www.alionet.org
Issued by Gandi Standard SSL CA
About this certificate
This digital certificate with serial number f6:e3:0f:51:34:b4:8a:14:fc:83:d6:21:f7:39:75:d0 was issued on by GANDI SAS.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.alionet.org,OU=Domain Control Validated+OU=Gandi Standard SSL
GANDI SAS
Organization:
GANDI SAS
Country:
FR
This certificate has expire since
Certificate Details
Serial Number (hex): f6:e3:0f:51:34:b4:8a:14:fc:83:d6:21:f7:39:75:d0Serial Number (int): 328169049019913408268426380452770182608
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: aa:25:e4:8f:1a:bb:94:34:45:ad:93:88:19:51:f9:57:63:5b:5b:15
AuthorityKeyId: b6:a8:ff:a2:a8:2f:d0:a6:cd:4b:b1:68:f3:e7:50:10:31:a7:79:21
Fingerprint (sha1): d2:aa:0d:9a:43:e0:1c:1e:72:ff:ab:62:46:1e:3b:53:8b:a5:52:38
Fingerprint (sha256): 8e:f0:31:e4:8b:21:26:63:73:2e:81:18:28:45:61:65:ea:74:77:44:bf:46:6c:96:b3:71:71:f2:96:20:e1:bc
Issuing Certificate URL: http://crt.gandi.net/GandiStandardSSLCA.crt
Revocation information
OCSP Server: http://ocsp.gandi.netCRL Distribution Point: http://crl.gandi.net/GandiStandardSSLCA.crl
Check the revocation status for certificate www.alionet.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.alionet.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.alionet.org
alionet.org
alionet.org
Other certificates including the domain name alionet.org
(limited to 100 certificates)
alionet.org
alionet.org
cloud.alionet.org
www.alionet.org
alionet.org
alionet.org
www.alionet.org
alionet.org
alionet.org
archives.alionet.org
www.alionet.org
archives.alionet.org
archives.alionet.org
cloud.alionet.org
www.alionet.org
alionet.org
cloud.alionet.org
alionet.org
alionet.org
alionet.org
www.alionet.org
alionet.org
cloud.alionet.org
www.alionet.org
alionet.org
alionet.org
www.alionet.org
alionet.org
alionet.org
archives.alionet.org
www.alionet.org
archives.alionet.org
archives.alionet.org
cloud.alionet.org
www.alionet.org
alionet.org
cloud.alionet.org
alionet.org
alionet.org
alionet.org
www.alionet.org
Certificate
The complete raw certificate details for www.alionet.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIRAPbjD1E0tIoU/IPWIfc5ddAwDQYJKoZIhvcNAQEFBQAw QTELMAkGA1UEBhMCRlIxEjAQBgNVBAoTCUdBTkRJIFNBUzEeMBwGA1UEAxMVR2Fu ZGkgU3RhbmRhcmQgU1NMIENBMB4XDTE0MTExNzAwMDAwMFoXDTE1MTExNzIzNTk1 OVowWjEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMRswGQYDVQQL ExJHYW5kaSBTdGFuZGFyZCBTU0wxGDAWBgNVBAMTD3d3dy5hbGlvbmV0Lm9yZzCC ASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALFLZk8ZmqfY6oKETmffapFT rosV4MS2M+pGdrOGffdxETR0B4NDbQxxhrTCTcCZH9d8AJ8j+Se8MzGXCtAmLxMr V8zGC5gtA9cqTSH3FttFOH087LVGpk1NZMcNTR1D95OGUYJq/WPPvMT3idn2DtG1 B4DCdjEJ90RCOZZjYPBw+yc84OKVwHWvJm4aE5Q74CvGScBfMPQLnonNDhb4nW3u evWmVSSNGCmyX8ntKFwh0b0NDgXGAol1kP393Pmdj7dqMC6T7o7Vu3t9SCZuYI5m qlb0JZhRVkWfmT5wjU2P7PSR7x1n0GSXzDpcynm/TZdQsCdoFvC9UXXIf5LOp0cC AwEAAaOCAbYwggGyMB8GA1UdIwQYMBaAFLao/6KoL9CmzUuxaPPnUBAxp3khMB0G A1UdDgQWBBSqJeSPGruUNEWtk4gZUflXY1tbFTAOBgNVHQ8BAf8EBAMCBaAwDAYD VR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwYAYDVR0g BFkwVzBLBgsrBgEEAbIxAQICGjA8MDoGCCsGAQUFBwIBFi5odHRwOi8vd3d3Lmdh