www.alpho.com

Issued by GeoTrust Global TLS RSA4096 SHA256 2022 CA1

About this certificate

This digital certificate with serial number 0b:63:8f:34:42:76:f1:e3:18:3b:32:7d:2c:cc:3a:87 was issued on by DigiCert, Inc..

With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.alpho.com

DigiCert, Inc.

Organization: DigiCert, Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0b:63:8f:34:42:76:f1:e3:18:3b:32:7d:2c:cc:3a:87
Serial Number (int): 15138449867636601642185198009651575431
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 11:93:9a:65:d8:dc:9f:11:1d:92:0e:67:64:ab:37:4f:07:15:ec:df
AuthorityKeyId: a5:b4:d6:eb:36:c4:e7:6b:a6:df:c4:64:0b:01:2a:20:04:b8:66:23

Fingerprint (sha1): 04:84:85:35:09:b4:95:fc:b3:f6:91:c7:83:83:ab:12:c5:fd:82:b1
Fingerprint (sha256): b4:8b:77:90:07:7a:27:2e:a5:5c:9f:31:de:59:3e:ef:8c:34:5f:75:90:a7:dc:8b:f3:95:1c:5e:28:0f:6f:b0

Issuing Certificate URL: http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt

Revocation information

OCSP Server: http://ocsp.digicert.com
CRL Distribution Point: http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl
CRL Distribution Point: http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl

Check the revocation status for certificate www.alpho.com

3

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.alpho.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.alpho.com
alpho.com
backend.alpho.com

Other certificates including the domain name alpho.com

(limited to 100 certificates)
rsnchallenge.neoufitness.com
www.clapclap.xyz
coincord.co
app.alpho.com
demo.readyup.com
www.alpho.com
www.alpho.com
displayv4test.order.place
www.alpho.com
www.alpho.com
icrpg.kelculus.com
app.alpho.com
www.alpho.com
www.alpho.com
www.alpho.com

Certificate

The complete raw certificate details for www.alpho.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2wPK10WQ/3VEsBApmpWU
UjD/1x9i5X82SpW4h5hBNW1MmaX/ZT0q7iXofexGn8n31S0ZQ64HCLZO11PslaVy
1h5rPZZFQg0qQ8ef519KB8XoPo9YlBgUJ3AXIxCVVAxM+prwH+2Rsc/ZqU0SqB+i
yvRjq17jezqBYzAj4mAj7BPheG9OUcCTln9JmduNmnOEEihBxJv0UNHBaPOWX3qK
j3RSM+ILiysZuoxYcKPoQVV80u4+EYtbmiyvvgFliMH0hMDmr1lIHsQUM345ocdS
YZGe9eVV16LXcyG985yIUWTUQzP3BapeZp869a1Plx8mQkgCPwztpPCYGSeZHBZu
k0x/VwCR6hFJ/rsSqQ/g2lJ8C4/EiYTaI9T210Yf4bfMAeJXQUnBV3JF+3KwkDdH
rCpq9jIObCladWfikBJraK0oziJVxZcbskrp2Kb5Qsx5NG10M/jNiJyIw9hkavtc
l2sBrja9M+7qrEAJe2Ck1Uz6YvPY5VBJh6NxdQSqNun6GUvlg+Y1xmrMk7i3Mtiw
JHTdUFnTXfP/tvtl6+EU7ibhX+w54gFurawqbu/2G2VPnBUt+YrsyNlHQLNE1lPo
sDwr8COzIa/Hn5Ki483GngfA2tYyw5HCOUek5nQK/jEtGVsvnzT9IF9tiFumuK9s
gRdoCNHU+dAK0zTyJrlhZbsCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 15138449867636601642185198009651575431
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Global TLS RSA4096 SHA256 2022 CA1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-09-06 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-23 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.alpho.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 893502486158555183076536077146686271676989782843025467695929712933903966110302116460096935951063058673508016981460718112916599704787385264562732830980557349290405754832423674694468162150208471355376722611125940536969335924175668304541766369897024603718642229856097529729739325326495935730398207430087138721098466538553197874648394202490571511235870587543391726988122653744881595238658095146526136043889038052131824214458358629227833942975985783002801621837999131063499297696317143804359272371482355625194827289509155501374511155402870309847960513996484050602265217985504837738188562560444550947145022928959598827434986307878603872776553984306586962979168778084208685510997528979741618506056077433592766102833006086578111699219293559064340614383191726531243644863162064560436810356938385136565343281566847608279949550683035196511609742208848902309663249224938115812782673993659714531158046547708511285901119517360428050107554260509738224408497789407862107187408200114734055880167929447812022958535832075012238262940951683569121917518832093507083952051421924227122943175576242320828047867870803651815687845918218813050902894167672892658699961469088594015690211285716420593345222528721443996627299706846327953647085938975349273633318331
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a5b4d6eb36c4e76ba6dfc4640b012a2004b86623
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							11939a65d8dc9f111d920e6764ab374f0715ecdf
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.alpho.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alpho.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'backend.alpho.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (151 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (123 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/GeoTrustGlobalTLSRSA4096SHA2562022CA1.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		00a5f126faf75022665476051b975f70edb49249682cd8aa882154898b25944a30555b488275a711bf9f840bac214e565ebbfb4db0b92472c3374169aa733d36cce8193803f46147aad3c07afcb3fd82f7ec7cb3893ec8148b18babd3fae5520ea200c866cb648b1391470ddcb7d6756c451f0b97c45374df92217f393a7cd6d9a4e3e4802623612a2cae9bc74f740d2d97166094c127a4163245208e11cd5c862b5959406ab0eac2bafa14e2b8933bbc9145ff5cb39a6ca9bb42ca86c02fa1394db940027f0fc1b2ca08c29ad11db4caf2e93b6a85c93c147b94b4523eef04f986d0e31af3cf0b94143d04c8a0f7d0c0292ad013f5844bdae3d56b15ea46c60e9b6d0ca724014dc531dc4ab4e211f7bea23c9ce69601ba60d2482787dcde5e7dc8329469eeccf85f17d4c7024650c97a1dae03ecfff2b24be8b0cc605ff9854e51a99f937b3816d8b423d4fbe0d2f2ecc64c7da03b5f47b189e4fea4edc451dbfdc47e1aa253cbf87628c9386d40a077381d7296b387acfa7c8e9955da22480b5a4adb712cad87ce8f7e5b4bdcae4543107907cc7461f61fd6b1a7ba6309d8891d08ae2d4e15edc872f5a30109c5f865b210658c8bc508d618b2a9640b0ebb6c9e574a902751cd46c9a246d355d12569905a666630a8374e3f51e762a8c76e875b70a5547a52fcc74622712b36414dd1e883c8ad768647af2a9dee42a701bbcd1