www.dmi.co.uk
Issued by RapidSSL SHA256 CA
About this certificate
This digital certificate with serial number 16:68:dc:8c:90:de:c7:7d:a3:0c:f3:21:1e:6e:01:c7 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.dmi.co.uk
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 16:68:dc:8c:90:de:c7:7d:a3:0c:f3:21:1e:6e:01:c7Serial Number (int): 29787488047446491656501729133559939527
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 97:c2:27:50:9e:c2:c9:ec:0c:88:32:c8:7c:ad:e2:a6:01:4f:da:6f
Fingerprint (sha1): 4b:15:02:00:f8:3a:c0:e4:b6:76:21:de:1e:1d:11:0d:0c:53:61:25
Fingerprint (sha256): c4:63:64:8c:ff:c4:2d:9d:80:60:d4:14:1b:1b:46:6b:18:76:24:62:fe:21:93:97:54:86:13:41:25:07:05:2b
Issuing Certificate URL: http://gp.symcb.com/gp.crt
Revocation information
OCSP Server: http://gp.symcd.comCRL Distribution Point: http://gp.symcb.com/gp.crl
Check the revocation status for certificate www.dmi.co.uk
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.dmi.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.dmi.co.uk
dmi.co.uk
dmi.co.uk
Other certificates including the domain name dmi.co.uk
(limited to 100 certificates)
dmi.co.uk
dmi.co.uk
dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
sni.cloudflaressl.com
www.dmi.co.uk
dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
dmi.co.uk
www.dmi.co.uk
dmi.co.uk
dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
dmi.co.uk
dmi.co.uk
dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
dmi.co.uk
dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
sni.cloudflaressl.com
www.dmi.co.uk
dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
dmi.co.uk
www.dmi.co.uk
dmi.co.uk
dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
dmi.co.uk
dmi.co.uk
dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
www.dmi.co.uk
Certificate
The complete raw certificate details for www.dmi.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFajCCBFKgAwIBAgIQFmjcjJDex32jDPMhHm4BxzANBgkqhkiG9w0BAQsFADBC MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEbMBkGA1UEAxMS UmFwaWRTU0wgU0hBMjU2IENBMB4XDTE2MDMyMzAwMDAwMFoXDTE3MDQyMjIzNTk1 OVowGDEWMBQGA1UEAwwNd3d3LmRtaS5jby51azCCASIwDQYJKoZIhvcNAQEBBQAD ggEPADCCAQoCggEBAOuZMt2TX4oBK802ZIw5rnwbKPOINBs+JKLbpokxhtI5aFgS cG++am+UpZQk/wZoym2MB8eW5trmCU+OauREz4A9MITMX6xFz8MIEgGrMly+UCdf SURCL3eLcGh7dSjpI5qejUaxRLR/o1j+7WNBQ7zaLcumR16KsyNoWUsSZADceuD/ w78UYW0pt0kgo3plGdzexRhXI8VNO90wfoWBPNgfkfvo2Iu121RQtFtzJNMZ85Cr QiX2hzdV3SdGbDWJnnzIWpLKW/3gQlFdpn3bOTHbd7PA+6hptlirOth5WNrhY+Me VTo5ckw/uKtQylHc7/Q5CzHZrZzMtsgYr4psp7UCAwEAAaOCAoQwggKAMCMGA1Ud EQQcMBqCDXd3dy5kbWkuY28udWuCCWRtaS5jby51azAJBgNVHRMEAjAAMCsGA1Ud HwQkMCIwIKAeoByGGmh0dHA6Ly9ncC5zeW1jYi5jb20vZ3AuY3JsMG8GA1UdIARo MGYwZAYGZ4EMAQIBMFowKgYIKwYBBQUHAgEWHmh0dHBzOi8vd3d3LnJhcGlkc3Ns LmNvbS9sZWdhbDAsBggrBgEFBQcCAjAgDB5odHRwczovL3d3dy5yYXBpZHNzbC5j b20vbGVnYWwwHwYDVR0jBBgwFoAUl8InUJ7CyewMiDLIfK3ipgFP2m8wDgYDVR0P AQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjBXBggrBgEF BQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9ncC5zeW1jZC5jb20wJgYIKwYB BQUHMAKGGmh0dHA6Ly9ncC5zeW1jYi5jb20vZ3AuY3J0MIIBBQYKKwYBBAHWeQIE AgSB9gSB8wDxAHYA3esdK3oNT6Ygi4GtgWhwfi6OnQHVXIiNPRHEzbbsvswAAAFT owII3wAABAMARzBFAiEAoTnP8l3K0O387AyqbPBREk8Rx5emcdCI1Gx3JQWG5n8C IFSS2FUftXzP9wFpJVooFbLvYM1mBPQ2ZpvGpvbQNVKtAHcApLkJkLQYWBSHuxOi zGdwCjw1mAT5G9+443fNDsgN3BAAAAFTowIJEQAABAMASDBGAiEAt/8EsY6Cjw7/ TQDJikK7mEnQckC/AuyGv89JprMQeCwCIQCCFze0t7mRRZbmGYfOOJykYzh9T7ZX rRVPf0eyE3uTsTANBgkqhkiG9w0BAQsFAAOCAQEAI2/daE134TMWp0pe/arqDXWc uQ93T3nRsybRfD6j502LsTLjBPtJfkXT8Gra7FGY+JixWuoE2MJWYYXJfbYMa0US RtoBdu7jWCkN+S8NAkwYYM9C9Ii+PfzmlZSMWGNK0RB4sOqd1wySrp1p/qC1LEO4 sx9oOYqL08AeFivjcZ/63nzm3/nojW8YzacJugjYxeFjpS/wxmFsjvq2/9Olx4lY xZuFc1uqsACGdQtImlmUL4MoXumGan+JgR6Koo6sC4f1btYDET99r8PWeQdrrko5 mDSe/ZA1SQY90DG1Vgz22dCSjqfARV2eVz08OmFuSwvl4wAh+n+mhVC5mw92Bg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA65ky3ZNfigErzTZkjDmu fBso84g0Gz4kotumiTGG0jloWBJwb75qb5SllCT/BmjKbYwHx5bm2uYJT45q5ETP gD0whMxfrEXPwwgSAasyXL5QJ19JREIvd4twaHt1KOkjmp6NRrFEtH+jWP7tY0FD vNoty6ZHXoqzI2hZSxJkANx64P/DvxRhbSm3SSCjemUZ3N7FGFcjxU073TB+hYE8 2B+R++jYi7XbVFC0W3Mk0xnzkKtCJfaHN1XdJ0ZsNYmefMhakspb/eBCUV2mfds5 Mdt3s8D7qGm2WKs62HlY2uFj4x5VOjlyTD+4q1DKUdzv9DkLMdmtnMy2yBivimyn tQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 29787488047446491656501729133559939527 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-03-23 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-04-22 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.dmi.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29741546758381156731220644145690506535757664525989216699380508446478895724388222357237061778279952334801465479840572233759206122211625262886435554840932591297613716859669587180808177037019697376682599008751397272223120044124114884264756561359617027884382848860113143020795893326784432715398816142184436147019677837446229664351649201105245967997750720241923913878573165883910082757677377224535847330773536819885190165788432643149713746619736353316333010813220316002448298419129274642649542167792760410789248431948036431651225735214042328489991705843122123612009556413768382414667056558815419720519653304561100001159093 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.dmi.co.uk' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dmi.co.uk' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 97c227509ec2c9ec0c8832c87cade2a6014fda6f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc00000153a30208df0000040300473045022100a139cff25dcad0edfcec0caa6cf051124f11c797a671d088d46c77250586e67f02205492d8551fb57ccff70169255a2815b2ef60cd6604f436669bc6a6f6d03552ad007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc1000000153a30209110000040300483046022100b7ff04b18e828f0eff4d00c98a42bb9849d07240bf02ec86bfcf49a6b310782c022100821737b4b7b9914596e61987ce389ca463387d4fb657ad154f7f47b2137b93b1 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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