blog.czelo.com

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 06:4c:0a:93:01:cb:fb was issued on by StartCom Ltd. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • ERROR: Certificate has key usage [KeyAgreement] set

blog.czelo.com

Country: CN

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: CN

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 06:4c:0a:93:01:cb:fb
Serial Number (int): 1772458160016379
Serial Number lenght: 51 bits, 7 octets

SubjectKeyId: 2d:7b:98:06:29:9f:b2:0b:ec:1b:4d:f0:50:01:48:b1:52:52:ac:f0
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 79:59:13:50:f6:5c:97:f4:36:6e:ca:9c:31:37:4c:83:34:4f:3c:7c
Fingerprint (sha256): c6:4f:b5:37:7e:2d:a3:2c:00:71:71:f0:34:8d:40:0e:70:85:49:62:96:75:f5:67:4d:2a:51:af:77:6e:2b:4d

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on blog.czelo.com
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

blog.czelo.com
czelo.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGOTCCBSGgAwIBAgIHBkwKkwHL+zANBgkqhkiG9w0BAQsFADCBjDELMAkGA1UE BhMCSUwxFjAUBgNVBAoTDVN0YXJ0Q29tIEx0ZC4xKzApBgNVBAsTIlNlY3VyZSBE aWdpdGFsIENlcnRpZmljYXRlIFNpZ25pbmcxODA2BgNVBAMTL1N0YXJ0Q29tIENs YXNzIDEgUHJpbWFyeSBJbnRlcm1lZGlhdGUgU2VydmVyIENBMB4XDTE1MDkxNzE0 NDU1MloXDTE2MDkxNzE0MzMxM1owSzELMAkGA1UEBhMCQ04xFzAVBgNVBAMTDmJs b2cuY3plbG8uY29tMSMwIQYJKoZIhvcNAQkBFhRwb3N0bWFzdGVyQGN6ZWxvLmNv bTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBANFLmNnp0c31hiRmx7r7 LBi9lyWRm5BHDgJTdoTX5lESCbA/NTX6GW2OVceIZGRGygbQ71Ht8aa3y7pInK1i 5eNsu2cMWpeK6+G3gIHLN5V6nSPaGmkpFVzMrXqpg6658BLhzcI2dXoff1BIVbZK +91x7Dj2m71VpMsTgAebGfq9HMczjHKdGsKOp34/rT6BUFHe7gRY1Ed9hEzFNXw+ zYaGgdkSe+DlzlFV1qQqZPAcxoWKCbQfB+f/348yBTmVHYxKg5DHiH6J1rZ4jbbg teuFm1rTOLQ7gIR5hlwZgg+QgXpGlX4yca4aI/xpnlPRQZoq8hwI5HFc04N7KOwY RXMCAwEAAaOCAt4wggLaMAkGA1UdEwQCMAAwCwYDVR0PBAQDAgOoMBMGA1UdJQQM MAoGCCsGAQUFBwMBMB0GA1UdDgQWBBQte5gGKZ+yC+wbTfBQAUixUlKs8DAfBgNV HSMEGDAWgBTrQjTQmLCrn/Qbawj3zGQu7w4sRTAkBgNVHREEHTAbgg5ibG9nLmN6 ZWxvLmNvbYIJY3plbG8uY29tMIIBVgYDVR0gBIIBTTCCAUkwCAYGZ4EMAQIBMIIB OwYLKwYBBAGBtTcBAgMwggEqMC4GCCsGAQUFBwIBFiJodHRwOi8vd3d3LnN0YXJ0 c3NsLmNvbS9wb2xpY3kucGRmMIH3BggrBgEFBQcCAjCB6jAnFiBTdGFydENvbSBD ZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTADAgEBGoG+VGhpcyBjZXJ0aWZpY2F0ZSB3 YXMgaXNzdWVkIGFjY29yZGluZyB0byB0aGUgQ2xhc3MgMSBWYWxpZGF0aW9uIHJl cXVpcmVtZW50cyBvZiB0aGUgU3RhcnRDb20gQ0EgcG9saWN5LCByZWxpYW5jZSBv bmx5IGZvciB0aGUgaW50ZW5kZWQgcHVycG9zZSBpbiBjb21wbGlhbmNlIG9mIHRo ZSByZWx5aW5nIHBhcnR5IG9ibGlnYXRpb25zLjA1BgNVHR8ELjAsMCqgKKAmhiRo dHRwOi8vY3JsLnN0YXJ0c3NsLmNvbS9jcnQxLWNybC5jcmwwgY4GCCsGAQUFBwEB BIGBMH8wOQYIKwYBBQUHMAGGLWh0dHA6Ly9vY3NwLnN0YXJ0c3NsLmNvbS9zdWIv Y2xhc3MxL3NlcnZlci9jYTBCBggrBgEFBQcwAoY2aHR0cDovL2FpYS5zdGFydHNz bC5jb20vY2VydHMvc3ViLmNsYXNzMS5zZXJ2ZXIuY2EuY3J0MCMGA1UdEgQcMBqG GGh0dHA6Ly93d3cuc3RhcnRzc2wuY29tLzANBgkqhkiG9w0BAQsFAAOCAQEAToPh JRexkVkG0LGIcKxa7+0XJXdX/ex/oa3dy1HJ627L08MsO9PqpG5dx1u9559vT0Tt NgNbztryOmrMMLJQt+LsAF7XJ0bQoJPBIO9Jax2FZ8dH1QTkYLhXQtQYFjacHmnP 5nVuS36jCn1QuDrmOWi1qwMbdPRBrI/kQUWlYNzQzUmxpIZMKKz8xHMXD57jkfTv xxTPf3I/MnDxAhW7SieRsSPwYdQXBmIOCNg6FyZz3d9VDFcp8AlC+XNmxgSNIBVo aDvbVwvsaqcGc1Z34g+0oSlHvY8B2vDHPprqrO2rwYv/9eozURgcNbGmu+la5BVj JiJOt87b34kSm8Aoeg== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0UuY2enRzfWGJGbHuvss GL2XJZGbkEcOAlN2hNfmURIJsD81NfoZbY5Vx4hkZEbKBtDvUe3xprfLukicrWLl 42y7Zwxal4rr4beAgcs3lXqdI9oaaSkVXMyteqmDrrnwEuHNwjZ1eh9/UEhVtkr7 3XHsOPabvVWkyxOAB5sZ+r0cxzOMcp0awo6nfj+tPoFQUd7uBFjUR32ETMU1fD7N hoaB2RJ74OXOUVXWpCpk8BzGhYoJtB8H5//fjzIFOZUdjEqDkMeIfonWtniNtuC1 64WbWtM4tDuAhHmGXBmCD5CBekaVfjJxrhoj/GmeU9FBmiryHAjkcVzTg3so7BhF cwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded