sso.bnymellon.com

Issued by VeriSign Class 3 International Server CA - G3

About this certificate

This digital certificate with serial number 22:8b:8c:19:17:d8:2b:92:bc:6d:7f:2d:5a:35:7c:5c was issued on by VeriSign, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

As someone interested in digital certificates you will love EV SSL Certificates without the hessle, right? Easy, automated EV SSL Certificates for only € 99 ($ 121 or £ 87).


We have idenified some issues with this certificate:

  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
  • Subscriber Certificate: extKeyUsage either the value id-kp-serverAuth or id-kp-clientAuth or both values MUST be present. (BRs: 7.1.2.3)

The Bank of New York Mellon

Organization: The Bank of New York Mellon
Organization unit: DSS
State / Province: New York
Locality: New York
Country: US

VeriSign, Inc.

Organization: VeriSign, Inc.
Organization unit: VeriSign Trust Network
Organization unit: Terms of use at https://www.verisign.com/rpa (c)10
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 22:8b:8c:19:17:d8:2b:92:bc:6d:7f:2d:5a:35:7c:5c
Serial Number (int): 45918322645451543781051714416172956764
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: d7:9b:7c:d8:22:a0:15:f7:dd:ad:5f:ce:29:9b:58:c3:bc:46:00:b5

Fingerprint (sha1): 67:9e:49:5b:21:31:15:82:67:9d:f3:fe:b8:39:7c:72:27:c6:bb:4d
Fingerprint (sha256): a4:14:d8:9d:b3:50:f7:a4:7e:ef:f6:3e:e6:bb:0f:d6:88:72:26:a4:94:a0:8a:9a:c0:4f:f2:90:c6:68:92:1f

Issuing Certificate URL: http://SVRIntl-G3-aia.verisign.com/SVRIntlG3.cer

Revocation information

OCSP Server: http://ocsp.verisign.com
CRL Distribution Point: http://SVRIntl-G3-crl.verisign.com/SVRIntlG3.crl

Check the revocation status for the current certificate on sso.bnymellon.com
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

1024

Signature Algorithm

SHA1 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Netscape Server-Gated Cryptography
Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

sso.bnymellon.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIQIouMGRfYK5K8bX8tWjV8XDANBgkqhkiG9w0BAQUFADCB vDELMAkGA1UEBhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMR8wHQYDVQQL ExZWZXJpU2lnbiBUcnVzdCBOZXR3b3JrMTswOQYDVQQLEzJUZXJtcyBvZiB1c2Ug YXQgaHR0cHM6Ly93d3cudmVyaXNpZ24uY29tL3JwYSAoYykxMDE2MDQGA1UEAxMt VmVyaVNpZ24gQ2xhc3MgMyBJbnRlcm5hdGlvbmFsIFNlcnZlciBDQSAtIEczMB4X DTEyMDcxMzAwMDAwMFoXDTEzMDcxODIzNTk1OVowgYMxCzAJBgNVBAYTAlVTMREw DwYDVQQIEwhOZXcgWW9yazERMA8GA1UEBxQITmV3IFlvcmsxJDAiBgNVBAoUG1Ro ZSBCYW5rIG9mIE5ldyBZb3JrIE1lbGxvbjEMMAoGA1UECxQDRFNTMRowGAYDVQQD FBFzc28uYm55bWVsbG9uLmNvbTCBnzANBgkqhkiG9w0BAQEFAAOBjQAwgYkCgYEA nOiuTFvc7VWqrwld1oEGv5eQIVaHmhrZ5WzrruojmB76uoqywCY9cL42lENrY+cF 74F8dbeP2UPRrJRqgifR4U/NzYdoeGzhgfdXiycE0yKVps6yP9ucv73YGIv3p73P 5nWJhqgxZsRoIvxPGWY/Dj8tmHcl0BSfHqpZyXzl4bcCAwEAAaOCAYQwggGAMBwG A1UdEQQVMBOCEXNzby5ibnltZWxsb24uY29tMAkGA1UdEwQCMAAwDgYDVR0PAQH/ BAQDAgWgMB8GA1UdIwQYMBaAFNebfNgioBX33a1fzimbWMO8RgC1MEEGA1UdHwQ6 MDgwNqA0oDKGMGh0dHA6Ly9TVlJJbnRsLUczLWNybC52ZXJpc2lnbi5jb20vU1ZS SW50bEczLmNybDBDBgNVHSAEPDA6MDgGCmCGSAGG+EUBBzYwKjAoBggrBgEFBQcC ARYcaHR0cHM6Ly93d3cudmVyaXNpZ24uY29tL2NwczAoBgNVHSUEITAfBglghkgB hvhCBAEGCCsGAQUFBwMBBggrBgEFBQcDAjByBggrBgEFBQcBAQRmMGQwJAYIKwYB BQUHMAGGGGh0dHA6Ly9vY3NwLnZlcmlzaWduLmNvbTA8BggrBgEFBQcwAoYwaHR0 cDovL1NWUkludGwtRzMtYWlhLnZlcmlzaWduLmNvbS9TVlJJbnRsRzMuY2VyMA0G CSqGSIb3DQEBBQUAA4IBAQBkkodbRoyARtZb6OzmPwN4y4NlD4sB6wl5TZ5t2yss 3CrSG4ZDD6B0apDMWftBDUlBxYFq3s/hL2Dbm+ffAfLRjwhD0SFg3vCGFK9StMuo tcvLDD0bav2Rfg5maZQeWoPhxEyVD0NgEvPGjiaDfjz58Kp3znZ2Nm0OPZqR7VdI fY+fO/PJ6WyFUloihvkRaSoAOXpF9sIcEoa4EXzXA+yrPfTG0avKIf1l+V391Q87 dq0n10S/tBJOzpVSMKY4cZgxoqqA6yoX01PGGfxzlnxXsT2UtAOs6BjKKDQBWjyk PcHHjiuFSHpQWCyVpGb1/gypB8K9C7W3AH+acAeKwP/p -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCc6K5MW9ztVaqvCV3WgQa/l5Ah VoeaGtnlbOuu6iOYHvq6irLAJj1wvjaUQ2tj5wXvgXx1t4/ZQ9GslGqCJ9HhT83N h2h4bOGB91eLJwTTIpWmzrI/25y/vdgYi/envc/mdYmGqDFmxGgi/E8ZZj8OPy2Y dyXQFJ8eqlnJfOXhtwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded