odix.org
Issued by Encryption Everywhere DV TLS CA - G2
About this certificate
This digital certificate with serial number 0d:d5:8a:c0:e3:ad:cb:1d:4d:50:32:b6:83:cc:17:ed was issued on by DigiCert Inc.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=odix.org
DigiCert Inc
Organization:
DigiCert Inc
Organization unit: www.digicert.com
Organization unit: www.digicert.com
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 0d:d5:8a:c0:e3:ad:cb:1d:4d:50:32:b6:83:cc:17:edSerial Number (int): 18388737430867531879059080804723070957
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: ea:23:aa:89:70:47:4b:d6:c5:af:6d:e8:d5:0e:21:de:54:0b:db:90
AuthorityKeyId: 78:df:91:90:5f:ee:de:ac:f6:c5:75:eb:d5:4c:55:53:ef:24:4a:b6
Fingerprint (sha1): d5:67:17:11:5a:b0:7e:e0:30:db:73:40:2b:a9:1f:e0:af:5b:5c:c7
Fingerprint (sha256): b5:37:df:65:00:b1:11:db:1e:12:a6:fc:a7:26:55:cb:fe:35:c5:b1:a8:d9:bf:07:96:5c:74:6d:7b:6f:0c:e1
Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt
Revocation information
OCSP Server: http://ocsp.digicert.comCheck the revocation status for certificate odix.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for odix.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
odix.org
Other certificates including the domain name odix.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for odix.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF6DCCBNCgAwIBAgIQDdWKwOOtyx1NUDK2g8wX7TANBgkqhkiG9w0BAQsFADBu MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMRGlnaUNlcnQgSW5jMRkwFwYDVQQLExB3 d3cuZGlnaWNlcnQuY29tMS0wKwYDVQQDEyRFbmNyeXB0aW9uIEV2ZXJ5d2hlcmUg RFYgVExTIENBIC0gRzIwHhcNMjMxMTA3MDAwMDAwWhcNMjQxMTA2MjM1OTU5WjAT MREwDwYDVQQDEwhvZGl4Lm9yZzCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBANuoOcrHUzG9VFE6uvyLpvR4jzgeE03pmQEfvIA6oQBRpd4LviVs7BrMqQ+F cE64xW9XxDec3RXJXJfMS4dJYEB/cTjo2eVGnu3SOBQlGTUvlY6RMcNqSLAjuR2z z2TbvtwdSvJ6ilF6jsY9hyQN3cwFl9UB8hi9VXlOBQS68SCSCeoA+vHFfFJVaT+i SodZcdPoNbVcQGzvC7+ZPYCRnyjaEw6NGl4x9ZCCSYAbI8i+A+tqLQDzO7+hCtN7 w+FMORhTe98U7T+ksHQMwDHpVpV5dGoUm+B4XorVa9JW9FSV+XY1yBbx3yLUiky8 aL+Wyp2YpINYfB3iMj8+BUQ9AskCAwEAAaOCAtswggLXMB8GA1UdIwQYMBaAFHjf kZBf7t6s9sV169VMVVPvJEq2MB0GA1UdDgQWBBTqI6qJcEdL1sWvbejVDiHeVAvb kDATBgNVHREEDDAKgghvZGl4Lm9yZzA+BgNVHSAENzA1MDMGBmeBDAECATApMCcG CCsGAQUFBwIBFhtodHRwOi8vd3d3LmRpZ2ljZXJ0LmNvbS9DUFMwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjCBgAYIKwYBBQUH AQEEdDByMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5kaWdpY2VydC5jb20wSgYI KwYBBQUHMAKGPmh0dHA6Ly9jYWNlcnRzLmRpZ2ljZXJ0LmNvbS9FbmNyeXB0aW9u RXZlcnl3aGVyZURWVExTQ0EtRzIuY3J0MAwGA1UdEwEB/wQCMAAwggF+BgorBgEE AdZ5AgQCBIIBbgSCAWoBaAB2AO7N0GTV2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZx H7WbAAABi6kAhjMAAAQDAEcwRQIhANeJAuKpSKZqB16EeAjFLSwEbONDDs4tpmCp 9FnaGa/jAiBY/pD8oDWqPP11ktKGp59oCS+u64mTKrfu3WIHTCxUowB3AEiw42va pkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRzAAABi6kAhgAAAAQDAEgwRgIhAIen Bo/HuTMoJKzKSvRPYPoqY2l2HuaUkNxDYU6SG3OwAiEAtIhPJdH36U76hBWZbBcA uwj0Q8ixCM1U1rHk65yXuYsAdQA/F0tP1yJHWJQdZRyEvg0S7ZA3fx+FauvBvyiF 7PhkbgAAAYupAIZCAAAEAwBGMEQCIBRNV8Tz/9WhcS7oYfHWjwgGa8SI92LGpiNB e33AJnzuAiAt+jIY4OPb2a8C42+CNf/lI6JAIx66lpf7cXijT5WeLjANBgkqhkiG 9w0BAQsFAAOCAQEAhiL2mvtKVtA8quKWZ/NDrz9fO3Of1sUQqgMvot7Kjm7scm9/ Iyrj1EHlg8lL4QP7kzA5vQ4c/FsHhnF+b4qdscYVqshpnWPpv4OQI+bD/Hso1FeD wAAFF4Oxl6sT4eBy3C3o5j+tFTW4YVbl9VTHpFKF3RDuw1dRbYSFHx/w5aoxVqd2 J8RBX0gjpfrUW3BGUrs6icL7i97J0wpJYXfnIWh91xe9GnYZHvbjzXrNKD37j0k0 4gSVX7zqG+AK/xZl/IQPztJjvxo9ddo+Igbgjt1ufNCtP42IhqURk+rKyRaKKdXD E5ZLWIuSBfYqTUeEFYXZI26o+21/vZFoslPoew== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA26g5ysdTMb1UUTq6/Ium 9HiPOB4TTemZAR+8gDqhAFGl3gu+JWzsGsypD4VwTrjFb1fEN5zdFclcl8xLh0lg QH9xOOjZ5Uae7dI4FCUZNS+VjpExw2pIsCO5HbPPZNu+3B1K8nqKUXqOxj2HJA3d zAWX1QHyGL1VeU4FBLrxIJIJ6gD68cV8UlVpP6JKh1lx0+g1tVxAbO8Lv5k9gJGf KNoTDo0aXjH1kIJJgBsjyL4D62otAPM7v6EK03vD4Uw5GFN73xTtP6SwdAzAMelW lXl0ahSb4HheitVr0lb0VJX5djXIFvHfItSKTLxov5bKnZikg1h8HeIyPz4FRD0C yQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18388737430867531879059080804723070957 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.digicert.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere DV TLS CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-11-06 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'odix.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27729143996875070437199545693838797222756985925196675634719213332177715298292071962741992103903871592054403346641087406030235531678747917819129066558899733173018877657522391018758566716048425103032758477373912749868088998579929664744121375516649046908552150908881422937420016446833751268011847336044344587850545383880730538648098609529375004376562403756330388478071139094169256843160199962779782632712196994580328233115181661291544677066423173667417886814347862293325893995513446124245649507386649225524108798954900020038200412007941240000401309921775109386784340296807096112248679491690219864415901712097455422374601 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 78df91905feedeacf6c575ebd54c5553ef244ab6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ea23aa8970474bd6c5af6de8d50e21de540bdb90 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'odix.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (116 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereDVTLSCA-G2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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