iqualify.celiac.org

Issued by COMODO RSA Domain Validation Secure Server CA

About this certificate

This digital certificate with serial number 24:6f:69:94:0a:18:b8:ce:e2:7b:65:50:4b:4b:56:53 was issued on by COMODO CA Limited.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=iqualify.celiac.org,OU=Domain Control Validated+OU=PositiveSSL

COMODO CA Limited

Organization: COMODO CA Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate has expire since

Certificate Details

Serial Number (hex): 24:6f:69:94:0a:18:b8:ce:e2:7b:65:50:4b:4b:56:53
Serial Number (int): 48430694181455509877486495625095370323
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: 49:0e:9a:80:4e:30:74:9b:91:64:a4:9b:6e:c4:f5:45:a5:7a:47:bc
AuthorityKeyId: 90:af:6a:3a:94:5a:0b:d8:90:ea:12:56:73:df:43:b4:3a:28:da:e7

Fingerprint (sha1): 93:bc:56:ef:ea:c9:9a:da:39:69:3d:76:2b:14:b2:0b:ed:56:4e:63
Fingerprint (sha256): a4:53:5d:b7:81:de:88:43:00:d5:d0:00:1f:2c:4e:38:56:99:53:bd:0e:6c:c4:ff:cc:8e:41:33:18:e5:fc:6e

Issuing Certificate URL: http://crt.comodoca.com/COMODORSADomainValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.comodoca.com
CRL Distribution Point: http://crl.comodoca.com/COMODORSADomainValidationSecureServerCA.crl

Check the revocation status for certificate iqualify.celiac.org

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for iqualify.celiac.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

iqualify.celiac.org
www.iqualify.celiac.org

Other certificates including the domain name celiac.org

(limited to 100 certificates)
icure.celiac.org
www.trials.braintumor.org
braintumor-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
icure.celiac.org
arthritis-org.clinicaltrialconnect.com
braintumor-org.clinicaltrialconnect.com
survey.celiac.org
arthritis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
breast-cancer.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
trials.celiac.org
survey.celiac.org
celiac.org
dino18.celiac.org
www.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
iffgd-org.clinicaltrialconnect.com
sni.cloudflaressl.com
braintumor-org.clinicaltrialconnect.com
trials.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
adaptive.celiac.org
breast-cancer.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
braintumor-org.clinicaltrialconnect.com
phactmi-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
aqua.celiac.org
irecruit.celiac.org
adaptive.celiac.org
trials.celiac.org
celiac.org
*.celiac.org
focused-ultrasound-foundation.clinicaltrialconnect.com
iqualify.celiac.org
aqua.celiac.org
braintumor-org.clinicaltrialconnect.com
www.trials.celiac.org
adaptive.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
clinical.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
lazarex.clinicaltrialconnect.com
arthritis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
colontown-org.clinicaltrialconnect.com
arthritis-org.clinicaltrialconnect.com
iffgd-org.clinicaltrialconnect.com
trials.celiac.org
*.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
dino18.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
arthritis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
icure.celiac.org
adaptive.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
celiac.org
iqualify.celiac.org
cure-search.clinicaltrialconnect.com
apollo.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
v8dev.celiac.org
adaptive.celiac.org
irecruit.celiac.org
v8dev.celiac.org
braintumor-org.clinicaltrialconnect.com
trials.celiac.org
v8dev.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
apollo.celiac.org
actionpulmonaryfibrosis-org.clinicaltrialconnect.com
arthritis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
v8dev.celiac.org
v8dev.celiac.org
v8dev.celiac.org
trials.celiac.org
sni.cloudflaressl.com
arthritis-org.clinicaltrialconnect.com
breast-cancer.clinicaltrialconnect.com
celiac.org
breast-cancer.clinicaltrialconnect.com

Certificate

The complete raw certificate details for iqualify.celiac.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1abGMmf6Pk7P8QxWQGrO
z3l+zMIGhuwwMIyMJlSLu646ZQlhGWsFaSKal5RS1YzRUtZMuMArcDvHCu/FESn2
VGArBc1WGZhfdCmEuwc8BvjJKv854U8jQDslrpgoq8tsb1GFrWYLoCJa7W0W0pRd
+FA5hTqEAIOVfkuBS+LIlIkZP2vdr6/PDWjcSNRy2feKBcPPnKPX8yOKsgT25G1B
pPJI4qRjwxNSKt/DSyRb+wGzGxh7NqMPoIafuPGGb6aV46WbrGf8ejR8dnYbmUsD
so9Ov009Xu+WwnILxCn5c+/x7Ks1pJgBMVPyhdPss4Tny+XRcnS9cB1zZty//2M8
YwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 48430694181455509877486495625095370323
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO CA Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'COMODO RSA Domain Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-18 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-10-17 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'PositiveSSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'iqualify.celiac.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26970998384168586395239355133827401552402396406537228402565347218385008216572897912853237853392142948265768057969036617741383601876449261654291336103076761138624955829209729454572267183969555018529951954449648880924570807041173460206521426524104845881128369674033341202743515735773572456894240176268036628431662385904569418460933845110536015522046461809066807647272055500182152157406324464718323869081192931838204033530255241512044641529417685290394953346887810531955018672421364807999967623395602983407534064911748194845029868887662378140977104214090588604808958427671544466857778768656078552827246626901471508249699
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 90af6a3a945a0bd890ea125673df43b43a28dae7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							490e9a804e30749b9164a49b6ec4f545a57a47bc
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (77 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/COMODORSADomainValidationSecureServerCA.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (121 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/COMODORSADomainValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iqualify.celiac.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.iqualify.celiac.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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