TAQH/BAIwADCCAX4GCisGAQQB1nkCBAIEggFuBIIB agFoAHUAzxFW7tUufK/zh1vZaS6b6RpxZ0qwF+ysAdJbd87MOwgAAAGOJ2tEFQAA BAMARjBEAiBce343xLvGnXsy3CG3tOmUBf1m8LsIRlccNMPyqCGPjwIgP789ntFE 0qtIKAYzgI2YPCOU47WdiesRFUWZtbB9ufoAdwB9WR4S4XgqexxhZ3xe/fjQh1wU oE6VnrkDL9kOjC55uAAAAY4na0PVAAAEAwBIMEYCIQDUhe1BAQgcgAHVBtCgjaPp Yba2VcjBKjnoGoiEaJ8m/wIhALgnqWa80g+4KGRNvmI3yaoWc0GQNU1WQxyskuIH WwpsAHYA5tIxY0B3jMEQQQbXcbnOwdJA9paEhvu6hzId/R43jlAAAAGOJ2tD/gAA BAMARzBFAiBY71UysiFlyUGyonf8QjWtXTA3Hw6Ntc721cdAbO8LgAIhAO1uEZrl SncpiCN50HGdFyDJ3gmIVebdC6qORhVYtje1MA0GCSqGSIb3DQEBCwUAA4IBAQBB a2iUZJHtd8M3aBe7jsDTjk2eDpPycvlkyaqXFazGSMmQeChHbzIz7bWri5Sw857P fAzP9PDTk6Y/ccoB3yrMtgNislY9nKjNKZB/y4IzFaYgI560BWLs/YCjmq9SrYSd AumFxMivcvVMGHxkbSDoCpvBGLfDKTFyOgcnz/ihIS9DhSxKuafUGUcWBtasFX4u MC2LkExzcyyJaQLAcM+ly+5kHPCXGuf643hHonTSvMp0yriDSrsXjyMbgKXG/tew 6W+oLRlTuj2Dg8ss8jAk5r9YZZXTVaP9hXOd5O71Wbb5RxKC5zPY+1BshtgXDrVV Jq10DBnS0NjXGqbU7G08 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtvDUTbsjDDz6Y8Jhppxd 8O6yjPjyNzPFEoQ6EqBg1Y67O0/8iqbRqCU4xY/Hdk45BUr7hznCyCWpTd1ZYE0s gNS3PFvuf5BjFzG3bbLeAS3dtk2dypvhjm+HAycmv5B55GPdMwGJRP4v6UoPIqvT VOqkZsIMucBrW33kngRFg55rnaKpRgg5d+OhC9ZUNZFoKpoFOUqNusJr012d0zL9 51dMRbQCRqUPLqnyy+Ek07pUIENzNvgC+sMvBVJOL6geN1/jt3ItBndauJEzb9Uk CnX9JxKMsz4TS8hcylOcID/3X+gB3nrjIpHRCQl4hYPROgSpzbiIGM3FZz0ku2/9 lQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1691984985925012772815663295155615836 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-10 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-23 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'humboldteum.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23094128863264104354634652399721777497547896870802203165072554147749723400115395818762926055302748854245043040370808461328628679005328160013979140614763788789653342825583242338859396108123052465678827831191469434226947599944286455581816958737013105869956997585021957618237981986015532557964879399677960491172202618491253168444857637347411986103808456256066289331099785528725630476868552920804242329437946989102905668997646385518537664922742248598958412844010529267164856435999220421553145892194747575845462121546512139397629933685392886823907066948997062642707250421372219496392983065685885726822996035572056349212053 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 33193d987f80f193db845391e230fe0e852dc97a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'humboldteum.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.humboldteum.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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