bmRpLm5ldC9jb250cmFjdHMvZnIvc3NsL2Nwcy9wZGYvMAgGBmeBDAECATA8BgNV HR8ENTAzMDGgL6AthitodHRwOi8vY3JsLmdhbmRpLm5ldC9HYW5kaVN0YW5kYXJk U1NMQ0EuY3JsMGoGCCsGAQUFBwEBBF4wXDA3BggrBgEFBQcwAoYraHR0cDovL2Ny dC5nYW5kaS5uZXQvR2FuZGlTdGFuZGFyZFNTTENBLmNydDAhBggrBgEFBQcwAYYV aHR0cDovL29jc3AuZ2FuZGkubmV0MCcGA1UdEQQgMB6CD3d3dy5hbGlvbmV0Lm9y Z4ILYWxpb25ldC5vcmcwDQYJKoZIhvcNAQEFBQADggEBACGP3hncgyUOzZ0vErLp LyDzqVn3J/2KddNwSs2GOoQJqlbJHUBqNuw0kvyTpihq/LP9TkImMwhFC3JyIKcG Wdhh/xgutwCM5zlmFNvm+mMnMOsF0Fue9A68RKjdRe684hmlZ1Ml6tE+JxKx6DS8 WhMLpKwA5cQP7H5FD6ECnG2sSVeBQgl8GJoU1Hdcc50k3VjwU0yMdQTOm1MZN1oj rA8XrDgKcutEoUc/Qeu/QZHJTh76LsWJqW9aNadCo6zwYiCN4lUAvrbC7Jkyram1 oqWUeh36PpOU0zdS9rZeexPn3SmgyQ1NmaUld36ccwILiFp7rta4LJSN10RrxOe7 BzQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAsUtmTxmap9jqgoROZ99q kVOuixXgxLYz6kZ2s4Z993ERNHQHg0NtDHGGtMJNwJkf13wAnyP5J7wzMZcK0CYv EytXzMYLmC0D1ypNIfcW20U4fTzstUamTU1kxw1NHUP3k4ZRgmr9Y8+8xPeJ2fYO 0bUHgMJ2MQn3REI5lmNg8HD7Jzzg4pXAda8mbhoTlDvgK8ZJwF8w9Aueic0OFvid be569aZVJI0YKbJfye0oXCHRvQ0OBcYCiXWQ/f3c+Z2Pt2owLpPujtW7e31IJm5g jmaqVvQlmFFWRZ+ZPnCNTY/s9JHvHWfQZJfMOlzKeb9Nl1CwJ2gW8L1Rdch/ks6n RwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 328169049019913408268426380452770182608 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FR' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GANDI SAS' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi Standard SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-11-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-11-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gandi Standard SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.alionet.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22381360929433760535933126081251395191907696238982817576423861387351875969154080181281134515458225917668647000162992627659742716107765991351887341549789690806161745622094390804830198558704275897691432304153873290619531108514829572909088413606230232189095991483723548483993153317557899117195285260128529625931338031702023802628559700884650398611448588332155371991455072803256903260731330677215018268435237813581727643447890446325989938490158695580036555276502273302850123150564075386483784034473549900045153286262296391478489016133913721369406225092436350267390870828400373868357258684623936469408102930944529944979271 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b6a8ffa2a82fd0a6cd4bb168f3e7501031a77921 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) aa25e48f1abb943445ad93881951f957635b5b15 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (89 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.26 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.gandi.net/contracts/fr/ssl/cps/pdf/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.gandi.net/GandiStandardSSLCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.gandi.net/GandiStandardSSLCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.gandi.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.alionet.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alionet.org' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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