secure.umcnic.org
Issued by GlobalSign Domain Validation CA - SHA256 - G2
About this certificate
This digital certificate with serial number 11:21:35:d4:36:bd:8e:e0:f5:91:f1:95:97:b7:db:01:2f:98 was issued on by GlobalSign nv-sa.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=secure.umcnic.org,OU=Domain Control Validated,C=US
GlobalSign nv-sa
Organization:
GlobalSign nv-sa
Country:
BE
This certificate has expire since
Certificate Details
Serial Number (hex): 11:21:35:d4:36:bd:8e:e0:f5:91:f1:95:97:b7:db:01:2f:98Serial Number (int): 1492209729909294232354455165383247231266712
Serial Number lenght: 141 bits, 18 octets
SubjectKeyId: dc:2a:65:ca:72:48:94:f0:c6:de:9e:48:84:57:3a:4c:d3:ef:5a:46
AuthorityKeyId: ea:4e:7c:d4:80:2d:e5:15:81:86:26:8c:82:6d:c0:98:a4:cf:97:0f
Fingerprint (sha1): 7b:6b:47:9c:23:cc:f1:e7:01:5d:96:57:a8:28:6f:41:ac:bb:4d:fc
Fingerprint (sha256): ab:16:52:b1:26:9a:c6:ad:78:2d:fe:ad:a8:b1:7f:f7:e0:29:da:3b:00:fb:30:8e:64:49:cd:90:df:61:8f:70
Issuing Certificate URL: http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt
Revocation information
OCSP Server: http://ocsp2.globalsign.com/gsdomainvalsha2g2CRL Distribution Point: http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl
Check the revocation status for certificate secure.umcnic.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for secure.umcnic.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
secure.umcnic.org
Other certificates including the domain name umcnic.org
(limited to 100 certificates)
umcnic.org
umcnic.org
registration.umcnic.org
umcnic.org
registration.umcnic.org
umcnic.org
umcnic.org
registration.umcnic.org
secure.umcnic.org
umcnic.org
umcnic.org
registration.umcnic.org
registration.umcnic.org
www.umcnic.org
registration.umcnic.org
registration.umcnic.org
registration.umcnic.org
www.umcnic.org
registration.umcnic.org
umcnic.org
umcnic.org
umcnic.org
umcnic.org
registration.umcnic.org
registration.umcnic.org
secure.umcnic.org
www.umcnic.org
www.umcnic.org
umcnic.org
umcnic.org
umcnic.org
umcnic.org
umcnic.org
mail.umcnic.org
registration.umcnic.org
*.umcnic.org
www.umcnic.org
registration.umcnic.org
umcnic.org
registration.umcnic.org
*.umcnic.org
exchange.umcnic.org
umcnic.org
secure.umcnic.org
umcnic.org
*.umcnic.org
umcnic.org
registration.umcnic.org
registration.umcnic.org
www.umcnic.org
registration.umcnic.org
registration.umcnic.org
mail.umcnic.org
umcnic.org
umcnic.org
www.umcnic.org
secure.umcnic.org
mail.umcnic.org
umcnic.org
registration.umcnic.org
umcnic.org
registration.umcnic.org
umcnic.org
umcnic.org
registration.umcnic.org
secure.umcnic.org
umcnic.org
umcnic.org
registration.umcnic.org
registration.umcnic.org
www.umcnic.org
registration.umcnic.org
registration.umcnic.org
registration.umcnic.org
www.umcnic.org
registration.umcnic.org
umcnic.org
umcnic.org
umcnic.org
umcnic.org
registration.umcnic.org
registration.umcnic.org
secure.umcnic.org
www.umcnic.org
www.umcnic.org
umcnic.org
umcnic.org
umcnic.org
umcnic.org
umcnic.org
mail.umcnic.org
registration.umcnic.org
*.umcnic.org
www.umcnic.org
registration.umcnic.org
umcnic.org
registration.umcnic.org
*.umcnic.org
exchange.umcnic.org
umcnic.org
secure.umcnic.org
umcnic.org
*.umcnic.org
umcnic.org
registration.umcnic.org
registration.umcnic.org
www.umcnic.org
registration.umcnic.org
registration.umcnic.org
mail.umcnic.org
umcnic.org
umcnic.org
www.umcnic.org
secure.umcnic.org
mail.umcnic.org
Certificate
