cb.mbank.kiev.ua
Issued by RapidSSL CA
About this certificate
This digital certificate with serial number 12:72:68 was issued on by GeoTrust, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
SERIALNUMBER=n43aQdWamaNrkfpIP1l4UZnUbel8TUZm,CN=cb.mbank.kiev.ua,OU=GT57068604+OU=See www.rapidssl.com/resources/cps (c)14+OU=Domain Control Validated - RapidSSL(R)
GeoTrust, Inc.
Organization:
GeoTrust, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 12:72:68Serial Number (int): 1208936
Serial Number lenght: 21 bits, 3 octets
SubjectKeyId: 03:ce:79:36:6f:87:32:46:1f:3e:9b:57:45:fc:fd:82:b0:01:36:e6
AuthorityKeyId: 6b:69:3d:6a:18:42:4a:dd:8f:02:65:39:fd:35:24:86:78:91:16:30
Fingerprint (sha1): 76:74:56:39:67:4d:22:2b:72:e0:0c:d2:38:6b:be:b7:7b:1c:c4:a7
Fingerprint (sha256): b0:cd:75:9a:43:9e:64:2f:d4:15:d5:2d:4a:01:75:23:4f:53:f8:10:2f:1e:c8:4c:d7:63:be:27:f6:1a:d9:bc
Issuing Certificate URL: http://rapidssl-aia.geotrust.com/rapidssl.crt
Revocation information
OCSP Server: http://rapidssl-ocsp.geotrust.comCRL Distribution Point: http://rapidssl-crl.geotrust.com/crls/rapidssl.crl
Check the revocation status for certificate cb.mbank.kiev.ua
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cb.mbank.kiev.ua
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cb.mbank.kiev.ua
Other certificates including the domain name mbank.kiev.ua
(limited to 100 certificates)
*.mbank.kiev.ua
mpay.mbank.kiev.ua
startcredit.mbank.kiev.ua
mexpress.mbank.kiev.ua
support.mbank.kiev.ua
*.mbank.kiev.ua
mpay.mbank.kiev.ua
lyncedge.mbank.kiev.ua
webmail.mbank.kiev.ua
startcredit.mbank.kiev.ua
webmail.mbank.kiev.ua
mexpress.mbank.kiev.ua
webmail.mbank.kiev.ua
webmail.mbank.kiev.ua
*.mbank.kiev.ua
cb.mbank.kiev.ua
mpay.mbank.kiev.ua
webmail.mbank.kiev.ua
webmail.mbank.kiev.ua
webmail.mbank.kiev.ua
mexpress.mbank.kiev.ua
mexpress.mbank.kiev.ua
mexpress.mbank.kiev.ua
mpay.mbank.kiev.ua
startcredit.mbank.kiev.ua
mexpress.mbank.kiev.ua
support.mbank.kiev.ua
*.mbank.kiev.ua
mpay.mbank.kiev.ua
lyncedge.mbank.kiev.ua
webmail.mbank.kiev.ua
startcredit.mbank.kiev.ua
webmail.mbank.kiev.ua
mexpress.mbank.kiev.ua
webmail.mbank.kiev.ua
webmail.mbank.kiev.ua
*.mbank.kiev.ua
cb.mbank.kiev.ua
mpay.mbank.kiev.ua
webmail.mbank.kiev.ua
webmail.mbank.kiev.ua
webmail.mbank.kiev.ua
mexpress.mbank.kiev.ua
mexpress.mbank.kiev.ua
mexpress.mbank.kiev.ua
Certificate
The complete raw certificate details for cb.mbank.kiev.ua in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFJjCCBA6gAwIBAgIDEnJoMA0GCSqGSIb3DQEBBQUAMDwxCzAJBgNVBAYTAlVT MRcwFQYDVQQKEw5HZW9UcnVzdCwgSW5jLjEUMBIGA1UEAxMLUmFwaWRTU0wgQ0Ew HhcNMTQwNDI2MjIwNjUxWhcNMTcwNDI4MTg1MDEyWjCBvzEpMCcGA1UEBRMgbjQz YVFkV2FtYU5ya2ZwSVAxbDRVWm5VYmVsOFRVWm0xEzARBgNVBAsTCkdUNTcwNjg2 MDQxMTAvBgNVBAsTKFNlZSB3d3cucmFwaWRzc2wuY29tL3Jlc291cmNlcy9jcHMg KGMpMTQxLzAtBgNVBAsTJkRvbWFpbiBDb250cm9sIFZhbGlkYXRlZCAtIFJhcGlk U1NMKFIpMRkwFwYDVQQDExBjYi5tYmFuay5raWV2LnVhMIIBIjANBgkqhkiG9w0B AQEFAAOCAQ8AMIIBCgKCAQEAmIbV9bV7kNFqjYsEpabpc3hSaqInWUfwc/e5TIm0 60CylZnPDcvLXCBJ1K+Ww3gN1Gh96lu9/bTVVREE50YX17PxpTWl8Qr/QTqRHKk3 fW+QPyuVjDreeNK005D2treqwG+OunDoP6nY/ExXv+5jIES8SCntLvRV2oFOUQAN mtaUZOHkLOyeQP3qYSJCOiOzQl/auzsqk2rNOXJCP24iUxRNUVLgHMK0BLxsvltR mM3+V6V2oJUgAjmVyHqXTYChMPXwZpMx7sJWBqxyNlGuXWv+M0gopJX2uuBI1i/U XGGxJjB23k60O8U7dXG1cORvlFC0h/VJnJyj9mxDlLDTOQIDAQABo4IBqzCCAacw HwYDVR0jBBgwFoAUa2k9ahhCSt2PAmU5/TUkhniRFjAwDgYDVR0PAQH/BAQDAgWg MB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAbBgNVHREEFDASghBjYi5t YmFuay5raWV2LnVhMEMGA1UdHwQ8MDowOKA2oDSGMmh0dHA6Ly9yYXBpZHNzbC1j cmwuZ2VvdHJ1c3QuY29tL2NybHMvcmFwaWRzc2wuY3JsMB0GA1UdDgQWBBQDznk2 b4cyRh8+m1dF/P2CsAE25jAMBgNVHRMBAf8EAjAAMHgGCCsGAQUFBwEBBGwwajAt BggrBgEFBQcwAYYhaHR0cDovL3JhcGlkc3NsLW9jc3AuZ2VvdHJ1c3QuY29tMDkG CCsGAQUFBzAChi1odHRwOi8vcmFwaWRzc2wtYWlhLmdlb3RydXN0LmNvbS9yYXBp ZHNzbC5jcnQwTAYDVR0gBEUwQzBBBgpghkgBhvhFAQc2MDMwMQYIKwYBBQUHAgEW JWh0dHA6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9jcHMwDQYJKoZIhvcN AQEFBQADggEBAHa+6SUqlKo0FNE3ve0lCyrDcO8CnlHdQcWCGrkwq1+J1yo8zIk6 EY55PdV7hZTnrD+P2TULC6Vp3Ti9st9wBE3DNffqUypvETrKCMG+rLUHcF+PH/ON ZYwVI5ejTELPYCk1vANnXSst0A9T6XkxjoyYFFm1HqTNXNEUhpsJP9BUtDtiDaQF Ch10imoFv4p5WnVwBOk1LRDG3w35SeoghRYfvxx8h4QedezBidxC0qfnwBOErG4k gqE9/hrHNxdvgxh2wau5M7pfD0DxgilklrPwW3uWc4muqhl/VZxA0l6zmdqWLKDh FHl6FXzC3VkMBZ3vNTlioD4oWJ28G6ef2wk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmIbV9bV7kNFqjYsEpabp c3hSaqInWUfwc/e5TIm060CylZnPDcvLXCBJ1K+Ww3gN1Gh96lu9/bTVVREE50YX 17PxpTWl8Qr/QTqRHKk3fW+QPyuVjDreeNK005D2treqwG+OunDoP6nY/ExXv+5j IES8SCntLvRV2oFOUQANmtaUZOHkLOyeQP3qYSJCOiOzQl/auzsqk2rNOXJCP24i UxRNUVLgHMK0BLxsvltRmM3+V6V2oJUgAjmVyHqXTYChMPXwZpMx7sJWBqxyNlGu XWv+M0gopJX2uuBI1i/UXGGxJjB23k60O8U7dXG1cORvlFC0h/VJnJyj9mxDlLDT OQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1208936 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-04-26 22:06:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-28 18:50:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'n43aQdWamaNrkfpIP1l4UZnUbel8TUZm' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT57068604' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)14' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cb.mbank.kiev.ua' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19254712356307220783088682504449206375612319290597397963327653212101788739709359358520401342001877663357399457978785387569489405589722540153195451248646545015829605946490639177244429519471932285950106280921472612502631196072700964008034839622226834598684482418574158526424577000775474142420067973642168363106970735511587316427299742071692580487271160280642399023205038644883589998277206647998039582449066425284496858963196939450726355975946307707164448760709973998187070061297080374830438170343580678701284196966326238547611902748095372005727311364174565884246615143639019378259408314805713314076630571774009551147833 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6b693d6a18424add8f026539fd35248678911630 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cb.mbank.kiev.ua' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (60 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-crl.geotrust.com/crls/rapidssl.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 03ce79366f8732461f3e9b5745fcfd82b00136e6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-ocsp.geotrust.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://rapidssl-aia.geotrust.com/rapidssl.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.geotrust.com/resources/cps' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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