brightsos.com
Issued by Sectigo RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number 0e:20:98:9e:7d:3c:69:33:f2:51:eb:c1:02:7f:6c:fc was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=brightsos.com
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): 0e:20:98:9e:7d:3c:69:33:f2:51:eb:c1:02:7f:6c:fcSerial Number (int): 18778440923530027596006711346109312252
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: d9:56:60:c2:70:b3:0f:41:ab:aa:b8:e3:a0:ef:86:29:9e:c9:48:b2
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1
Fingerprint (sha1): 89:ec:0c:a4:83:cd:63:35:3d:5f:94:de:01:d0:c1:f9:4a:71:c9:a7
Fingerprint (sha256): b9:98:3e:e4:7c:5e:98:fa:89:5e:81:05:78:d6:7d:70:d7:43:57:23:38:9a:64:8b:63:10:a2:1c:ef:30:50:2a
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCheck the revocation status for certificate brightsos.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for brightsos.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
brightsos.com
www.brightsos.com
www.brightsos.com
Other certificates including the domain name brightsos.com
(limited to 100 certificates)
desk.smwit.com
ndihma.tvalb.com
zoho.musashino.jp
ndihma.tvalb.com
brightsos.com
brightsos.com
brightsos.com
zoho.musashino.jp
help.ultraperu.com
brightsos.com
brightsos.com
help.rmginsurance.org
brightsos.com
supportdesk.ecodesaas.com
desk.cs.support.dw-its.com
desk.smwit.com
brightsos.com
brightsos.com
help.you-it.com
help.ultraperu.com
support.brightsos.com
desk.smwit.com
support.musichousecourses.com
zoho.musashino.jp
support.brightsos.com
ndihma.tvalb.com
zoho.musashino.jp
ndihma.tvalb.com
brightsos.com
brightsos.com
brightsos.com
zoho.musashino.jp
help.ultraperu.com
brightsos.com
brightsos.com
help.rmginsurance.org
brightsos.com
supportdesk.ecodesaas.com
desk.cs.support.dw-its.com
desk.smwit.com
brightsos.com
brightsos.com
help.you-it.com
help.ultraperu.com
support.brightsos.com
desk.smwit.com
support.musichousecourses.com
zoho.musashino.jp
support.brightsos.com
Certificate
The complete raw certificate details for brightsos.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFuzCCBKOgAwIBAgIQDiCYnn08aTPyUevBAn9s/DANBgkqhkiG9w0BAQsFADCB jzELMAkGA1UEBhMCR0IxGzAZBgNVBAgTEkdyZWF0ZXIgTWFuY2hlc3RlcjEQMA4G A1UEBxMHU2FsZm9yZDEYMBYGA1UEChMPU2VjdGlnbyBMaW1pdGVkMTcwNQYDVQQD Ey5TZWN0aWdvIFJTQSBEb21haW4gVmFsaWRhdGlvbiBTZWN1cmUgU2VydmVyIENB MB4XDTIwMDMxMzAwMDAwMFoXDTIwMDYxMTIzNTk1OVowGDEWMBQGA1UEAxMNYnJp Z2h0c29zLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAImHAg9d 2gvGDJC2wW/ibv8+bGn70js5TLcebL9dragS2fKU/EzEerHwpq92zEXJkNsi4DZ1 Q9Q5wOkYUjQEKtRwHUI+625AZNRNNQWRZUZZA/I6EwOxH0Ep9TGyYk+D0R+vat8d 3m8kvJQANK8z3Xpb1QnQerQkHFIl2TU64HL0gnqDSPp+c/uwKS4eNtmzSY7k7Rrn kX86LeJjFugsgHyTkfBr5UY6gyqmXnLFsDJYUtb2Qp9rC6TYBmr5fhKxcbQmcMBA /0T0h7dfN8SVwlGzGOAekiNErv8S+B6Xx39/o6xTDE4T4uVpGUld09m1jgj2Iz/P 0G63WH9Nh9mg/kMCAwEAAaOCAocwggKDMB8GA1UdIwQYMBaAFI2MXsRUrYrhd+mb +ZsF4bgBjWHhMB0GA1UdDgQWBBTZVmDCcLMPQauquOOg74YpnslIsjAOBgNVHQ8B Af8EBAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYB BQUHAwIwSQYDVR0gBEIwQDA0BgsrBgEEAbIxAQICBzAlMCMGCCsGAQUFBwIBFhdo dHRwczovL3NlY3RpZ28uY29tL0NQUzAIBgZngQwBAgEwgYQGCCsGAQUFBwEBBHgw djBPBggrBgEFBQcwAoZDaHR0cDovL2NydC5zZWN0aWdvLmNvbS9TZWN0aWdvUlNB RG9tYWluVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNydDAjBggrBgEFBQcwAYYX aHR0cDovL29jc3Auc2VjdGlnby5jb20wggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8A dgAHt1wb5X1o//Gwxh0jFce65ld8V5S3au68YToaadOiHAAAAXDUe4nCAAAEAwBH MEUCIGcSXz4zFu4byc1BLZDvme8cEikDuykIsvr7he3yiefeAiEAjaOQQmtygrGL VlRYpW5GIIG5byirF0bZv5rxKEosZIwAdQDnEvKwN34aYvuOyQxhhPHqezfLVh0R Jlvz4PNL8kFUbgAAAXDUe4nZAAAEAwBGMEQCICTSw/64sWe4GQNYmsq5heJ1bZ9l S+Oxl8T8RCmF+QsBAiB3ETp0UAp9ZxyD/2pOLCUDOL3FSC6p3Emjv3aenU1E0zAr BgNVHREEJDAigg1icmlnaHRzb3MuY29tghF3d3cuYnJpZ2h0c29zLmNvbTANBgkq hkiG9w0BAQsFAAOCAQEAOX4eeyXTcUlFM5zh0wuuZYAFSO8b+mBJBfoJSFWNbsP7 lB3qnOCq2FC+M/NCc+R7WUuoVZtqGJ/a+3uXMMYhvtnrXhIYNNE40VPvmoRC65og gIUFiA1+xIHC6g5dweEyT9YDbGBB9jP2sZvlpiDSZFvJSRPQf9pcs5XVCF8YLWtj +8zTWBIlCpPiX+WvJvvMlQfEr4AaCxmvDLXT0il20J4U1H59gssnwUVgWREK9/Cj gMOabGZzRQujC8INZXOPI/v+TjgRp+byJcbHrxbNnbb/eqZEiFTXrGp3IvYDSvkP KnIHgnqFUe1fmiX3wzARXQyESN1mUfNUNwKMizSujw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiYcCD13aC8YMkLbBb+Ju /z5safvSOzlMtx5sv12tqBLZ8pT8TMR6sfCmr3bMRcmQ2yLgNnVD1DnA6RhSNAQq 1HAdQj7rbkBk1E01BZFlRlkD8joTA7EfQSn1MbJiT4PRH69q3x3ebyS8lAA0rzPd elvVCdB6tCQcUiXZNTrgcvSCeoNI+n5z+7ApLh422bNJjuTtGueRfzot4mMW6CyA fJOR8GvlRjqDKqZecsWwMlhS1vZCn2sLpNgGavl+ErFxtCZwwED/RPSHt183xJXC UbMY4B6SI0Su/xL4HpfHf3+jrFMMThPi5WkZSV3T2bWOCPYjP8/QbrdYf02H2aD+ QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18778440923530027596006711346109312252 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-11 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'brightsos.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17361222729596154353673711131939528826575964771421670929571595337582778640038683679447672869979005309942354949981549986184937100912087165689393434335506323868202867953835083675254610228508814013419468306699145471940328472922020767334896215888587298343976254780836860684158512326250459526003078647611985249887291698734278571343454386896457626443943514149080081206166066827730635226880121076214137315092500684529136403819754472476126444804779490813832813445970311924700168061822191115535508505159935197207856469695139026726618587777085450847557226353769880094483772709319503311638288831623239450555494458712711380401731 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d95660c270b30f41abaab8e3a0ef86299ec948b2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c00000170d47b89c20000040300473045022067125f3e3316ee1bc9cd412d90ef99ef1c122903bb2908b2fafb85edf289e7de0221008da390426b7282b18b565458a56e462081b96f28ab1746d9bf9af1284a2c648c007500e712f2b0377e1a62fb8ec90c6184f1ea7b37cb561d11265bf3e0f34bf241546e00000170d47b89d90000040300463044022024d2c3feb8b167b81903589acab985e2756d9f654be3b197c4fc442985f90b01022077113a74500a7d671c83ff6a4e2c250338bdc5482ea9dc49a3bf769e9d4d44d3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'brightsos.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.brightsos.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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