The complete raw certificate details for secure.umcnic.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE/TCCA+WgAwIBAgISESE11Da9juD1kfGVl7fbAS+YMA0GCSqGSIb3DQEBCwUA MGAxCzAJBgNVBAYTAkJFMRkwFwYDVQQKExBHbG9iYWxTaWduIG52LXNhMTYwNAYD VQQDEy1HbG9iYWxTaWduIERvbWFpbiBWYWxpZGF0aW9uIENBIC0gU0hBMjU2IC0g RzIwHhcNMTUwNjA3MTY1OTQyWhcNMTYwOTA1MTYxMDA4WjBMMQswCQYDVQQGEwJV UzEhMB8GA1UECxMYRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkMRowGAYDVQQDExFz ZWN1cmUudW1jbmljLm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AMgRFhMuXbyZRrU9xepgqcYg8ZHrPbZRZdaju4jl4Oqp0cujSgf2xuXVLQY4v2GG M2DQBvWkKMqFS2ebwR6l4p4w4YTGovUhMZH7gDAXSoP0VZ+Ei1aUu6Ya4CVUfFXh qrzah/ov/HK7E9ub4z9Uq48l0vIxK7jpZ4MV+QT21VKllbrzybj8aqPFJA2itRL5 Yg4yHaxslGbZ5VlygLXH3W7c1iVJdfGX/nBU+kbKDCYBj8+DKjZal+peGebnMhEP EMtjQKhcELgSMpioIewXANCZZnluBfjXVe+gtwIsngCogVWeqgu14GiXGkgpMsSY FygHDZxEHyuuJ7SlSm+e5v0CAwEAAaOCAcMwggG/MA4GA1UdDwEB/wQEAwIFoDBJ BgNVHSAEQjBAMD4GBmeBDAECATA0MDIGCCsGAQUFBwIBFiZodHRwczovL3d3dy5n bG9iYWxzaWduLmNvbS9yZXBvc2l0b3J5LzAcBgNVHREEFTATghFzZWN1cmUudW1j bmljLm9yZzAJBgNVHRMEAjAAMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjBDBgNVHR8EPDA6MDigNqA0hjJodHRwOi8vY3JsLmdsb2JhbHNpZ24uY29tL2dz L2dzZG9tYWludmFsc2hhMmcyLmNybDCBlAYIKwYBBQUHAQEEgYcwgYQwRwYIKwYB BQUHMAKGO2h0dHA6Ly9zZWN1cmUuZ2xvYmFsc2lnbi5jb20vY2FjZXJ0L2dzZG9t YWludmFsc2hhMmcycjEuY3J0MDkGCCsGAQUFBzABhi1odHRwOi8vb2NzcDIuZ2xv YmFsc2lnbi5jb20vZ3Nkb21haW52YWxzaGEyZzIwHQYDVR0OBBYEFNwqZcpySJTw xt6eSIRXOkzT71pGMB8GA1UdIwQYMBaAFOpOfNSALeUVgYYmjIJtwJikz5cPMA0G CSqGSIb3DQEBCwUAA4IBAQA3OUjJ9dz4TC0YIBHBJONe3lh4xS4+a2rXYRKQl3/s hZAss14UPR2mz0Io0rjHr2Lo8C0BaHV2MnsHbj7chR/wUKaOZFedMulezhiC9YIa G6ajCnaPpKf6MLAiTk1f9fu9uQoXaWbiraJvi9+kRFNFJBjBsIPIPAL4gRI81DCL d5cGcsp22ntSupm5ToF+KyrAed8/1ge995/N8v2kCDa6Rh92uF7MqMiO1GEYtHkf JHOhZ/dJm9W+vDrxq/fv/MM2bpyC4u9y0NMbZkm+c7ogk64bIjHVuKoCn0B38tIE u/+7kOSYj6Qbyry9oGSPhBGyn005vFYSKjcFk3MJ4g15 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBEWEy5dvJlGtT3F6mCp xiDxkes9tlFl1qO7iOXg6qnRy6NKB/bG5dUtBji/YYYzYNAG9aQoyoVLZ5vBHqXi njDhhMai9SExkfuAMBdKg/RVn4SLVpS7phrgJVR8VeGqvNqH+i/8crsT25vjP1Sr jyXS8jEruOlngxX5BPbVUqWVuvPJuPxqo8UkDaK1EvliDjIdrGyUZtnlWXKAtcfd btzWJUl18Zf+cFT6RsoMJgGPz4MqNlqX6l4Z5ucyEQ8Qy2NAqFwQuBIymKgh7BcA 0JlmeW4F+NdV76C3AiyeAKiBVZ6qC7XgaJcaSCkyxJgXKAcNnEQfK64ntKVKb57m /QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1492209729909294232354455165383247231266712 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'BE' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign nv-sa' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GlobalSign Domain Validation CA - SHA256 - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-06-07 16:59:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-05 16:10:08 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'secure.umcnic.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25256086527337750719065322486671978229667686651024733894381007573461455930544039280613108618951428264066076534373770117926568457360917450544818697171289268655669447898113117229035486791697478794339077606190282519899040214648244395907951598639358462211217671061624617473403754825305783250026025502615353850472259934800738398965808693466578469301826793566892405523847700664804527398285723609608072993620300634758100765562590516834112069073855659037545082845334970281006720559853234021173411628971593789069129686030375274789849193473864359186111432965784849997171697273961398293360267979619423557244339866561166622779133 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.globalsign.com/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.umcnic.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.globalsign.com/gs/gsdomainvalsha2g2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (135 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://secure.globalsign.com/cacert/gsdomainvalsha2g2r1.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.globalsign.com/gsdomainvalsha2g2' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dc2a65ca724894f0c6de9e4884573a4cd3ef5a46 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ea4e7cd4802de5158186268c826dc098a4cf970f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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