blog.libove.org

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 05:14:d5:3f:72:78:5c was issued on by StartCom Ltd..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • ERROR: Certificate has key usage [KeyAgreement] set

blog.libove.org

Country: DE

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: DE

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 05:14:d5:3f:72:78:5c
Serial Number (int): 1430281008609372
Serial Number lenght: 51 bits, 7 octets

SubjectKeyId: ec:c5:a3:98:cc:fd:70:51:29:d2:3e:f4:a6:a8:8c:bc:bc:fb:29:9d
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 93:73:36:09:99:a9:d0:03:4d:0d:2b:ec:1f:0b:39:63:26:10:66:84
Fingerprint (sha256): 9b:ba:5e:5e:13:b3:a3:d5:3d:c8:41:ea:3a:03:dc:19:75:cf:b8:5c:d2:d1:0d:52:8f:6c:bf:de:77:3b:d8:9a

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on blog.libove.org
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

blog.libove.org
libove.org

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGPDCCBSSgAwIBAgIHBRTVP3J4XDANBgkqhkiG9w0BAQsFADCBjDELMAkGA1UE BhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4xKzApBgNVBAsTIlNlY3VyZSBE aWdpdGFsIENlcnRpZmljYXRlIFNpZ25pbmcxODA2BgNVBAMTL1N0YXJ0Q29tIENs YXNzIDEgUHJpbWFyeSBJbnRlcm1lZGlhdGUgU2VydmVyIENBMB4XDTE1MDEyMDA5 MDgxN1oXDTE2MDEyMjAwMzYwNVowTDELMAkGA1UEBhMCREUxGDAWBgNVBAMTD2Js b2cubGlib3ZlLm9yZzEjMCEGCSqGSIb3DQEJARYUd2VibWFzdGVyQGxpYm92ZS5v cmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtgvIjfFmFLLSOuNAD DVZwn/IejIch6r/gZavolFj+j+trYpVuyGDqW2CD8ANJz/LRBw5xAVXpq5wmR+tq 8yNCzguazGP4HVyAFbvrYi5WUAkBoes9iCPLTGSj+gEHADFoJ6mERk88OmAE9b7p kpz/ls4odcEwR7bKKumB+O9tdJ0CNDIu5WuvTfwZJ0srz7IlR0oJ8NdaTlWQ2KGv XXl69IFLb4lamiBDocufvA4tQtvj5d0AAFOAQ9ktQnZZkfRf5FpzaZpmuyF4C16B AzQbIORo908dOH/8WdEQ7FVV06QHIDjImwu/p3MOkVXmgVnQiC3LYVb2xk8z6Oqv IHsNAgMBAAGjggLgMIIC3DAJBgNVHRMEAjAAMAsGA1UdDwQEAwIDqDATBgNVHSUE DDAKBggrBgEFBQcDATAdBgNVHQ4EFgQU7MWjmMz9cFEp0j70pqiMvLz7KZ0wHwYD VR0jBBgwFoAU60I00Jiwq5/0G2sI98xkLu8OLEUwJgYDVR0RBB8wHYIPYmxvZy5s aWJvdmUub3JnggpsaWJvdmUub3JnMIIBVgYDVR0gBIIBTTCCAUkwCAYGZ4EMAQIB MIIBOwYLKwYBBAGBtTcBAgMwggEqMC4GCCsGAQUFBwIBFiJodHRwOi8vd3d3LnN0 YXJ0c3NsLmNvbS9wb2xpY3kucGRmMIH3BggrBgEFBQcCAjCB6jAnFiBTdGFydENv bSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTADAgEBGoG+VGhpcyBjZXJ0aWZpY2F0 ZSB3YXMgaXNzdWVkIGFjY29yZGluZyB0byB0aGUgQ2xhc3MgMSBWYWxpZGF0aW9u IHJlcXVpcmVtZW50cyBvZiB0aGUgU3RhcnRDb20gQ0EgcG9saWN5LCByZWxpYW5j ZSBvbmx5IGZvciB0aGUgaW50ZW5kZWQgcHVycG9zZSBpbiBjb21wbGlhbmNlIG9m IHRoZSByZWx5aW5nIHBhcnR5IG9ibGlnYXRpb25zLjA1BgNVHR8ELjAsMCqgKKAm hiRodHRwOi8vY3JsLnN0YXJ0c3NsLmNvbS9jcnQxLWNybC5jcmwwgY4GCCsGAQUF BwEBBIGBMH8wOQYIKwYBBQUHMAGGLWh0dHA6Ly9vY3NwLnN0YXJ0c3NsLmNvbS9z dWIvY2xhc3MxL3NlcnZlci9jYTBCBggrBgEFBQcwAoY2aHR0cDovL2FpYS5zdGFy dHNzbC5jb20vY2VydHMvc3ViLmNsYXNzMS5zZXJ2ZXIuY2EuY3J0MCMGA1UdEgQc MBqGGGh0dHA6Ly93d3cuc3RhcnRzc2wuY29tLzANBgkqhkiG9w0BAQsFAAOCAQEA Nr31D1VWO1iuH7n9Wjgul2KDt+m0orBaOIfm6FXEx5a/r41Myu30Jd8y5AzqXX8X n+W1PtrjmruoLi992pdYPBxd/72nZosGLBc2dH6p3W2WCbQdbZbLl+ZsPr/lehWC jSOgR6iijpz3Z5+u5LWm6jtMD9xS7l4gqcPAScfVgLBGSPeI1aepiS5fG5vmG4MW kHqT7nVwzxtHYLEsMCtSElN52Iw8ztRR0uKsAdDJIYspoGxSROu9M5VHZVzs8SPw I2568/E+xkdHQ4fr9952JGsQD5CHYCqq6MLb2R43FapoHauoyhEL8YJ8J/5FY+vL CcQNjL5Ml2hL4lhtLTy9dQ== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArYLyI3xZhSy0jrjQAw1W cJ/yHoyHIeq/4GWr6JRY/o/ra2KVbshg6ltgg/ADSc/y0QcOcQFV6aucJkfravMj Qs4Lmsxj+B1cgBW762IuVlAJAaHrPYgjy0xko/oBBwAxaCephEZPPDpgBPW+6ZKc /5bOKHXBMEe2yirpgfjvbXSdAjQyLuVrr038GSdLK8+yJUdKCfDXWk5VkNihr115 evSBS2+JWpogQ6HLn7wOLULb4+XdAABTgEPZLUJ2WZH0X+Rac2maZrsheAtegQM0 GyDkaPdPHTh//FnREOxVVdOkByA4yJsLv6dzDpFV5oFZ0Igty2FW9sZPM+jqryB7 DQIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded