buchanko.com

Issued by StartCom Class 1 DV Server CA

About this certificate


This digital certificate with serial number 23:f1:ae:39:8f:94:d8:03:48:6d:26:ba:2f:a8:fa:98 was issued on by StartCom Ltd. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])

buchanko.com

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: StartCom Certification Authority

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 23:f1:ae:39:8f:94:d8:03:48:6d:26:ba:2f:a8:fa:98
Serial Number (int): 47777857095091545231304818513175706264
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: fa:06:76:0b:b5:bf:29:0c:87:24:04:78:e5:1b:13:88:ae:33:19:d2
AuthorityKeyId: d7:91:4e:01:c4:b0:bf:f8:c8:67:93:44:9c:e7:33:fa:ad:93:0c:af

Fingerprint (sha1): 1f:81:23:02:50:7e:61:c4:8f:88:9a:11:ab:b6:1e:28:d6:61:3d:c6
Fingerprint (sha256): f3:96:89:58:14:9f:5d:75:5f:38:d1:16:79:cc:db:67:18:4e:aa:fa:dc:df:e4:2d:8a:d6:6f:5b:16:38:19:1d

Issuing Certificate URL: http://aia.startssl.com/certs/sca.server1.crt

Revocation information

OCSP Server: http://ocsp.startssl.com
CRL Distribution Point: http://crl.startssl.com/sca-server1.crl

Check the revocation status for the current certificate on buchanko.com
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Client Authentication
Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

buchanko.com
www.buchanko.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIF4zCCBMugAwIBAgIQI/GuOY+U2ANIbSa6L6j6mDANBgkqhkiG9w0BAQsFADB4 MQswCQYDVQQGEwJJTDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjEpMCcGA1UECxMg U3RhcnRDb20gQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkxJjAkBgNVBAMTHVN0YXJ0 Q29tIENsYXNzIDEgRFYgU2VydmVyIENBMB4XDTE1MTIyODE3NDEwMFoXDTE2MTIy ODE3NDEwMFowFzEVMBMGA1UEAwwMYnVjaGFua28uY29tMIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEA0osC9KPQQkvVNJD9QS5rTAHIuxiKaUMJ+0jmybfy Qgbm4d7zYO3KfjQ0DWl8FggONsYSRNWaWui48bVQQ2RVorjpBXYgvDvj/M/FXZ3T KSbrrHghaM6AB4UzhC3vpepKt6qanUKOBo+NjR0sBZaq5Wqsrst+112LOn9vLmQv 7J3quQxAgrVZTgskoBvVIR/Et8xzN0Gg2rcohOrmPemrqnrsVyN0wyOr3sx5PeO3 IRSrvgxh8m6exBoEA6SAYuf9M0SyR/iT1gCPS5E5JWLhnIDQFgfYDrnPUK7x9vgD TuD+mgDgN2tgoog1e5rqcyxjhnSGAZ15PBQ9URQjfHu+ZvVbYfoePa/JySjptw8t DjG4m44+QKBlljFQJ4raG4a6ImCImCnAlBMgfy6F/qc2bSc9Fwn2xuDYypMsWMEe 0BKLv5roloswXPWHc4Oguwq58aRznjYp+Idr7DGMCgTX2nysdwEelAWqSxaQanJ+ XaN9ZlEKX0MFNTNmP6em8XnD1/fcaRbHbQFhGMFFC+YoknN66t2i6dCXQiM+Te/f VE06YWRV1yqwqPGq288xHnoNAPyGLMZNBrASoXPAOwTVoiul0fxPHM705DZgwXmQ LGQCL1OiplCQ8NuTbl2DxtKnANPlgTfseuvREb/4+qi4Tf3kaM0TXEzuGcKb1JLE dNUCAwEAAaOCAcgwggHEMAsGA1UdDwQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AgYIKwYBBQUHAwEwCQYDVR0TBAIwADAdBgNVHQ4EFgQU+gZ2C7W/KQyHJAR45RsT iK4zGdIwHwYDVR0jBBgwFoAU15FOAcSwv/jIZ5NEnOcz+q2TDK8wbwYIKwYBBQUH AQEEYzBhMCQGCCsGAQUFBzABhhhodHRwOi8vb2NzcC5zdGFydHNzbC5jb20wOQYI KwYBBQUHMAKGLWh0dHA6Ly9haWEuc3RhcnRzc2wuY29tL2NlcnRzL3NjYS5zZXJ2 ZXIxLmNydDA4BgNVHR8EMTAvMC2gK6AphidodHRwOi8vY3JsLnN0YXJ0c3NsLmNv bS9zY2Etc2VydmVyMS5jcmwwKQYDVR0RBCIwIIIMYnVjaGFua28uY29tghB3d3cu YnVjaGFua28uY29tMCMGA1UdEgQcMBqGGGh0dHA6Ly93d3cuc3RhcnRzc2wuY29t LzBQBgNVHSAESTBHMAgGBmeBDAECATA7BgsrBgEEAYG1NwECBDAsMCoGCCsGAQUF BwIBFh5odHRwOi8vd3d3LnN0YXJ0c3NsLmNvbS9wb2xpY3kwDQYJKoZIhvcNAQEL BQADggEBAKH1eXG8UNTI/e0IAFEO9hXP2Rk43Pf7BlzHV2Y6WK0i6HY1el3MSagI /MVO0PAmSkPnGJEhcf1eBvAxYK3AZOoDEKGx3CkAqCB5rRaab7qeqphOhYPNnAV6 lCX1tV4xUu30sOeAF0Dh7X6ZOh5J+gemfOBNppKEDIfKI/QPwg6+nUXuWWZ3+2By S06RyA9LJySzam6hDz7/62QVeAKNx+f5ZMMTjG1ySdDuv1X7a8tehif0vPSVH2i2 x82DPnJj3iB/PfbAkg9ejti5V12f/d3F1w65fkpCQBtISCW9INOYu5pMZc6P3a6Y nbGRYzW2+dL/WWFErQauB2FYmh7dSKM= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0osC9KPQQkvVNJD9QS5r TAHIuxiKaUMJ+0jmybfyQgbm4d7zYO3KfjQ0DWl8FggONsYSRNWaWui48bVQQ2RV orjpBXYgvDvj/M/FXZ3TKSbrrHghaM6AB4UzhC3vpepKt6qanUKOBo+NjR0sBZaq 5Wqsrst+112LOn9vLmQv7J3quQxAgrVZTgskoBvVIR/Et8xzN0Gg2rcohOrmPemr qnrsVyN0wyOr3sx5PeO3IRSrvgxh8m6exBoEA6SAYuf9M0SyR/iT1gCPS5E5JWLh nIDQFgfYDrnPUK7x9vgDTuD+mgDgN2tgoog1e5rqcyxjhnSGAZ15PBQ9URQjfHu+ ZvVbYfoePa/JySjptw8tDjG4m44+QKBlljFQJ4raG4a6ImCImCnAlBMgfy6F/qc2 bSc9Fwn2xuDYypMsWMEe0BKLv5roloswXPWHc4Oguwq58aRznjYp+Idr7DGMCgTX 2nysdwEelAWqSxaQanJ+XaN9ZlEKX0MFNTNmP6em8XnD1/fcaRbHbQFhGMFFC+Yo knN66t2i6dCXQiM+Te/fVE06YWRV1yqwqPGq288xHnoNAPyGLMZNBrASoXPAOwTV oiul0fxPHM705DZgwXmQLGQCL1OiplCQ8NuTbl2DxtKnANPlgTfseuvREb/4+qi4 Tf3kaM0TXEzuGcKb1JLEdNUCAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 47777857095091545231304818513175706264 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Ltd.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Certification Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'StartCom Class 1 DV Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-12-28 17:41:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-12-28 17:41:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'buchanko.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 858940557513181405424899429234440225384076698516098164235531976634518906382904926603424774333334133191905388246371607065816906144632733838148552194600383248785485816147903422633774011825616923728573265330933932301064164296907862530133161344471052836441451579913376950234102597396091313920459842837582297469377748709092192071342034112246522911958328645772116462116478967190136257973934900560291622236589040228742974247976027038053191902135250569609010616657982760344548018206849512074718333335215532418627578714449581561965739452289646859521687593380289229573318345448805709871672840758724484519345124614244012636455751823899816362244028340858384424745232041118543005609435150799944665484946464789361813521556567414464570874343559102618739072094367180668879033792880855301847114194759001813338962485973516813038847743074038823989715485920233022258376256515342557659960062271456949445906473806749441151235401459179560500735998918651153021501532540081355656689183130929198538039619383284624544749964437569374139087582069668033251777335883512231337833578232457464214443038962863890157645993828716588832995276870602045684180409715569763465206210036824352985112159283779127232224139658487771044270576453095803380805166956311248861334369493 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fa06760bb5bf290c87240478e51b1388ae3319d2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d7914e01c4b0bff8c86793449ce733faad930caf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.startssl.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia.startssl.com/certs/sca.server1.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.startssl.com/sca-server1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'buchanko.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.buchanko.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.18 (issuerAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://www.startssl.com/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.23223.1.2.4 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.startssl.com/policy' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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