blog.riditt.de

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 09:a6:32 was issued on by StartCom Ltd..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • Certificate has key usage [KeyAgreement] set
  • commonName field is deprecated
  • emailAddress field is deprecated

blog.riditt.de

Country: DE

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: DE

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 09:a6:32
Serial Number (int): 632370
Serial Number lenght: 20 bits, 3 octets

SubjectKeyId: 4d:e0:f5:23:28:3b:6f:35:57:d6:17:14:c0:de:06:cb:82:f4:f9:ee
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 41:69:87:36:fa:e7:38:00:2d:e8:7e:da:ff:cb:4a:3e:90:51:c3:d9
Fingerprint (sha256): a8:8f:d8:80:8a:fa:7a:a0:1b:0f:b4:75:f4:45:73:6c:e1:c2:3b:a0:8f:36:05:ff:92:57:cb:8c:f4:d6:40:9f

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on blog.riditt.de
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

blog.riditt.de
riditt.de

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIHTzCCBjegAwIBAgIDCaYyMA0GCSqGSIb3DQEBBQUAMIGMMQswCQYDVQQGEwJJ TDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjErMCkGA1UECxMiU2VjdXJlIERpZ2l0 YWwgQ2VydGlmaWNhdGUgU2lnbmluZzE4MDYGA1UEAxMvU3RhcnRDb20gQ2xhc3Mg MSBQcmltYXJ5IEludGVybWVkaWF0ZSBTZXJ2ZXIgQ0EwHhcNMTMwMzIxMjAwNzAy WhcNMTQwMzIzMDE1NDUwWjBlMRkwFwYDVQQNExAyTmpzUUQ2cTExNTZtNzN3MQsw CQYDVQQGEwJERTEXMBUGA1UEAxMOYmxvZy5yaWRpdHQuZGUxIjAgBgkqhkiG9w0B CQEWE3dlYm1hc3RlckByaWRpdHQuZGUwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAw ggIKAoICAQDFAeu2GaRz/+kdRfjcIfY84G+9v7G59iiKnLVdG0sgRMKXAszSfDdc xStRIxWPgnTr6F1uPECdtMNwo9oKc7rYUqF6v0bUYf4YdFnmOULQB1EKtbFf3tbc VPJ6WocXDudEzzQ/fbBSLfjEDwW/mIDplF5/WnlGaITDAwJyfhlnNprtUUcS16Lq f+J3kIUBJlxS8haIAqRT/5TS9FJBSg2qjvKy/xtjJGzCAHWXxlINDlQl760BeOqg sEjHPbh4USSokJ++ZlYI/2fD7pL8xbYEtOfyaPQhJLvOOSx31MfpN+NDEyqmOima nK6tqbVCxVlhmr5cK3XxmXxC+aEUxCjJTPAmEg9Vcxw8xFsXAeRHVI/EHpm2aNrV 9n4PcfOaFBZAbcLIseOQiWNaHp1fJ7Qfe3K6375bSJIXkvKoZhKkTwDV2naTWdk9 w2o2PGdAd2Lau0GUAPIR+vFZffb0TlybbhKguei2rDxD4N2+7yu9thgdPFkFVfYp eMUmv79z8FkfieudGBpzUVIZO+6bVyhWTM9QERAe2dZ/hL7GFVfwegiogBB0SSoU 9O6iQ8RnpGDg3sFzAz+XKJZfxhwxH9WImkQBfjrvfY9gjSQwh5E3cmnzr0cSTvnj EF+Zd9NntSETweo+SLMnWXCCkq/NmdVrqSVZ4ZDNdPKJX6KvK2+qKwIDAQABo4IC 3jCCAtowCQYDVR0TBAIwADALBgNVHQ8EBAMCA6gwEwYDVR0lBAwwCgYIKwYBBQUH AwEwHQYDVR0OBBYEFE3g9SMoO281V9YXFMDeBsuC9PnuMB8GA1UdIwQYMBaAFOtC NNCYsKuf9BtrCPfMZC7vDixFMCQGA1UdEQQdMBuCDmJsb2cucmlkaXR0LmRlggly aWRpdHQuZGUwggFWBgNVHSAEggFNMIIBSTAIBgZngQwBAgEwggE7BgsrBgEEAYG1 NwECAzCCASowLgYIKwYBBQUHAgEWImh0dHA6Ly93d3cuc3RhcnRzc2wuY29tL3Bv bGljeS5wZGYwgfcGCCsGAQUFBwICMIHqMCcWIFN0YXJ0Q29tIENlcnRpZmljYXRp b24gQXV0aG9yaXR5MAMCAQEagb5UaGlzIGNlcnRpZmljYXRlIHdhcyBpc3N1ZWQg YWNjb3JkaW5nIHRvIHRoZSBDbGFzcyAxIFZhbGlkYXRpb24gcmVxdWlyZW1lbnRz IG9mIHRoZSBTdGFydENvbSBDQSBwb2xpY3ksIHJlbGlhbmNlIG9ubHkgZm9yIHRo ZSBpbnRlbmRlZCBwdXJwb3NlIGluIGNvbXBsaWFuY2Ugb2YgdGhlIHJlbHlpbmcg cGFydHkgb2JsaWdhdGlvbnMuMDUGA1UdHwQuMCwwKqAooCaGJGh0dHA6Ly9jcmwu c3RhcnRzc2wuY29tL2NydDEtY3JsLmNybDCBjgYIKwYBBQUHAQEEgYEwfzA5Bggr BgEFBQcwAYYtaHR0cDovL29jc3Auc3RhcnRzc2wuY29tL3N1Yi9jbGFzczEvc2Vy dmVyL2NhMEIGCCsGAQUFBzAChjZodHRwOi8vYWlhLnN0YXJ0c3NsLmNvbS9jZXJ0 cy9zdWIuY2xhc3MxLnNlcnZlci5jYS5jcnQwIwYDVR0SBBwwGoYYaHR0cDovL3d3 dy5zdGFydHNzbC5jb20vMA0GCSqGSIb3DQEBBQUAA4IBAQCgR6w5VX0r+fETB9z4 mUSOUhp7GctlMU/wiy7B/5ZUOln1IIonYRMo4UztSd/syyYiW6wbDpoM1wgpaa3c KjfAuvQa5iYra5V5NNK8tRPejeUSpHIer1yrVY8z7dmBLebOOC1JIQssPag3Akm2 zrawsibYWLHVJcdmjjjAMWScI335U2GF1vc01QZkJGHuhWhybCA/P2OkuH7ERVZ6 UJ8roB1UE2f2vdSSlAJMlqzGg4eWosUAq2VZ09wVmK0OZMS+VQYXAbEjO9UUetkb Up+AlUbI0Yb5Lmwdq78peaiSYM8rsW8JaR1IhnbtUTc1kElFqO04hcBt8aIem0H/ 1MGx -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxQHrthmkc//pHUX43CH2 POBvvb+xufYoipy1XRtLIETClwLM0nw3XMUrUSMVj4J06+hdbjxAnbTDcKPaCnO6 2FKher9G1GH+GHRZ5jlC0AdRCrWxX97W3FTyelqHFw7nRM80P32wUi34xA8Fv5iA 6ZRef1p5RmiEwwMCcn4ZZzaa7VFHEtei6n/id5CFASZcUvIWiAKkU/+U0vRSQUoN qo7ysv8bYyRswgB1l8ZSDQ5UJe+tAXjqoLBIxz24eFEkqJCfvmZWCP9nw+6S/MW2 BLTn8mj0ISS7zjksd9TH6TfjQxMqpjopmpyuram1QsVZYZq+XCt18Zl8QvmhFMQo yUzwJhIPVXMcPMRbFwHkR1SPxB6Ztmja1fZ+D3HzmhQWQG3CyLHjkIljWh6dXye0 H3tyut++W0iSF5LyqGYSpE8A1dp2k1nZPcNqNjxnQHdi2rtBlADyEfrxWX329E5c m24SoLnotqw8Q+Ddvu8rvbYYHTxZBVX2KXjFJr+/c/BZH4nrnRgac1FSGTvum1co VkzPUBEQHtnWf4S+xhVX8HoIqIAQdEkqFPTuokPEZ6Rg4N7BcwM/lyiWX8YcMR/V iJpEAX46732PYI0kMIeRN3Jp869HEk754xBfmXfTZ7UhE8HqPkizJ1lwgpKvzZnV a6klWeGQzXTyiV+irytvqisCAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded