aidajerusalem.org
Issued by Encryption Everywhere DV TLS CA - G2
About this certificate
This digital certificate with serial number 01:30:3c:64:70:d8:17:25:14:89:dd:07:49:c2:32:9e was issued on by DigiCert Inc.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=aidajerusalem.org
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:30:3c:64:70:d8:17:25:14:89:dd:07:49:c2:32:9eSerial Number (int): 1579683147310616501198468377500332702
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 90:ff:84:a1:f8:85:ca:bc:dc:82:19:dc:da:e2:c3:d9:7b:39:bf:7e
AuthorityKeyId: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6
Fingerprint (sha1): 42:55:fb:ce:5c:45:4f:96:4e:80:29:08:35:27:86:df:72:35:89:48
Fingerprint (sha256): 87:66:5c:79:dc:10:0c:f3:7b:9d:7e:9e:12:10:89:2e:04:83:44:8e:eb:e1:c1:e2:68:5a:f1:4f:3b:ba:9e:12
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate aidajerusalem.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for aidajerusalem.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
Other certificates including the domain name aidajerusalem.org
(limited to 100 certificates)
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
aidajerusalem.org
aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
www.aidajerusalem.org
Certificate
The complete raw certificate details for aidajerusalem.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFoTCCBImgAwIBAgIQATA8ZHDYFyUUid0HScIynjANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzIwHhcNMTkwMTE3MDAwMDAwWhcNMjAwMzE3MTIwMDAwWjAc MRowGAYDVQQDExFhaWRhamVydXNhbGVtLm9yZzCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAMV+Sf6Gt0les+bOuk/Kutqb6UGtqR9vnBhubCvAkQyMEnrI c2zl5tgs8uStnXR4vnlFf9MtqqdS0pmek+Jy4A84xh1CeN4iU9Fq1vkvXAe/Kzn+ Jm35FQbrDq/1mw54OVsTh9Ut4ACKzFMRemfzCI4CHs0SCyOwNFh0ZgrwixCORhRM Ds0Af8abMhlo8TPmtifJkxJDnMTJFHnJ+0rS3ljTe6/uoE1ub4iRSh+qfiJ0gu1G 8MvAmJZ+ZMhB5kd/ELceKxbZPDvz5u8zaik02jia1f9AWU5jPhgRNqaZlJQW2evs OoFrrt60xobQi0YdbQvsYPDgnEDdpdnq/teFf/8CAwEAAaOCAoswggKHMB8GA1Ud IwQYMBaAFHjfkZBf7t6s9sV169VMVVPvJEq2MB0GA1UdDgQWBBSQ/4Sh+IXKvNyC Gdza4sPZezm/fjAzBgNVHREELDAqghFhaWRhamVydXNhbGVtLm9yZ4IVd3d3LmFp ZGFqZXJ1c2FsZW0ub3JnMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwTAYDVR0gBEUwQzA3BglghkgBhv1sAQIwKjAoBggrBgEF BQcCARYcaHR0cHM6Ly93d3cuZGlnaWNlcnQuY29tL0NQUzAIBgZngQwBAgEwgYAG CCsGAQUFBwEBBHQwcjAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AuZGlnaWNlcnQu Y29tMEoGCCsGAQUFBzAChj5odHRwOi8vY2FjZXJ0cy5kaWdpY2VydC5jb20vRW5j cnlwdGlvbkV2ZXJ5d2hlcmVEVlRMU0NBLUcyLmNydDAJBgNVHRMEAjAAMIIBAwYK KwYBBAHWeQIEAgSB9ASB8QDvAHUAu9nfvB+KcbWTlCOXqpJ7RzhXlQqrUugakJZk No4e0YUAAAFoWS5nhwAABAMARjBEAiBZeo2LV0V6yKLd5E6EQo9N9pi9PsmAjNgm PjSbXwbr6QIgGHLZSXXxEGobH4lDM85LNY8aUqyKtBw5FIKKtyAnugIAdgCHdb/n WXz4jEOZX73zbv9WjUdWNv9KtWDBtOr/XqCDDwAAAWhZLmgbAAAEAwBHMEUCIQDA te0R/KkolDYNIrlZvuqLE3ReqbAGrvGl1H2U4YydJgIgbeWXWK9simGV8Rem32JT 46WuHJ1Qt+qu/oTj+WosQbYwDQYJKoZIhvcNAQELBQADggEBAA/Q+QdFjz8PxJFv l5X4rjbkSHVT79yfgxvq5TArR7N6XWAP8XwNXkOxLZi2byPqHdKax7+oYjKDv7r+ 4FmHaYAnKxnLlEs+qC5OfBaV75W2yHf1cYdEJSsQo3AvY84AV0wEMUA6kpSLB7KS 51+HU58OOWECVwo8mdHry35w+HWijaUiioVlcN+OUz2kDewad+caBVnxTVSjeir0 QgdaoaOVDh+UuJzKIETio8NnaTtsIkVwpY8jvgPTwmDM9RMoQy8uRE4DLujAy8Eh wXIQsY/C4c3Lkst2bPVEUKX29V26FlP9MP0eKx5liNuwfGbHn7VTq23Zhl3r/xHu 19GXaZI= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAxX5J/oa3SV6z5s66T8q6 2pvpQa2pH2+cGG5sK8CRDIwSeshzbOXm2Czy5K2ddHi+eUV/0y2qp1LSmZ6T4nLg DzjGHUJ43iJT0WrW+S9cB78rOf4mbfkVBusOr/WbDng5WxOH1S3gAIrMUxF6Z/MI jgIezRILI7A0WHRmCvCLEI5GFEwOzQB/xpsyGWjxM+a2J8mTEkOcxMkUecn7StLe WNN7r+6gTW5viJFKH6p+InSC7Ubwy8CYln5kyEHmR38Qtx4rFtk8O/Pm7zNqKTTa OJrV/0BZTmM+GBE2ppmUlBbZ6+w6gWuu3rTGhtCLRh1tC+xg8OCcQN2l2er+14V/ /wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1579683147310616501198468377500332702 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-17 12:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'aidajerusalem.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24931221524981207413265180476109827072043493464990922385302516362535108736900477725068470901874941232376973509493535755851346035195109373925805778609140266956335709863076437313106056033956617526900947675183482089027733071275519718322388229648911140178607573698254238488583323117157917839798332357246829616974859808893195305626636780275443507031208731619165575359284779448959009661170580135258792477999473244529637759449476304940824112924197994761088350652879107309283581496899036848739077202839623650655359263099584877680348623805701891941845136217024114008103874532849518781456465637289229861532377993705780261781503 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 90ff84a1f885cabcdc8219dcdae2c3d97b39bf7e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aidajerusalem.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.aidajerusalem.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114412.1.2 (digiCertDVCert) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.digicert.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed18500000168592e678700000403004630440220597a8d8b57457ac8a2dde44e84428f4df698bd3ec9808cd8263e349b5f06ebe902201872d94975f1106a1b1f894333ce4b358f1a52ac8ab41c3914828ab72027ba020076008775bfe7597cf88c43995fbdf36eff568d475636ff4ab560c1b4eaff5ea0830f00000168592e681b0000040300473045022100c0b5ed11fca92894360d22b959beea8b13745ea9b006aef1a5d47d94e18c9d2602206de59758af6c8a6195f117a6df6253e3a5ae1c9d50b7eaaefe84e3f96a2c41b6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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