www.xavablog.net

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 14:af:44 was issued on by StartCom Ltd. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • ERROR: Certificate has key usage [KeyAgreement] set

www.xavablog.net

Country: DK

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: DK

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 14:af:44
Serial Number (int): 1355588
Serial Number lenght: 21 bits, 3 octets

SubjectKeyId: 1a:6a:e0:f6:34:fd:01:e7:51:ad:2d:d0:6d:67:f6:37:1c:35:53:94
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 10:9f:74:fe:f3:bf:b8:9f:18:ab:77:e8:d1:49:99:80:25:7d:dc:fa
Fingerprint (sha256): a7:3f:d6:ec:2e:c4:57:d1:c5:60:ab:c8:71:85:24:2b:9f:32:4a:5a:78:26:51:36:b5:92:22:00:d6:69:19:f6

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on www.xavablog.net
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

www.xavablog.net
xavablog.net

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGPjCCBSagAwIBAgIDFK9EMA0GCSqGSIb3DQEBCwUAMIGMMQswCQYDVQQGEwJJ TDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjErMCkGA1UECxMiU2VjdXJlIERpZ2l0 YWwgQ2VydGlmaWNhdGUgU2lnbmluZzE4MDYGA1UEAxMvU3RhcnRDb20gQ2xhc3Mg MSBQcmltYXJ5IEludGVybWVkaWF0ZSBTZXJ2ZXIgQ0EwHhcNMTQxMTMwMDYzMDAz WhcNMTUxMjAxMDIyMTU2WjBPMQswCQYDVQQGEwJESzEZMBcGA1UEAxMQd3d3Lnhh dmFibG9nLm5ldDElMCMGCSqGSIb3DQEJARYWd2VibWFzdGVyQHhhdmFibG9nLm5l dDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOeRuq3F9oSSzgF/yDTP 5vvSqm9rFap+2KsWLauVDvbtvCTXDvnJU3SHplXoN0itWB2NTmJqush9KhOi49ms uvHMrpFUPZfpcQS5mzthbVETuB8Dz6F+SfHpwaiUAdFc3JWeuGR0SxzQmpT4zTmd owy5nmxKvtTOTEXRvUxYXxc37vlDuDcouMAWIZeqpHmfUiZAq37H1by4j6+dANun wtZ2jt8j0VbYzxMY7hNwtdWD/NlgvP3Ic0RberIGnk69owYWTCJLC3WWVuGst9fF th39FGkeJl97ABwbnHKx3LqxiH1h2YHxoSmEsS2L+j3FGDQ1+o4zafDnPAGLOt8k +HcCAwEAAaOCAuMwggLfMAkGA1UdEwQCMAAwCwYDVR0PBAQDAgOoMBMGA1UdJQQM MAoGCCsGAQUFBwMBMB0GA1UdDgQWBBQaauD2NP0B51GtLdBtZ/Y3HDVTlDAfBgNV HSMEGDAWgBTrQjTQmLCrn/Qbawj3zGQu7w4sRTApBgNVHREEIjAgghB3d3cueGF2 YWJsb2cubmV0ggx4YXZhYmxvZy5uZXQwggFWBgNVHSAEggFNMIIBSTAIBgZngQwB AgEwggE7BgsrBgEEAYG1NwECAzCCASowLgYIKwYBBQUHAgEWImh0dHA6Ly93d3cu c3RhcnRzc2wuY29tL3BvbGljeS5wZGYwgfcGCCsGAQUFBwICMIHqMCcWIFN0YXJ0 Q29tIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MAMCAQEagb5UaGlzIGNlcnRpZmlj YXRlIHdhcyBpc3N1ZWQgYWNjb3JkaW5nIHRvIHRoZSBDbGFzcyAxIFZhbGlkYXRp b24gcmVxdWlyZW1lbnRzIG9mIHRoZSBTdGFydENvbSBDQSBwb2xpY3ksIHJlbGlh bmNlIG9ubHkgZm9yIHRoZSBpbnRlbmRlZCBwdXJwb3NlIGluIGNvbXBsaWFuY2Ug b2YgdGhlIHJlbHlpbmcgcGFydHkgb2JsaWdhdGlvbnMuMDUGA1UdHwQuMCwwKqAo oCaGJGh0dHA6Ly9jcmwuc3RhcnRzc2wuY29tL2NydDEtY3JsLmNybDCBjgYIKwYB BQUHAQEEgYEwfzA5BggrBgEFBQcwAYYtaHR0cDovL29jc3Auc3RhcnRzc2wuY29t L3N1Yi9jbGFzczEvc2VydmVyL2NhMEIGCCsGAQUFBzAChjZodHRwOi8vYWlhLnN0 YXJ0c3NsLmNvbS9jZXJ0cy9zdWIuY2xhc3MxLnNlcnZlci5jYS5jcnQwIwYDVR0S BBwwGoYYaHR0cDovL3d3dy5zdGFydHNzbC5jb20vMA0GCSqGSIb3DQEBCwUAA4IB AQAjsTZpfIqd2n28FOcM4NxP9Iug+g3ikmULHhU4EuOfSIL+EDzJtGX7IViat0Kg tsO1HvmpUumJi9BEoOxiv27f3GxC0pfZ7SMqBnXPkw2YJYaLO+ZCE44NiLpvFJhA 11SrIj44VYeHxgoBBE4ctoamocW/pc2pMdrljOlTCoXhe9Ab6LVwN3U1eSIAV2Hk G0D7ZMvWh7xu8JiIuukhSyKI+/h5ziqw6Ry8FHI8DjnAQdDNwdzD6JV8GeTrSmn4 cNnnldq1hzq3ayi2gl/qVDS9Q6RlOeWwUNBs6iwSmxIw3Z/VqkySJuPuXOI+uS5y qG67SfdAx5bAsBj4x21hqg8e -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA55G6rcX2hJLOAX/INM/m +9Kqb2sVqn7YqxYtq5UO9u28JNcO+clTdIemVeg3SK1YHY1OYmq6yH0qE6Lj2ay6 8cyukVQ9l+lxBLmbO2FtURO4HwPPoX5J8enBqJQB0VzclZ64ZHRLHNCalPjNOZ2j DLmebEq+1M5MRdG9TFhfFzfu+UO4Nyi4wBYhl6qkeZ9SJkCrfsfVvLiPr50A26fC 1naO3yPRVtjPExjuE3C11YP82WC8/chzRFt6sgaeTr2jBhZMIksLdZZW4ay318W2 Hf0UaR4mX3sAHBuccrHcurGIfWHZgfGhKYSxLYv6PcUYNDX6jjNp8Oc8AYs63yT4 dwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded