dev.openascent.org

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 12:f6:b7 was issued on by StartCom Ltd. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • ERROR: Certificate has key usage [KeyAgreement] set

dev.openascent.org

Country: DK

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: DK

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 12:f6:b7
Serial Number (int): 1242807
Serial Number lenght: 21 bits, 3 octets

SubjectKeyId: b0:ec:17:ed:d8:dc:68:34:93:6d:53:47:0f:f9:5e:29:28:15:5d:af
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 0d:a1:8c:e7:d0:27:d1:4c:10:9d:ca:97:68:46:ff:e8:6b:6d:62:af
Fingerprint (sha256): b4:16:88:31:44:94:82:a1:c2:30:27:e0:15:84:99:46:1f:11:e8:76:f0:e6:6e:64:99:a6:e2:ea:44:28:2d:94

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on dev.openascent.org
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

dev.openascent.org
openascent.org

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGRzCCBS+gAwIBAgIDEva3MA0GCSqGSIb3DQEBCwUAMIGMMQswCQYDVQQGEwJJ TDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjErMCkGA1UECxMiU2VjdXJlIERpZ2l0 YWwgQ2VydGlmaWNhdGUgU2lnbmluZzE4MDYGA1UEAxMvU3RhcnRDb20gQ2xhc3Mg MSBQcmltYXJ5IEludGVybWVkaWF0ZSBTZXJ2ZXIgQ0EwHhcNMTQwOTE4MTUyMDA4 WhcNMTUwOTE5MDQ0NTA2WjBUMQswCQYDVQQGEwJESzEbMBkGA1UEAxMSZGV2Lm9w ZW5hc2NlbnQub3JnMSgwJgYJKoZIhvcNAQkBFhlwb3N0bWFzdGVyQG9wZW5hc2Nl bnQub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0GWx5z7A0CYB PlbTqVgh1GGqAEVpUlUy2lT58PRX2z9QmvMKqfy/3Wfs221h1a6KIZgldStpKs6B OnpuB5vkfYukUAUBXutflLSJXszBJgyigDqO2CVG/NsXzy2aXj0jkdJrOYuAeDhH 0wqzNgm1AJnz6XZ5DG6YpMoPuOr8Ddfa0Mivoie69KegDHVB7VUvh0qWXHIhFjJw j1paB/P/dNt4HVPbFlN+A8GGBjaVyvuT0sfEG9Y9jjyh+ltNT+brHxHaDAmNdPXs P9H80kg9T2/g0R4vjSpFa0ADK6MwCi97LAJXskzb0MfYQxLHQO4B8rvuZEryQSqt QQrG+7jlqQIDAQABo4IC5zCCAuMwCQYDVR0TBAIwADALBgNVHQ8EBAMCA6gwEwYD VR0lBAwwCgYIKwYBBQUHAwEwHQYDVR0OBBYEFLDsF+3Y3Gg0k21TRw/5XikoFV2v MB8GA1UdIwQYMBaAFOtCNNCYsKuf9BtrCPfMZC7vDixFMC0GA1UdEQQmMCSCEmRl di5vcGVuYXNjZW50Lm9yZ4IOb3BlbmFzY2VudC5vcmcwggFWBgNVHSAEggFNMIIB STAIBgZngQwBAgEwggE7BgsrBgEEAYG1NwECAzCCASowLgYIKwYBBQUHAgEWImh0 dHA6Ly93d3cuc3RhcnRzc2wuY29tL3BvbGljeS5wZGYwgfcGCCsGAQUFBwICMIHq MCcWIFN0YXJ0Q29tIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MAMCAQEagb5UaGlz IGNlcnRpZmljYXRlIHdhcyBpc3N1ZWQgYWNjb3JkaW5nIHRvIHRoZSBDbGFzcyAx IFZhbGlkYXRpb24gcmVxdWlyZW1lbnRzIG9mIHRoZSBTdGFydENvbSBDQSBwb2xp Y3ksIHJlbGlhbmNlIG9ubHkgZm9yIHRoZSBpbnRlbmRlZCBwdXJwb3NlIGluIGNv bXBsaWFuY2Ugb2YgdGhlIHJlbHlpbmcgcGFydHkgb2JsaWdhdGlvbnMuMDUGA1Ud HwQuMCwwKqAooCaGJGh0dHA6Ly9jcmwuc3RhcnRzc2wuY29tL2NydDEtY3JsLmNy bDCBjgYIKwYBBQUHAQEEgYEwfzA5BggrBgEFBQcwAYYtaHR0cDovL29jc3Auc3Rh cnRzc2wuY29tL3N1Yi9jbGFzczEvc2VydmVyL2NhMEIGCCsGAQUFBzAChjZodHRw Oi8vYWlhLnN0YXJ0c3NsLmNvbS9jZXJ0cy9zdWIuY2xhc3MxLnNlcnZlci5jYS5j cnQwIwYDVR0SBBwwGoYYaHR0cDovL3d3dy5zdGFydHNzbC5jb20vMA0GCSqGSIb3 DQEBCwUAA4IBAQCOHaHtcjUs1EbTSFKVM1RqfBhRKGtZZrD/L6p/tTELkjGlhZ2l gJzw45Eoi4sKnlcqVMCUbeu6gWqHHP2NYSncMGVpGpVwbF9FrJtkhkbpEJPKa4wB M8rWuwOf/2Agbao/s2iDUM1uI6jwjsOuqHCi2qSp//otTL4faHf3TvhWXGqPBaoR JdN6vNGrKrKxzp4qHWQXnE7djAQGtG9ow1n2QgL4RfcLS+DGLv/TINHJUNAMSHUF dGXcKm6d8hVHTsFRgWs9n8DwH5FZ2Y49yRfNCkRUR8cL462pWeodVMwvsTyqJTbM ccU+bqdkfyVGq5wihW79Gw8GnaKpRPHbS8QY -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0GWx5z7A0CYBPlbTqVgh 1GGqAEVpUlUy2lT58PRX2z9QmvMKqfy/3Wfs221h1a6KIZgldStpKs6BOnpuB5vk fYukUAUBXutflLSJXszBJgyigDqO2CVG/NsXzy2aXj0jkdJrOYuAeDhH0wqzNgm1 AJnz6XZ5DG6YpMoPuOr8Ddfa0Mivoie69KegDHVB7VUvh0qWXHIhFjJwj1paB/P/ dNt4HVPbFlN+A8GGBjaVyvuT0sfEG9Y9jjyh+ltNT+brHxHaDAmNdPXsP9H80kg9 T2/g0R4vjSpFa0ADK6MwCi97LAJXskzb0MfYQxLHQO4B8rvuZEryQSqtQQrG+7jl qQIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded