www.iainnicol.com

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 05:fe:53:59:b6:90:25 was issued on by StartCom Ltd..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • ERROR: Certificate has key usage [KeyAgreement] set

www.iainnicol.com

Country: GB

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: GB

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 05:fe:53:59:b6:90:25
Serial Number (int): 1687008824430629
Serial Number lenght: 51 bits, 7 octets

SubjectKeyId: c2:d6:a3:e7:e8:58:85:26:8c:7c:b8:29:f8:f2:3c:d2:ff:c9:96:e7
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): a0:10:3f:b7:b6:f7:e5:12:92:3d:88:b8:2f:67:ab:a9:58:a5:b8:96
Fingerprint (sha256): 35:54:9d:55:8e:d3:1a:e2:ca:7f:fe:c4:6f:7c:bd:e6:1f:b6:27:b8:59:4b:e0:c6:32:82:0d:5e:c9:ad:58:68

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on www.iainnicol.com
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

www.iainnicol.com
iainnicol.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIHZjCCBk6gAwIBAgIHBf5TWbaQJTANBgkqhkiG9w0BAQsFADCBjDELMAkGA1UE BhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4xKzApBgNVBAsTIlNlY3VyZSBE aWdpdGFsIENlcnRpZmljYXRlIFNpZ25pbmcxODA2BgNVBAMTL1N0YXJ0Q29tIENs YXNzIDEgUHJpbWFyeSBJbnRlcm1lZGlhdGUgU2VydmVyIENBMB4XDTE1MDcxNTIx NTAzNloXDTE2MDcxNjExMzMwMVowcTELMAkGA1UEBhMCR0IxGjAYBgNVBAMTEXd3 dy5pYWlubmljb2wuY29tMUYwRAYJKoZIhvcNAQkBFjc2ODc0YzQzNGZjN2Q0NjM4 YWM1MzY3MTA4ZWViY2ZlNi5wcm90ZWN0QHdob2lzZ3VhcmQuY29tMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArgbOq9x/NTpx2hbDkxs0bjs8YuH6I+3K xFFixB2H56NXRpmtS8oLDbXOijD0WFz+rxwJaXok38nJFc0eRHrmdXYQ/VwQlpDC UJORpgfqYzZR0ewWL8syBYi3be838A/ySARDe4n0I86jFuJ2m8eUQPxlznMZLQjn RWd/2pQrjfk3/Tl1TnFVzUNE2LHVSxuWqtH6fB2ZkzNO7j5DuO0BpY+L6WfE4hTN qebpRXRUvGuOTxA10xoFSyyWO25ffJKkk6XOrOpcruOG5hhoTNVazgZ+x84Hs/UO JRbp/8zis4iVSkcLySjr0u4JhjS4UsSj1ok3lzNCJ9vCSNjxIVushAZq+3qd83y7 2/ZUxiQJJqV1o0ME1oEfzBw1YXytJRXWtJ0cHAKMJ/8Cg/8DAKyI7V3l4fGExqTl cTZ1yaPOjWZ+GDIVwrQApz+3nEFzfXpeLVs5ReNs6ioD0Q9TgNK+RzaSDLUtcOTO c4XOHFkzpu0SO8t+O8LHjHqnDD9yV6HB5LplckJOJ0vrIBQ9qubonoC0XaX+VOXd ONW7zQMzTHfVkPywDLGsYfpUtjFpINzlbQD+4lY7hi3zk0RxRiLBHmfepdULOu2r BveoYQvCerSg0dknu9WQ80qgTjpeIqVd7Nm/zujJMrvR16LprfwTp966IrJoKNTM J3BeUUBEp2kCAwEAAaOCAuUwggLhMAkGA1UdEwQCMAAwCwYDVR0PBAQDAgOoMBMG A1UdJQQMMAoGCCsGAQUFBwMBMB0GA1UdDgQWBBTC1qPn6FiFJox8uCn48jzS/8mW 5zAfBgNVHSMEGDAWgBTrQjTQmLCrn/Qbawj3zGQu7w4sRTArBgNVHREEJDAighF3 d3cuaWFpbm5pY29sLmNvbYINaWFpbm5pY29sLmNvbTCCAVYGA1UdIASCAU0wggFJ MAgGBmeBDAECATCCATsGCysGAQQBgbU3AQIDMIIBKjAuBggrBgEFBQcCARYiaHR0 cDovL3d3dy5zdGFydHNzbC5jb20vcG9saWN5LnBkZjCB9wYIKwYBBQUHAgIwgeow JxYgU3RhcnRDb20gQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwAwIBARqBvlRoaXMg Y2VydGlmaWNhdGUgd2FzIGlzc3VlZCBhY2NvcmRpbmcgdG8gdGhlIENsYXNzIDEg VmFsaWRhdGlvbiByZXF1aXJlbWVudHMgb2YgdGhlIFN0YXJ0Q29tIENBIHBvbGlj eSwgcmVsaWFuY2Ugb25seSBmb3IgdGhlIGludGVuZGVkIHB1cnBvc2UgaW4gY29t cGxpYW5jZSBvZiB0aGUgcmVseWluZyBwYXJ0eSBvYmxpZ2F0aW9ucy4wNQYDVR0f BC4wLDAqoCigJoYkaHR0cDovL2NybC5zdGFydHNzbC5jb20vY3J0MS1jcmwuY3Js MIGOBggrBgEFBQcBAQSBgTB/MDkGCCsGAQUFBzABhi1odHRwOi8vb2NzcC5zdGFy dHNzbC5jb20vc3ViL2NsYXNzMS9zZXJ2ZXIvY2EwQgYIKwYBBQUHMAKGNmh0dHA6 Ly9haWEuc3RhcnRzc2wuY29tL2NlcnRzL3N1Yi5jbGFzczEuc2VydmVyLmNhLmNy dDAjBgNVHRIEHDAahhhodHRwOi8vd3d3LnN0YXJ0c3NsLmNvbS8wDQYJKoZIhvcN AQELBQADggEBAFROrBoldpSxyvBGsq429++rGRSUUSClijIn8lxf63Rztb/60eOi oa8CmUFblMMjQPEJzWEfkSf6Hdrsf9w0m09QIUGX8WZYHBH1sXW08VwsIfIs8nW8 t/izUFWlcCBsFCn0XwYKq3ab5OLXG8GhLQjdqbk7vI/P1WSOTrXhKOJuCgTXnHAO 0LuLYRydoj66PI1bcrRA/x/2+uph+rYpTtGunWeMvSUL1NklcwbCJZRvezH8qFfB peqnxn5tyY+ujYEghzMsabrCoTyYg00YdQBLIvAziMip2+q7vaeinrpuVzSDIIJB pcQwgJFiyYerps+KzetaqP8NLrB3F8eo8Z0= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArgbOq9x/NTpx2hbDkxs0 bjs8YuH6I+3KxFFixB2H56NXRpmtS8oLDbXOijD0WFz+rxwJaXok38nJFc0eRHrm dXYQ/VwQlpDCUJORpgfqYzZR0ewWL8syBYi3be838A/ySARDe4n0I86jFuJ2m8eU QPxlznMZLQjnRWd/2pQrjfk3/Tl1TnFVzUNE2LHVSxuWqtH6fB2ZkzNO7j5DuO0B pY+L6WfE4hTNqebpRXRUvGuOTxA10xoFSyyWO25ffJKkk6XOrOpcruOG5hhoTNVa zgZ+x84Hs/UOJRbp/8zis4iVSkcLySjr0u4JhjS4UsSj1ok3lzNCJ9vCSNjxIVus hAZq+3qd83y72/ZUxiQJJqV1o0ME1oEfzBw1YXytJRXWtJ0cHAKMJ/8Cg/8DAKyI 7V3l4fGExqTlcTZ1yaPOjWZ+GDIVwrQApz+3nEFzfXpeLVs5ReNs6ioD0Q9TgNK+ RzaSDLUtcOTOc4XOHFkzpu0SO8t+O8LHjHqnDD9yV6HB5LplckJOJ0vrIBQ9qubo noC0XaX+VOXdONW7zQMzTHfVkPywDLGsYfpUtjFpINzlbQD+4lY7hi3zk0RxRiLB HmfepdULOu2rBveoYQvCerSg0dknu9WQ80qgTjpeIqVd7Nm/zujJMrvR16LprfwT p966IrJoKNTMJ3BeUUBEp2kCAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded