uscart.net

Issued by ZeroSSL RSA Domain Secure Site CA

About this certificate

This digital certificate with serial number cb:f0:9f:7b:40:fc:62:42:0c:1f:2f:dc:c4:86:cd:a3 was issued on by ZeroSSL.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=uscart.net

ZeroSSL

Organization: ZeroSSL
Country: AT

This certificate has expire since

Certificate Details

Serial Number (hex): cb:f0:9f:7b:40:fc:62:42:0c:1f:2f:dc:c4:86:cd:a3
Serial Number (int): 271082669058689404645813954493226077603
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 71:f5:cc:dc:4c:76:28:0a:7b:f9:21:a6:75:cf:ab:6b:ea:79:bd:4e
AuthorityKeyId: c8:d9:78:68:a2:d9:19:68:d5:3d:72:de:5f:0a:3e:dc:b5:86:86:a6

Fingerprint (sha1): 0d:da:e5:4c:84:8b:da:b6:48:0a:e8:a3:9b:4a:67:84:29:bb:2e:00
Fingerprint (sha256): e4:be:1b:3b:70:a1:47:03:ee:b3:56:c1:b1:e3:ab:f6:dc:e9:1a:7b:88:7f:72:f2:2b:d3:41:34:57:53:12:b8

Issuing Certificate URL: http://zerossl.crt.sectigo.com/ZeroSSLRSADomainSecureSiteCA.crt

Revocation information

OCSP Server: http://zerossl.ocsp.sectigo.com

Check the revocation status for certificate uscart.net

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for uscart.net

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA384 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

uscart.net
www.uscart.net

Other certificates including the domain name uscart.net

(limited to 100 certificates)
uscart.net
uscart.net

Certificate

The complete raw certificate details for uscart.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvEKowfFIpG6H7Xz60LTD
34+e5rA2jJpzrIPpc+pKIO53UyNul6k76wuhilcjJM6oU3SF/lzA0H7yaFyH+Rnw
/nY+jCREakDsZOBtG9J7fpA8xkT8BzJSX992I4XaqGcZEKWcwDvCNxIMWG3/+CWP
Gy35UyCtYrOPPX8qfcmd5mmH//D/cclZMCytdgAJJd/Zcl6JOzxDOSVF1QSHnp0p
OE27sq1Sof5NPES5R2gdFkQCBgWOu+wOEXRHo6N4a0CBpYjLY/XrBi8iHDEqKowM
kFp1OuQm4f6CTXpvdxVIxDS7TcS/Y/K0VJ8dlVXSciLylclCQz/U5zF148EZeQuZ
NQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 271082669058689404645813954493226077603
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZeroSSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZeroSSL RSA Domain Secure Site CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-02 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-01 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'uscart.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23765672214853140256010471819277261904336326094104314677180991447925114597992172323399783183552047528199779892853651904885720367082227459459542403553821312199980248564426877958183690492715011041911185251925809108743465415577132674871052233945656641095303478836068324582924030537417020857102031797110046113482296954769785405285211740490631116748857890456162469303680812227033090142462648671409973829896005020626842903655470062838095542434631473854845952716707263390540888918327889337621562160066680676326279232899753522535898173940735641921952587338369619838718118424452135326092322595464002455610477383464683760752949
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c8d97868a2d91968d53d72de5f0a3edcb58686a6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							71f5ccdc4c76280a7bf921a675cfab6bea79bd4e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.78
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (124 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://zerossl.crt.sectigo.com/ZeroSSLRSADomainSecureSiteCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://zerossl.ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018c2933a99b0000040300473045022002f1871a29547f89ef7bd8e18b21a7d14c9ac0784fae1ec4f43cb240592799c5022100f1af2c6fb91516c2da0e8af22c53a0b80fa289d5e93557838c38208d63f3ef640075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018c2933aa0600000403004630440220752b93d43930c2b28d6270545a3b985725db3d037c589107813f5b5ca941e36d022076d5492a02d64fb686eda7e4d664c8794356db54cac969f083360676bf714819
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uscart.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.uscart.net'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.12 (sha384WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (4096 bits)
		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