blog.srife.net

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 06:30:af:d1:3a:b4:c5 was issued on by StartCom Ltd..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • Certificate has key usage [KeyAgreement] set
  • commonName field is deprecated
  • emailAddress field is deprecated

blog.srife.net

Country: US

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 06:30:af:d1:3a:b4:c5
Serial Number (int): 1742381547959493
Serial Number lenght: 51 bits, 7 octets

SubjectKeyId: 68:02:61:4b:5f:63:1d:52:e5:f0:28:d6:b2:db:8f:2a:ea:a1:4c:a9
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 9a:47:15:17:8b:92:54:c4:a0:31:20:80:76:8a:65:25:9e:41:be:4e
Fingerprint (sha256): bc:e2:89:49:3c:ad:76:26:88:02:55:94:bc:ac:e0:19:7c:b2:87:00:6c:51:4e:6d:1a:60:7a:04:54:42:db:43

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on blog.srife.net
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

blog.srife.net
srife.net

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGOTCCBSGgAwIBAgIHBjCv0Tq0xTANBgkqhkiG9w0BAQsFADCBjDELMAkGA1UE BhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4xKzApBgNVBAsTIlNlY3VyZSBE aWdpdGFsIENlcnRpZmljYXRlIFNpZ25pbmcxODA2BgNVBAMTL1N0YXJ0Q29tIENs YXNzIDEgUHJpbWFyeSBJbnRlcm1lZGlhdGUgU2VydmVyIENBMB4XDTE1MDgyODAx MjEwMFoXDTE2MDgyNzE1NDgyMFowSzELMAkGA1UEBhMCVVMxFzAVBgNVBAMTDmJs b2cuc3JpZmUubmV0MSMwIQYJKoZIhvcNAQkBFhRzcmlmZWxsY0BvdXRsb29rLmNv bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOtS/qUKgYuoP8t073E1 LjfTKnrTJOCGnfb6x90P7nexB0KDF9+8mzZb0jUmxKm/cOU/hTTxA+22NdIuSjys vs0LyTguyLE/n3qNbNdqcPAJEhpveReGd/bqDNxZfbKepucJTCt4vDZycxDfxiAo K6uWzbSrzZKtKmSlaHDhWzWiUNnAkchqOk8qyaRmiW5wYXqn2qt5s6JdEBJ0OrCg vH56NRjKySYSKqeBYLAMtOsDL396qKpkOYhtyy7WDlRF70NcOlA9WWGKRqqdfG64 uCmxe0il39ANSSfhVeWQVmOe+FLsb7axKd0qiASzu5RTRKWg4B5j6cXinjr+Fmse Z4MCAwEAAaOCAt4wggLaMAkGA1UdEwQCMAAwCwYDVR0PBAQDAgOoMBMGA1UdJQQM MAoGCCsGAQUFBwMBMB0GA1UdDgQWBBRoAmFLX2MdUuXwKNay248q6qFMqTAfBgNV HSMEGDAWgBTrQjTQmLCrn/Qbawj3zGQu7w4sRTAkBgNVHREEHTAbgg5ibG9nLnNy aWZlLm5ldIIJc3JpZmUubmV0MIIBVgYDVR0gBIIBTTCCAUkwCAYGZ4EMAQIBMIIB OwYLKwYBBAGBtTcBAgMwggEqMC4GCCsGAQUFBwIBFiJodHRwOi8vd3d3LnN0YXJ0 c3NsLmNvbS9wb2xpY3kucGRmMIH3BggrBgEFBQcCAjCB6jAnFiBTdGFydENvbSBD ZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTADAgEBGoG+VGhpcyBjZXJ0aWZpY2F0ZSB3 YXMgaXNzdWVkIGFjY29yZGluZyB0byB0aGUgQ2xhc3MgMSBWYWxpZGF0aW9uIHJl cXVpcmVtZW50cyBvZiB0aGUgU3RhcnRDb20gQ0EgcG9saWN5LCByZWxpYW5jZSBv bmx5IGZvciB0aGUgaW50ZW5kZWQgcHVycG9zZSBpbiBjb21wbGlhbmNlIG9mIHRo ZSByZWx5aW5nIHBhcnR5IG9ibGlnYXRpb25zLjA1BgNVHR8ELjAsMCqgKKAmhiRo dHRwOi8vY3JsLnN0YXJ0c3NsLmNvbS9jcnQxLWNybC5jcmwwgY4GCCsGAQUFBwEB BIGBMH8wOQYIKwYBBQUHMAGGLWh0dHA6Ly9vY3NwLnN0YXJ0c3NsLmNvbS9zdWIv Y2xhc3MxL3NlcnZlci9jYTBCBggrBgEFBQcwAoY2aHR0cDovL2FpYS5zdGFydHNz bC5jb20vY2VydHMvc3ViLmNsYXNzMS5zZXJ2ZXIuY2EuY3J0MCMGA1UdEgQcMBqG GGh0dHA6Ly93d3cuc3RhcnRzc2wuY29tLzANBgkqhkiG9w0BAQsFAAOCAQEAiGpZ /D7qUjbO9m2kFy/Vvc1S1qanHbBQb82aamIF3ooYoAvZ9RSP7xH4Ax1/Ot3HbyEj hK3Z/8E8/27mJQU14OqTfbPrudX121fLoNY0/I1fWpWKEk23qoL6j2UtFegM52Nj aVUHxlxJ0O9COcaT2y/Jrxjwc4H6MWqozcwCvsB2BkuQVQXpfSltNO75hvH6ic7N zKNH60bROMoL98D8GPnNYtvixVZTK3nkHVjLjH2yRxW2H6/P9qRigXgS1U6gBYkA nhqOHofAr3r1s8jl77TWt/8Uurht3yM3rddG2xDXSCIZdHMzgkpGwfARbUMVkPu0 3XCa7jwHhzgOkvxmdw== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA61L+pQqBi6g/y3TvcTUu N9MqetMk4Iad9vrH3Q/ud7EHQoMX37ybNlvSNSbEqb9w5T+FNPED7bY10i5KPKy+ zQvJOC7IsT+feo1s12pw8AkSGm95F4Z39uoM3Fl9sp6m5wlMK3i8NnJzEN/GICgr q5bNtKvNkq0qZKVocOFbNaJQ2cCRyGo6TyrJpGaJbnBheqfaq3mzol0QEnQ6sKC8 fno1GMrJJhIqp4FgsAy06wMvf3qoqmQ5iG3LLtYOVEXvQ1w6UD1ZYYpGqp18bri4 KbF7SKXf0A1JJ+FV5ZBWY574UuxvtrEp3SqIBLO7lFNEpaDgHmPpxeKeOv4Wax5n gwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded