karasey.net
Issued by ZeroSSL RSA Domain Secure Site CA
About this certificate
This digital certificate with serial number 1f:a9:46:77:cc:f1:a3:e1:79:72:d1:a7:ef:c6:33:54 was issued on by ZeroSSL.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=karasey.net
ZeroSSL
Organization:
ZeroSSL
Country:
AT
This certificate has expire since
Certificate Details
Serial Number (hex): 1f:a9:46:77:cc:f1:a3:e1:79:72:d1:a7:ef:c6:33:54Serial Number (int): 42084995298675439774712454220574241620
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: c8:71:32:90:5b:4a:b1:7e:33:2f:24:60:2b:f3:f7:c2:b3:ce:49:fb
AuthorityKeyId: c8:d9:78:68:a2:d9:19:68:d5:3d:72:de:5f:0a:3e:dc:b5:86:86:a6
Fingerprint (sha1): b7:b0:d5:9d:e5:ec:a0:88:f9:c8:fc:7c:6e:b3:d2:74:88:6d:19:68
Fingerprint (sha256): a9:0c:cb:23:31:24:ed:8c:be:64:16:eb:01:be:b5:04:0b:70:a5:88:94:49:8f:b8:90:f6:91:80:66:5c:fd:a4
Issuing Certificate URL: http://zerossl.crt.sectigo.com/ZeroSSLRSADomainSecureSiteCA.crt
Revocation information
OCSP Server: http://zerossl.ocsp.sectigo.comCheck the revocation status for certificate karasey.net
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for karasey.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA384 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
karasey.net
www.karasey.net
www.karasey.net
Other certificates including the domain name karasey.net
(limited to 100 certificates)
Certificate
The complete raw certificate details for karasey.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGdjCCBF6gAwIBAgIQH6lGd8zxo+F5ctGn78YzVDANBgkqhkiG9w0BAQwFADBL MQswCQYDVQQGEwJBVDEQMA4GA1UEChMHWmVyb1NTTDEqMCgGA1UEAxMhWmVyb1NT TCBSU0EgRG9tYWluIFNlY3VyZSBTaXRlIENBMB4XDTIzMTIyNzAwMDAwMFoXDTI0 MDMyNjIzNTk1OVowFjEUMBIGA1UEAxMLa2FyYXNleS5uZXQwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQCsgkm1+dntCaqSKSY+GJ999UiQ0dsocjucTRYx AcJwVBEfCYOb/3TsYsoYXMJUbtryeDdGozRD2+9YBWxdhw5O2NP0LYfn2KUMx49c ou8cjgeAalNHDGtJkrga9YS3xos0mzlw+qmBNZpoJq9IhmgqIBtgdky9sQUBL5NM ZeKALh2VY+IC8UZernDyeCdpgPlcW2q8GBpuyhvS2cFlvUSLP1PG8zNnBCfHfF/g 9IHMqAbxybgBfIJYXyewOe/3RxYepXUs2Rd2Lbm6/9Pm0QCqeYiLtstz+2Pq/W51 +qPPczJxxfEtNZpJ4/pnNwTk9nZ0xXmWPdil/NAzxt/XbG2bAgMBAAGjggKJMIIC hTAfBgNVHSMEGDAWgBTI2XhootkZaNU9ct5fCj7ctYaGpjAdBgNVHQ4EFgQUyHEy kFtKsX4zLyRgK/P3wrPOSfswDgYDVR0PAQH/BAQDAgWgMAwGA1UdEwEB/wQCMAAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMEkGA1UdIARCMEAwNAYLKwYB BAGyMQECAk4wJTAjBggrBgEFBQcCARYXaHR0cHM6Ly9zZWN0aWdvLmNvbS9DUFMw CAYGZ4EMAQIBMIGIBggrBgEFBQcBAQR8MHowSwYIKwYBBQUHMAKGP2h0dHA6Ly96 ZXJvc3NsLmNydC5zZWN0aWdvLmNvbS9aZXJvU1NMUlNBRG9tYWluU2VjdXJlU2l0 ZUNBLmNydDArBggrBgEFBQcwAYYfaHR0cDovL3plcm9zc2wub2NzcC5zZWN0aWdv LmNvbTCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2AHb/iD8KtvuVUcJhzPWHujS0 pM27KdxoQgqf5mdMWjp0AAABjKoA3HAAAAQDAEcwRQIhALYttPmfdzQYArX+dAIv lyN5wo3y5a/CGi+r0iLxQbhaAiB8KhLXkLZM7mLMAduFMO/NaxiOam4pMypzgeM2 mJqFsAB3ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjKoA3CQA AAQDAEgwRgIhAIABBMsoAdKL0xc5gcCrjoztTg3O8oYF2plDGaANi+k5AiEA7QVa c3UpGakxdJWYUpDlmnHPMPAmdi2QPhKZ5AGysz8wJwYDVR0RBCAwHoILa2FyYXNl eS5uZXSCD3d3dy5rYXJhc2V5Lm5ldDANBgkqhkiG9w0BAQwFAAOCAgEAXOms1kSt +U6EZTgN6PRt5qDKNFyXt5h9oMssnCQa89OjRAW87xV1xCsDxvfIIz6EBqG98r9L qXDYhH5aWQ4Aj3VqSri2OswOX3L3DHvN34XZ5ZJ9MGUBZnsiTHYjw0QtlrKtqngO uPJ7MCrLoO4IT2LFWfCNOP48KjwpOTca+3wTjFmE+OIKWb6M4sJImJjSlx5VtMWP HDmvKppABVqwcEzM8UsXUxfFzqmpU6Y3U2ovAJSstk1nlo14LAh0hB19uusNDfqg /mi7WKl6t8mkGxIlp7y7HclZz/4hrisGg1QMHU9kGUZ+pdijplcn4+5qELes/yNM 8vCyCnH/3P+EiJnnFq0dMmDgg4btOedabkCHhZuX9nyhicsSO+UskMnneEFyx36p 8ibgZVk1eUqkcKi6C1bnDNwdHKqVtbC7Nkqrrm3B0rhNuAkj7OYj9W30Mgr4Spxw w5gxNfBRcT21b2Al2SSkZMJHqa4ySeCNQGSuXFACr06UsE9G/p93jlIWofD/VL8O M+Qy1FAWcrvlCCRaUWRnpIQoF3exyeI43cExIDF/2cGymaB/3SufvoXSLXcKd57J