blog.ramsgaard.org

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 06:de:c4 was issued on by StartCom Ltd. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • ERROR: Certificate contains a key usage different from ClientAuth or EmailProtection
  • ERROR: Certificate has key usage [KeyAgreement] set

blog.ramsgaard.org

Country: DK

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: DK

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 06:de:c4
Serial Number (int): 450244
Serial Number lenght: 19 bits, 3 octets

SubjectKeyId: 2e:6f:1c:e5:ab:7e:f5:31:4b:ad:f0:b2:2c:2d:b0:63:4a:69:48:21
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 7d:d5:e8:8b:a6:c5:39:c7:12:ff:7b:18:4a:8e:30:69:01:51:fd:77
Fingerprint (sha256): d9:23:5b:91:f7:fc:35:b5:e5:a8:29:cd:f3:6f:ca:3e:f5:08:6c:1a:e4:21:f9:c9:85:a6:89:8d:97:bf:63:d0

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on blog.ramsgaard.org
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

blog.ramsgaard.org
ramsgaard.org

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIHKjCCBhKgAwIBAgIDBt7EMA0GCSqGSIb3DQEBBQUAMIGMMQswCQYDVQQGEwJJ TDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjErMCkGA1UECxMiU2VjdXJlIERpZ2l0 YWwgQ2VydGlmaWNhdGUgU2lnbmluZzE4MDYGA1UEAxMvU3RhcnRDb20gQ2xhc3Mg MSBQcmltYXJ5IEludGVybWVkaWF0ZSBTZXJ2ZXIgQ0EwHhcNMTIwNzIxMDMzMDI5 WhcNMTMwNzIyMDQxNjMwWjBtMRkwFwYDVQQNExA4NUk0TnJGNDdDem9HeWtIMQsw CQYDVQQGEwJESzEbMBkGA1UEAxMSYmxvZy5yYW1zZ2FhcmQub3JnMSYwJAYJKoZI hvcNAQkBFhd3ZWJtYXN0ZXJAcmFtc2dhYXJkLm9yZzCCASIwDQYJKoZIhvcNAQEB BQADggEPADCCAQoCggEBALqr0KCYn3zKvVyDSTytRSWQbOF4L+7Ep28xWhkRGIkK 7L7rGmS5gNUbhX4pWUX7+O4IB7fhPVZAGFZWzUNpFWwp0Ebs+qpHpzv+Zt4Mh6XO sbHOGc8OJhwtIt7w21PBGd050j/ki3Su9Gy2QwTKgOuqqafCTA1I7KKWUgWYPi/H FEhQdAdfo6ngTXoxfH8+eVjCMC1c+psSc6gdl7ipfUesmdP71HAW9BepVNWt3iXA 5tkj9yzW1HCk24gI2cz/N26A53KKgIiifRKxHLTNW8P6SihFdzwy5WtsHibqOAAW 8GBkNcV14mTmcU5Ry3aNtnFqPbnNUuMnKVpJ8zmkVkkCAwEAAaOCA7EwggOtMAkG A1UdEwQCMAAwCwYDVR0PBAQDAgOoMBMGA1UdJQQMMAoGCCsGAQUFBwMBMB0GA1Ud DgQWBBQubxzlq371MUut8LIsLbBjSmlIITAfBgNVHSMEGDAWgBTrQjTQmLCrn/Qb awj3zGQu7w4sRTAsBgNVHREEJTAjghJibG9nLnJhbXNnYWFyZC5vcmeCDXJhbXNn YWFyZC5vcmcwggIhBgNVHSAEggIYMIICFDCCAhAGCysGAQQBgbU3AQICMIIB/zAu BggrBgEFBQcCARYiaHR0cDovL3d3dy5zdGFydHNzbC5jb20vcG9saWN5LnBkZjA0 BggrBgEFBQcCARYoaHR0cDovL3d3dy5zdGFydHNzbC5jb20vaW50ZXJtZWRpYXRl LnBkZjCB9wYIKwYBBQUHAgIwgeowJxYgU3RhcnRDb20gQ2VydGlmaWNhdGlvbiBB dXRob3JpdHkwAwIBARqBvlRoaXMgY2VydGlmaWNhdGUgd2FzIGlzc3VlZCBhY2Nv cmRpbmcgdG8gdGhlIENsYXNzIDEgVmFsaWRhdGlvbiByZXF1aXJlbWVudHMgb2Yg dGhlIFN0YXJ0Q29tIENBIHBvbGljeSwgcmVsaWFuY2Ugb25seSBmb3IgdGhlIGlu dGVuZGVkIHB1cnBvc2UgaW4gY29tcGxpYW5jZSBvZiB0aGUgcmVseWluZyBwYXJ0 eSBvYmxpZ2F0aW9ucy4wgZwGCCsGAQUFBwICMIGPMCcWIFN0YXJ0Q29tIENlcnRp ZmljYXRpb24gQXV0aG9yaXR5MAMCAQIaZExpYWJpbGl0eSBhbmQgd2FycmFudGll cyBhcmUgbGltaXRlZCEgU2VlIHNlY3Rpb24gIkxlZ2FsIGFuZCBMaW1pdGF0aW9u cyIgb2YgdGhlIFN0YXJ0Q29tIENBIHBvbGljeS4wNQYDVR0fBC4wLDAqoCigJoYk aHR0cDovL2NybC5zdGFydHNzbC5jb20vY3J0MS1jcmwuY3JsMIGOBggrBgEFBQcB AQSBgTB/MDkGCCsGAQUFBzABhi1odHRwOi8vb2NzcC5zdGFydHNzbC5jb20vc3Vi L2NsYXNzMS9zZXJ2ZXIvY2EwQgYIKwYBBQUHMAKGNmh0dHA6Ly9haWEuc3RhcnRz c2wuY29tL2NlcnRzL3N1Yi5jbGFzczEuc2VydmVyLmNhLmNydDAjBgNVHRIEHDAa hhhodHRwOi8vd3d3LnN0YXJ0c3NsLmNvbS8wDQYJKoZIhvcNAQEFBQADggEBAKWY oTALEt4XcnbP+pdfbUjNUeR1UZ9mJOLYZb3+YY2jSOlggq0GWfX125HomRcEkfP1 be0R32qTGo+kVK1dHsrOYe9XMI9dKcKCsk/RrOoJJcJcrNJdYZEy42w0cVeJOHFR Qsjtmn1szSD8I5j1vZ9OT6FfMpNj+7W6Subb7vQ4YRE92vvq4aQUlAPQEbTZYrDy 88cUQbHsdoAXBaPBzmN48WAeGdMjGXTKVsELCAZUD/X2KrZGMjsjl+OdWt4GXwkB //sXorAu187D1PwPOHkl7e8wSAjmXhvtKgYZkVzf7jvuJM3qFh6IINbQlt8Yp24M rfGpo4hl7IPfT1Ld79M= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuqvQoJiffMq9XINJPK1F JZBs4Xgv7sSnbzFaGREYiQrsvusaZLmA1RuFfilZRfv47ggHt+E9VkAYVlbNQ2kV bCnQRuz6qkenO/5m3gyHpc6xsc4Zzw4mHC0i3vDbU8EZ3TnSP+SLdK70bLZDBMqA 66qpp8JMDUjsopZSBZg+L8cUSFB0B1+jqeBNejF8fz55WMIwLVz6mxJzqB2XuKl9 R6yZ0/vUcBb0F6lU1a3eJcDm2SP3LNbUcKTbiAjZzP83boDncoqAiKJ9ErEctM1b w/pKKEV3PDLla2weJuo4ABbwYGQ1xXXiZOZxTlHLdo22cWo9uc1S4ycpWknzOaRW SQIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded