*.sito.fi
- Sito Oy -
Issued by GeoTrust SSL CA - G2
About this certificate
This digital certificate with serial number 0b:27:f5:22:ef:48:6e:14:ee:f4:8e:14:1c:59:e6:f2 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Sito Oy
Organization:
Sito Oy
State / Province:
Uusimaa
Locality: Espoo
Country: FI
Locality: Espoo
Country: FI
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0b:27:f5:22:ef:48:6e:14:ee:f4:8e:14:1c:59:e6:f2Serial Number (int): 14828979489281832876476177630319208178
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 11:4a:d0:73:39:d5:5b:69:08:5c:ba:3d:bf:64:9a:a8:8b:1c:55:bc
Fingerprint (sha1): fd:3c:89:27:a7:a4:cd:a1:84:88:5a:8c:b5:f0:ec:39:fa:5d:7b:2f
Fingerprint (sha256): 98:2c:51:fc:ad:59:33:6e:91:71:af:ba:7d:93:5d:0d:01:a8:b2:a8:88:19:cd:42:06:1f:95:f7:f7:d3:e6:de
Issuing Certificate URL: http://gtssl2-aia.geotrust.com/gtssl2.cer
Revocation information
OCSP Server: http://gtssl2-ocsp.geotrust.comCRL Distribution Point: http://gtssl2-crl.geotrust.com/gtssl2.crl
Check the revocation status for certificate *.sito.fi
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.sito.fi
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.sito.fi
sito.fi
sito.fi
Other certificates including the domain name sito.fi
(limited to 100 certificates)
*.sito.fi
www.sito.fi
kaiku.sito.fi
benviroc.com
benviroc.com
uutiskirje.sito.fi
*.sito.fi
webmail.sito.fi
webmail.sito.fi
benviroc.com
kaiku.sito.fi
kaiku.sito.fi
*.sito.fi
kaiku.sito.fi
kaiku.sito.fi
kaiku.sito.fi
kaiku.sito.fi
webmail.sito.fi
benviroc.com
*.sito.fi
kaiku.sito.fi
mail.sito.fi
kaiku.sito.fi
kaikukartta.sito.fi
webmail.sito.fi
www.sito.fi
www.sito.fi
*.sito.fi
benviroc.com
kaiku.sito.fi
sip.sito.fi
benviroc.com
ucwsext.sito.fi
*.sito.fi
kaiku.sito.fi
www.sito.fi
www.sito.fi
kaiku.sito.fi
benviroc.com
benviroc.com
uutiskirje.sito.fi
*.sito.fi
webmail.sito.fi
webmail.sito.fi
benviroc.com
kaiku.sito.fi
kaiku.sito.fi
*.sito.fi
kaiku.sito.fi
kaiku.sito.fi
kaiku.sito.fi
kaiku.sito.fi
webmail.sito.fi
benviroc.com
*.sito.fi
kaiku.sito.fi
mail.sito.fi
kaiku.sito.fi
kaikukartta.sito.fi
webmail.sito.fi
www.sito.fi
www.sito.fi
*.sito.fi
benviroc.com
kaiku.sito.fi
sip.sito.fi
benviroc.com
ucwsext.sito.fi
*.sito.fi
kaiku.sito.fi
www.sito.fi
Certificate
The complete raw certificate details for *.sito.fi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEoTCCA4mgAwIBAgIQCyf1Iu9IbhTu9I4UHFnm8jANBgkqhkiG9w0BAQUFADBE MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UEAxMU R2VvVHJ1c3QgU1NMIENBIC0gRzIwHhcNMTQwNDIyMDAwMDAwWhcNMTUwNDIyMjM1 OTU5WjBVMQswCQYDVQQGEwJGSTEQMA4GA1UECBMHVXVzaW1hYTEOMAwGA1UEBxQF RXNwb28xEDAOBgNVBAoUB1NpdG8gT3kxEjAQBgNVBAMUCSouc2l0by5maTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANMWBMVjEdVZd+YRmCAzNQqt4nkz GPA+Nj07Wu0lQdCPuGxQqBksBWCjL0GyWNZEgJ+ruHpbUEOfvwzQY/BGG/1SXOYb Mqpp5/FZG9saAb+MHqxTeKRJzWqlmLz6uM91Wl59vDwJooGrxXEY5lMqgK1ALCR6 duoa/G6w0MtKlEUjMeZPeKl6goowa9C/BO3H6R5sBZ3RVmhdzTi16zJo39iB1/lT iDofKxwaO07rb4k+7A55V+cl49ylIlyar8BcEITtSB2HPoKCHQIFT2a0YnpygQrG pA+ZFpHJ2BhqANwW2HPHB+bVIKqnOYMNzDOCM/N6rve9rAsroSEhwfzAXKsCAwEA AaOCAXwwggF4MB0GA1UdEQQWMBSCCSouc2l0by5maYIHc2l0by5maTAJBgNVHRME AjAAMA4GA1UdDwEB/wQEAwIFoDA6BgNVHR8EMzAxMC+gLaArhilodHRwOi8vZ3Rz c2wyLWNybC5nZW90cnVzdC5jb20vZ3Rzc2wyLmNybDBMBgNVHSAERTBDMEEGCmCG SAGG+EUBBzYwMzAxBggrBgEFBQcCARYlaHR0cDovL3d3dy5nZW90cnVzdC5jb20v cmVzb3VyY2VzL2NwczAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYD VR0jBBgwFoAUEUrQcznVW2kIXLo9v2SaqIscVbwwcgYIKwYBBQUHAQEEZjBkMCsG CCsGAQUFBzABhh9odHRwOi8vZ3Rzc2wyLW9jc3AuZ2VvdHJ1c3QuY29tMDUGCCsG AQUFBzAChilodHRwOi8vZ3Rzc2wyLWFpYS5nZW90cnVzdC5jb20vZ3Rzc2wyLmNl cjANBgkqhkiG9w0BAQUFAAOCAQEAocfhw433/1N3Hv984G0yW4ByP7iC+UZGcV80 IOOgtNWRtzc4QRlr5Rja8KHYLyqjOOg6T6Ws+RpRBNizVCGR9/fn7c3B8FLK5nrU S6Ppk386BTtXqBhh36ennbwRVv7SCduBpH2LKcE1rcIqVO3jZ8ymcoXdu4wWGSHi CrlBTvakDXqsjVRw/mVdS/vC2cSCByJ2ElGXCd+z0pR+rN3tv/+hFxFGMy1Xzoz+ HEV+scjoJnSpzXZ5Z8lBD7rup+xTHMPxOziZ7ZR3bdAt76TkRkRBlqQmjilO7dOO nfdeGobgIpKTgd67hhkoxrMADopHhLoDTx3CGdrmxS1OOAKOKA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xYExWMR1Vl35hGYIDM1 Cq3ieTMY8D42PTta7SVB0I+4bFCoGSwFYKMvQbJY1kSAn6u4eltQQ5+/DNBj8EYb /VJc5hsyqmnn8Vkb2xoBv4werFN4pEnNaqWYvPq4z3VaXn28PAmigavFcRjmUyqA rUAsJHp26hr8brDQy0qURSMx5k94qXqCijBr0L8E7cfpHmwFndFWaF3NOLXrMmjf 2IHX+VOIOh8rHBo7TutviT7sDnlX5yXj3KUiXJqvwFwQhO1IHYc+goIdAgVPZrRi enKBCsakD5kWkcnYGGoA3BbYc8cH5tUgqqc5gw3MM4Iz83qu972sCyuhISHB/MBc qwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 14828979489281832876476177630319208178 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-04-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-04-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'FI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Uusimaa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Espoo' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Sito Oy' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '*.sito.fi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26647140142362625177336219824138845177660635266835233679281416459640628383452120632383947610094739453579403485372095605381323724327034728434388326235765941820107113246361255251048134795807389485508733660146005779475848022334248805831120434646539902924470333463938288373419026940197458626255797017406818767363603388838019491539956786647638535861971329113081785492442213004378659315064004680835227117852848135685832500226757760573722995266268342441382109386403754406292328990507092119621387821718806756329522817555446646490294812566492586770934457000066819227321932402267199446267968520150817562526126447383760095698091 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sito.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sito.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl2-crl.geotrust.com/gtssl2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 114ad07339d55b69085cba3dbf649aa88b1c55bc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (102 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl2-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gtssl2-aia.geotrust.com/gtssl2.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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