qeJ6luwY4aozjdvBS2jWtV6x1PbEFlG0237U3B2zVRPzdO6v2mR+iZbTQOR2cM87 MEHwqAaiqKqmOI5+BpClyKzFv6AsUiTfcAY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArIJJtfnZ7QmqkikmPhif ffVIkNHbKHI7nE0WMQHCcFQRHwmDm/907GLKGFzCVG7a8ng3RqM0Q9vvWAVsXYcO TtjT9C2H59ilDMePXKLvHI4HgGpTRwxrSZK4GvWEt8aLNJs5cPqpgTWaaCavSIZo KiAbYHZMvbEFAS+TTGXigC4dlWPiAvFGXq5w8ngnaYD5XFtqvBgabsob0tnBZb1E iz9TxvMzZwQnx3xf4PSBzKgG8cm4AXyCWF8nsDnv90cWHqV1LNkXdi25uv/T5tEA qnmIi7bLc/tj6v1udfqjz3MyccXxLTWaSeP6ZzcE5PZ2dMV5lj3YpfzQM8bf12xt mwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 42084995298675439774712454220574241620 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZeroSSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZeroSSL RSA Domain Secure Site CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-27 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-26 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'karasey.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21777235828448489644822748144714269227478592084345535699042477634056110371274314960337719032176887836820591657224364570227256582457939935627626334120293100624708654503771038493648011676198228447905687369180191928325777153407371906704335904682300164055200500910472514972894498324901424026733406244795282098079069939725504095302732649503518191041831051449523934637401013325481130114247785373494291962297181007189106363853207028095569450120303445325349256466239582616744974406504728220646852250225641391473347526136999937772649672866649757338000979255016242600040836760545795339478915950420388628386829075165799716253083 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c8d97868a2d91968d53d72de5f0a3edcb58686a6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c87132905b4ab17e332f24602bf3f7c2b3ce49fb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.78 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://zerossl.crt.sectigo.com/ZeroSSLRSADomainSecureSiteCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://zerossl.ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018caa00dc700000040300473045022100b62db4f99f77341802b5fe74022f972379c28df2e5afc21a2fabd222f141b85a02207c2a12d790b64cee62cc01db8530efcd6b188e6a6e29332a7381e336989a85b00077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018caa00dc240000040300483046022100800104cb2801d28bd3173981c0ab8e8ced4e0dcef28605da994319a00d8be939022100ed055a73752919a9317495985290e59a71cf30f026762d903e1299e401b2b33f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'karasey.net' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.karasey.net' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (4096 bits) 005ce9acd644adf94e8465380de8f46de6a0ca345c97b7987da0cb2c9c241af3d3a34405bcef1575c42b03c6f7c8233e8406a1bdf2bf4ba970d8847e5a590e008f756a4ab8b63acc0e5f72f70c7bcddf85d9e5927d306501667b224c7623c3442d96b2adaa780eb8f27b302acba0ee084f62c559f08d38fe3c2a3c2939371afb7c138c5984f8e20a59be8ce2c2489898d2971e55b4c58f1c39af2a9a40055ab0704cccf14b175317c5cea9a953a637536a2f0094acb64d67968d782c0874841d7dbaeb0d0dfaa0fe68bb58a97ab7c9a41b1225a7bcbb1dc959cffe21ae2b0683540c1d4f6419467ea5d8a3a65727e3ee6a10b7acff234cf2f0b20a71ffdcff848899e716ad1d3260e08386ed39e75a6e4087859b97f67ca189cb123be52c90c9e7784172c77ea9f226e0655935794aa470a8ba0b56e70cdc1d1caa95b5b0bb364aabae6dc1d2b84db80923ece623f56df4320af84a9c70c3983135f051713db56f6025d924a464c247a9ae3249e08d4064ae5c5002af4e94b04f46fe9f778e5216a1f0ff54bf0e33e432d4501672bbe508245a516467a484281777b1c9e238ddc13120317fd9c1b299a07fdd2b9fbe85d22d770a779ec9a9e27a96ec18e1aa338ddbc14b68d6b55eb1d4f6c41651b4db7ed4dc1db35513f374eeafda647e8996d340e47670cf3b3041f0a806a2a8aaa6388e7e0690a5c8acc5bfa02c5224df7006