mail.tnx.cz

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 14:ec:42 was issued on by StartCom Ltd. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • ERROR: Certificate has key usage [KeyAgreement] set

mail.tnx.cz

Country: CZ

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: CZ

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 14:ec:42
Serial Number (int): 1371202
Serial Number lenght: 21 bits, 3 octets

SubjectKeyId: 75:aa:8d:a4:18:4e:d1:f0:a5:9e:7b:89:11:38:dd:3d:10:71:8f:fc
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 89:30:62:d0:77:53:11:05:75:b7:50:77:a5:32:10:dd:fe:ed:a5:5a
Fingerprint (sha256): 85:88:69:b5:35:64:74:f8:16:d1:22:7a:16:01:96:c1:94:81:d4:67:db:6c:ea:00:e5:c3:ae:50:cb:69:ba:59

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on mail.tnx.cz
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

mail.tnx.cz
tnx.cz

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGKTCCBRGgAwIBAgIDFOxCMA0GCSqGSIb3DQEBCwUAMIGMMQswCQYDVQQGEwJJ TDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjErMCkGA1UECxMiU2VjdXJlIERpZ2l0 YWwgQ2VydGlmaWNhdGUgU2lnbmluZzE4MDYGA1UEAxMvU3RhcnRDb20gQ2xhc3Mg MSBQcmltYXJ5IEludGVybWVkaWF0ZSBTZXJ2ZXIgQ0EwHhcNMTQxMjA5MTYxMDE5 WhcNMTUxMjExMDUxNzIzWjBFMQswCQYDVQQGEwJDWjEUMBIGA1UEAxMLbWFpbC50 bnguY3oxIDAeBgkqhkiG9w0BCQEWEXBvc3RtYXN0ZXJAdG54LmN6MIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIoYUl2pnx3evytxCb1JM1zeV0cwwkW3 cWL+9xAmpzQr2Qs7B1e65E3gCI9PRUXVyYiMIqgoAT/xOhXCAhuXQq5v60syI9z8 UdrW6AevFah+JxtkWKq0ltNzCvmHhgiwVMxljqutRdEU8avSypgLrGRpOBSRPpSY qem6vA35IKECK+yBJUsMdgoR4L/nxcKzSV+rD6kkao+nHFHwmXvuKJXe++ttTE3p DhC7sGmasnXmcM4KlugQPOimtRXla8Bw5cMA2T6Xdrk76PWZH2bcQaZ7TIg6EX6A FvP1HrHC5jK+Wknyam+NpNmTpshk0uRMGdGwfWUYoBFciUl05B78fQIDAQABo4IC 2DCCAtQwCQYDVR0TBAIwADALBgNVHQ8EBAMCA6gwEwYDVR0lBAwwCgYIKwYBBQUH AwEwHQYDVR0OBBYEFHWqjaQYTtHwpZ57iRE43T0QcY/8MB8GA1UdIwQYMBaAFOtC NNCYsKuf9BtrCPfMZC7vDixFMB4GA1UdEQQXMBWCC21haWwudG54LmN6ggZ0bngu Y3owggFWBgNVHSAEggFNMIIBSTAIBgZngQwBAgEwggE7BgsrBgEEAYG1NwECAzCC ASowLgYIKwYBBQUHAgEWImh0dHA6Ly93d3cuc3RhcnRzc2wuY29tL3BvbGljeS5w ZGYwgfcGCCsGAQUFBwICMIHqMCcWIFN0YXJ0Q29tIENlcnRpZmljYXRpb24gQXV0 aG9yaXR5MAMCAQEagb5UaGlzIGNlcnRpZmljYXRlIHdhcyBpc3N1ZWQgYWNjb3Jk aW5nIHRvIHRoZSBDbGFzcyAxIFZhbGlkYXRpb24gcmVxdWlyZW1lbnRzIG9mIHRo ZSBTdGFydENvbSBDQSBwb2xpY3ksIHJlbGlhbmNlIG9ubHkgZm9yIHRoZSBpbnRl bmRlZCBwdXJwb3NlIGluIGNvbXBsaWFuY2Ugb2YgdGhlIHJlbHlpbmcgcGFydHkg b2JsaWdhdGlvbnMuMDUGA1UdHwQuMCwwKqAooCaGJGh0dHA6Ly9jcmwuc3RhcnRz c2wuY29tL2NydDEtY3JsLmNybDCBjgYIKwYBBQUHAQEEgYEwfzA5BggrBgEFBQcw AYYtaHR0cDovL29jc3Auc3RhcnRzc2wuY29tL3N1Yi9jbGFzczEvc2VydmVyL2Nh MEIGCCsGAQUFBzAChjZodHRwOi8vYWlhLnN0YXJ0c3NsLmNvbS9jZXJ0cy9zdWIu Y2xhc3MxLnNlcnZlci5jYS5jcnQwIwYDVR0SBBwwGoYYaHR0cDovL3d3dy5zdGFy dHNzbC5jb20vMA0GCSqGSIb3DQEBCwUAA4IBAQCDmyw96tks3IP3f0tQtNvwQMpp Ig1hdgE5s2jV8O2SHD77b6J6IOCMe1mwz2jreT7GpYxtqvVes4smn7pgC6t7O3f8 lk6SSF2J60AdKVKukxlJid1Csn9g3I5HJ7pv/OqXDj9/7uNngO1/AsKKkwDzbbge 12/48zxV+FN3Fa27HOMtVnCJPxKC/F+FIO43xlRL4odXPn12mNqf7LNoo+la+kM3 EmW369lcM6DDWEMOofbQYBAUshAzIDpftP9qJ+VzQk9QBlwH1v/chmbx/m1dYvIN Soi07nXiQwicZ0p4UulFmQE8RsPIYS016NECzh0ps8IeMoO7ss3RSeT9JmeN -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApIoYUl2pnx3evytxCb1J M1zeV0cwwkW3cWL+9xAmpzQr2Qs7B1e65E3gCI9PRUXVyYiMIqgoAT/xOhXCAhuX Qq5v60syI9z8UdrW6AevFah+JxtkWKq0ltNzCvmHhgiwVMxljqutRdEU8avSypgL rGRpOBSRPpSYqem6vA35IKECK+yBJUsMdgoR4L/nxcKzSV+rD6kkao+nHFHwmXvu KJXe++ttTE3pDhC7sGmasnXmcM4KlugQPOimtRXla8Bw5cMA2T6Xdrk76PWZH2bc QaZ7TIg6EX6AFvP1HrHC5jK+Wknyam+NpNmTpshk0uRMGdGwfWUYoBFciUl05B78 fQIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded