www.nogaholding.com
Issued by Sectigo RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number 97:6d:78:ea:cc:bc:17:ce:f3:68:c0:f7:cc:14:df:79 was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.nogaholding.com
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate will expire on
Certificate Details
Serial Number (hex): 97:6d:78:ea:cc:bc:17:ce:f3:68:c0:f7:cc:14:df:79Serial Number (int): 201281840213007392047930371171671138169
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: 27:e3:6d:79:6c:dd:f0:c1:6c:32:a2:d9:35:7a:99:b8:4d:7d:a4:56
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1
Fingerprint (sha1): 3d:a6:94:b8:f9:a8:14:32:95:2b:07:eb:f2:12:69:90:62:33:59:46
Fingerprint (sha256): 94:a6:98:52:27:82:a4:80:9d:59:1a:c9:ba:7b:2d:c8:aa:68:08:dd:ec:3f:5b:d7:fe:fd:08:2a:7d:b3:55:60
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCheck the revocation status for certificate www.nogaholding.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.nogaholding.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.nogaholding.com
nogaholding.com
nogaholding.com
Other certificates including the domain name nogaholding.com
(limited to 100 certificates)
nogaholding.com
sni103390.cloudflaressl.com
nogaholding.com
helpdesk.nogaholding.com
nogaholding.com
helpdesk.nogaholding.com
nogaholding.com
nogaholding.com
sni103390.cloudflaressl.com
nogaholding.com
helpdesk.nogaholding.com
sni103390.cloudflaressl.com
annualreport2018.nogaholding.com
nogaholding.com
www.nogaholding.com
nogaholding.com
mail.nogaholding.com
annualreport2018.nogaholding.com
annualreport2018.nogaholding.com
nogaholding.com
nogaholding.com
helpdesk.nogaholding.com
nogaholding.com
mail.nogaholding.com
sni103390.cloudflaressl.com
nogaholding.com
helpdesk.nogaholding.com
nogaholding.com
helpdesk.nogaholding.com
nogaholding.com
nogaholding.com
sni103390.cloudflaressl.com
nogaholding.com
helpdesk.nogaholding.com
sni103390.cloudflaressl.com
annualreport2018.nogaholding.com
nogaholding.com
www.nogaholding.com
nogaholding.com
mail.nogaholding.com
annualreport2018.nogaholding.com
annualreport2018.nogaholding.com
nogaholding.com
nogaholding.com
helpdesk.nogaholding.com
nogaholding.com
mail.nogaholding.com
Certificate
The complete raw certificate details for www.nogaholding.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGQjCCBSqgAwIBAgIRAJdteOrMvBfO82jA98wU33kwDQYJKoZIhvcNAQELBQAw gY8xCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE3MDUGA1UE AxMuU2VjdGlnbyBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBD QTAeFw0yMzA3MzAwMDAwMDBaFw0yNDA4MjkyMzU5NTlaMB4xHDAaBgNVBAMTE3d3 dy5ub2dhaG9sZGluZy5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQCoZBoQnWtSPv/4ExCrf7oYmjAmpwMVZEvYEcbBscx433TFI//TY+qqU8IfQCLn jXj1t6a7zT/57JHe4UdsZP8E8KQX6N3C53LaE/RUMiIBDAuXiM0l1vawf16RRQhx /dObyXvQF/Q0yEQfd6eq3fV7k9QMYnuK/JlYDqM6k6UEjBzCGRWFy6EIhjbnfhMe 9uc6aZWeZe4JEM+gdvMiqlFTNiZPRuh4OxKjYhb7sn4LqrF7n8JLgS/D8BnvUYwa O/Hl20IRQHXulApEaRF7NYCZeK54u6GlRjVLxqNUFUHXA2rkN7FZwodD9+r8Oaod kSri0MDPntgq8FbiaO7/CUGdAgMBAAGjggMHMIIDAzAfBgNVHSMEGDAWgBSNjF7E VK2K4Xfpm/mbBeG4AY1h4TAdBgNVHQ4EFgQUJ+NteWzd8MFsMqLZNXqZuE19pFYw DgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYBBAGyMQECAgcwJTAjBggrBgEF BQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMwCAYGZ4EMAQIBMIGEBggrBgEF BQcBAQR4MHYwTwYIKwYBBQUHMAKGQ2h0dHA6Ly9jcnQuc2VjdGlnby5jb20vU2Vj dGlnb1JTQURvbWFpblZhbGlkYXRpb25TZWN1cmVTZXJ2ZXJDQS5jcnQwIwYIKwYB BQUHMAGGF2h0dHA6Ly9vY3NwLnNlY3RpZ28uY29tMC8GA1UdEQQoMCaCE3d3dy5u b2dhaG9sZGluZy5jb22CD25vZ2Fob2xkaW5nLmNvbTCCAX8GCisGAQQB1nkCBAIE ggFvBIIBawFpAHcAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGJ ph3R7AAABAMASDBGAiEAhbguRp3ypuqSossWChYdjGjJ+OeiYa7kAozXBl21Ay4C IQD9WyNpcTZ1eEpkWXFrxyxoZF+A/hCQJJIuIHe4qRRa/gB2ANq2v2s/tbYin5vC u1xr6HCRcWy7UYSFNL2kPTBI1/urAAABiaYd0j4AAAQDAEcwRQIgfOibsasaPX5W RiVy7as0YrPFK6d7QBGTFHxR3G3GgEoCIQC1zt/EjarkM7tBwC8scIh6ol0AJiuo xD2ZsWm7GMfVzAB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAAB iaYd0hYAAAQDAEcwRQIhAPzF/PqV8p5DZOlq4MONqb3rQyERdxaXegI0+FVlQhTs AiB8xqj5JS99i7jELegdbetrcbRwGr4Phdk6gjoqeTiDZTANBgkqhkiG9w0BAQsF AAOCAQEAgSckz9t2q7eh3iM43C1cz3ft7SNUj4cDzUxjT1/Dk/SBdvLWFe/36hzk hjFgpxlgfCi8UKUjjrxoxbWHjMpsQlQU3Z+omi8u0ThTAXwF7FwwiVozEJuAa+T+ yz4ew/3W85CkN9zVKhvjRVmfTxuSh4AfbhMBuPwQ/cmxyx9I7bmewa5WW1zu4z7A 9jnWPl9NIc+JJYZb6SJ5sqw2l5AodGFQ4+9UAByrgHFhHgiv80BabeLfBIDtry1e Hfd53nzGxus3ogL2Xvy8ddu4yzs50hNilahAc+TgTS8JqfD4cYDltxoZA2wE/ArO 4Ed8aw/q8O2gCCgMpgHVSX1XQxVCew== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqGQaEJ1rUj7/+BMQq3+6 GJowJqcDFWRL2BHGwbHMeN90xSP/02PqqlPCH0Ai54149bemu80/+eyR3uFHbGT/ BPCkF+jdwudy2hP0VDIiAQwLl4jNJdb2sH9ekUUIcf3Tm8l70Bf0NMhEH3enqt31 e5PUDGJ7ivyZWA6jOpOlBIwcwhkVhcuhCIY2534THvbnOmmVnmXuCRDPoHbzIqpR UzYmT0boeDsSo2IW+7J+C6qxe5/CS4Evw/AZ71GMGjvx5dtCEUB17pQKRGkRezWA mXiueLuhpUY1S8ajVBVB1wNq5DexWcKHQ/fq/DmqHZEq4tDAz57YKvBW4mju/wlB nQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 201281840213007392047930371171671138169 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-07-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-29 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.nogaholding.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21257397279527677359027698136179861864394855817715246182495658503878788098270030545017032645325090640186508546861460785411034664519459423559074150568636343329902213535485446031034417581535276612688562805174711779175942269806194817630746166627721880686898334233472553055226277760704726265342376614228596666921957214918244328331297735215085167632476526641749007024801965461195089326161627809196696533852404387445318727564005869810567879648852875811091785797423752463788869380726307092136936437098398890309919174415142706281173190299664758613058345340274942279083442851013876257271843675486726944544380975631346277368221 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 27e36d796cddf0c16c32a2d9357a99b84d7da456 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.nogaholding.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nogaholding.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00812724cfdb76abb7a1de2338dc2d5ccf77eded23548f8703cd4c634f5fc393f48176f2d615eff7ea1ce4863160a719607c28bc50a5238ebc68c5b5878cca6c425414dd9fa89a2f2ed13853017c05ec5c30895a33109b806be4fecb3e1ec3fdd6f390a437dcd52a1be345599f4f1b9287801f6e1301b8fc10fdc9b1cb1f48edb99ec1ae565b5ceee33ec0f639d63e5f4d21cf8925865be92279b2ac36979028746150e3ef54001cab8071611e08aff3405a6de2df0480edaf2d5e1df779de7cc6c6eb37a202f65efcbc75dbb8cb3b39d2136295a84073e4e04d2f09a9f0f87180e5b71a19036c04fc0acee0477c6b0feaf0eda008280ca601d5497d574315427b