blog.allanglesit.com

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 04:6c:67 was issued on by StartCom Ltd. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • ERROR: Certificate contains a key usage different from ClientAuth or EmailProtection
  • ERROR: Certificate has key usage [KeyAgreement] set

blog.allanglesit.com

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 04:6c:67
Serial Number (int): 289895
Serial Number lenght: 19 bits, 3 octets

SubjectKeyId: 4a:13:5b:8b:59:28:5b:7b:af:1e:ca:70:f5:d0:81:f3:72:33:44:77
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 07:3e:f7:95:f4:4e:40:2b:70:82:9b:d8:d0:a1:28:20:17:8e:95:e9
Fingerprint (sha256): d7:62:40:58:8a:f7:fe:d9:6b:fa:97:c7:f0:87:ce:57:a4:24:56:28:ec:85:6e:ea:78:16:64:1f:2a:5c:2b:74

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on blog.allanglesit.com
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

blog.allanglesit.com
allanglesit.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIHLTCCBhWgAwIBAgIDBGxnMA0GCSqGSIb3DQEBBQUAMIGMMQswCQYDVQQGEwJJ TDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjErMCkGA1UECxMiU2VjdXJlIERpZ2l0 YWwgQ2VydGlmaWNhdGUgU2lnbmluZzE4MDYGA1UEAxMvU3RhcnRDb20gQ2xhc3Mg MSBQcmltYXJ5IEludGVybWVkaWF0ZSBTZXJ2ZXIgQ0EwHhcNMTExMDA5MTIwNTE0 WhcNMTIxMDA5MTY1MTE4WjBsMSAwHgYDVQQNExc1MzI2NDQtcGFISnBoODk5ajNp TlpkdjEdMBsGA1UEAxMUYmxvZy5hbGxhbmdsZXNpdC5jb20xKTAnBgkqhkiG9w0B CQEWGmhvc3RtYXN0ZXJAYWxsYW5nbGVzaXQuY29tMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEA/FKH82j/UZSYeUJ5NyZWAbOnMdwNr4ZOUAJpoqRSnzTc /B/va7R9ONt/xH8/GP8vg3aMecAZw6KBEPIrNQju5XmfGmeK/ZnvmTwUMR06d9MX yskKDqnJjqGV52qKeThRSmWnULOBhVxb8nVWmRg3DgyyPbbP/lhDBR5JCcrUbqms GrfvfPfjwMjg8OrL4ZPg500UvjLYSgv4OIm+QAlItB+h0xPoBn6Vq4/oigwtrl8b ZJED0g8I9n5aYfEbwYY2hZBuMKQ6SdtXuiDUpl1ThKc4+H7DptzycdwoOCF0woEk eZX9MdbcsACPUvgwuujJKrXS5lbYESaeFJlNEmLsTQIDAQABo4IDtTCCA7EwCQYD VR0TBAIwADALBgNVHQ8EBAMCA6gwEwYDVR0lBAwwCgYIKwYBBQUHAwEwHQYDVR0O BBYEFEoTW4tZKFt7rx7KcPXQgfNyM0R3MB8GA1UdIwQYMBaAFOtCNNCYsKuf9Btr CPfMZC7vDixFMDAGA1UdEQQpMCeCFGJsb2cuYWxsYW5nbGVzaXQuY29tgg9hbGxh bmdsZXNpdC5jb20wggIhBgNVHSAEggIYMIICFDCCAhAGCysGAQQBgbU3AQICMIIB /zAuBggrBgEFBQcCARYiaHR0cDovL3d3dy5zdGFydHNzbC5jb20vcG9saWN5LnBk ZjA0BggrBgEFBQcCARYoaHR0cDovL3d3dy5zdGFydHNzbC5jb20vaW50ZXJtZWRp YXRlLnBkZjCB9wYIKwYBBQUHAgIwgeowJxYgU3RhcnRDb20gQ2VydGlmaWNhdGlv biBBdXRob3JpdHkwAwIBARqBvlRoaXMgY2VydGlmaWNhdGUgd2FzIGlzc3VlZCBh Y2NvcmRpbmcgdG8gdGhlIENsYXNzIDEgVmFsaWRhdGlvbiByZXF1aXJlbWVudHMg b2YgdGhlIFN0YXJ0Q29tIENBIHBvbGljeSwgcmVsaWFuY2Ugb25seSBmb3IgdGhl IGludGVuZGVkIHB1cnBvc2UgaW4gY29tcGxpYW5jZSBvZiB0aGUgcmVseWluZyBw YXJ0eSBvYmxpZ2F0aW9ucy4wgZwGCCsGAQUFBwICMIGPMCcWIFN0YXJ0Q29tIENl cnRpZmljYXRpb24gQXV0aG9yaXR5MAMCAQIaZExpYWJpbGl0eSBhbmQgd2FycmFu dGllcyBhcmUgbGltaXRlZCEgU2VlIHNlY3Rpb24gIkxlZ2FsIGFuZCBMaW1pdGF0 aW9ucyIgb2YgdGhlIFN0YXJ0Q29tIENBIHBvbGljeS4wNQYDVR0fBC4wLDAqoCig JoYkaHR0cDovL2NybC5zdGFydHNzbC5jb20vY3J0MS1jcmwuY3JsMIGOBggrBgEF BQcBAQSBgTB/MDkGCCsGAQUFBzABhi1odHRwOi8vb2NzcC5zdGFydHNzbC5jb20v c3ViL2NsYXNzMS9zZXJ2ZXIvY2EwQgYIKwYBBQUHMAKGNmh0dHA6Ly9haWEuc3Rh cnRzc2wuY29tL2NlcnRzL3N1Yi5jbGFzczEuc2VydmVyLmNhLmNydDAjBgNVHRIE HDAahhhodHRwOi8vd3d3LnN0YXJ0c3NsLmNvbS8wDQYJKoZIhvcNAQEFBQADggEB ADxtjpWQKt+hfpz8P4eT2u3vfc+6BjdroL/DLOacWcjZfrUhwUAgVqz6xTOQki64 qDTEhxyi02WRSBcSv93BfxZ70hGKu6nu4ibhnXO5McZ/0gDXCL70F7nIghuO3pcH jLdtAQ2MdtvdT7cZUifnz/Unr8nTgCzBr5M4FCDBEBfteJEszKhC8M92UcuPVRTK DR+B0G1WGwErlGQUsYJemv1MjIZEzfhrh1CNW7SpXXzJNNxZH3TMx9W5guf0cBh6 xBOzwH3Lg4TbnmoGJjGc5ITYl6w9SISHt//iWacD/ZXatxp83X9X/8TQaDziDbFF ZDbXK5kFU1yI4ufnwjcLAbE= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA/FKH82j/UZSYeUJ5NyZW AbOnMdwNr4ZOUAJpoqRSnzTc/B/va7R9ONt/xH8/GP8vg3aMecAZw6KBEPIrNQju 5XmfGmeK/ZnvmTwUMR06d9MXyskKDqnJjqGV52qKeThRSmWnULOBhVxb8nVWmRg3 DgyyPbbP/lhDBR5JCcrUbqmsGrfvfPfjwMjg8OrL4ZPg500UvjLYSgv4OIm+QAlI tB+h0xPoBn6Vq4/oigwtrl8bZJED0g8I9n5aYfEbwYY2hZBuMKQ6SdtXuiDUpl1T hKc4+H7DptzycdwoOCF0woEkeZX9MdbcsACPUvgwuujJKrXS5lbYESaeFJlNEmLs TQIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded