mail.bolicek.cz

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 0a:31:08 was issued on by StartCom Ltd..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • Certificate has key usage [KeyAgreement] set
  • commonName field is deprecated
  • emailAddress field is deprecated

mail.bolicek.cz

Country: CZ

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: CZ

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 0a:31:08
Serial Number (int): 667912
Serial Number lenght: 20 bits, 3 octets

SubjectKeyId: 17:36:bc:73:29:5d:17:b8:63:82:b6:66:15:f1:5a:a5:16:2a:10:f5
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 2a:b4:d9:77:ef:93:4a:3f:6d:8d:4e:f5:00:e2:4d:79:10:3f:14:69
Fingerprint (sha256): 24:fc:6b:b7:18:9f:fa:83:4f:c0:c4:ef:25:15:14:92:6c:19:27:41:ce:ca:5d:c4:ca:3a:82:64:67:59:a3:11

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on mail.bolicek.cz
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

mail.bolicek.cz
bolicek.cz

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgIDCjEIMA0GCSqGSIb3DQEBBQUAMIGMMQswCQYDVQQGEwJJ TDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjErMCkGA1UECxMiU2VjdXJlIERpZ2l0 YWwgQ2VydGlmaWNhdGUgU2lnbmluZzE4MDYGA1UEAxMvU3RhcnRDb20gQ2xhc3Mg MSBQcmltYXJ5IEludGVybWVkaWF0ZSBTZXJ2ZXIgQ0EwHhcNMTMwNTAxMTMzNDU4 WhcNMTQwNTAzMDkwNTAwWjBnMRkwFwYDVQQNExAyMzI0YUtZc2w0bmRkRTRFMQsw CQYDVQQGEwJDWjEYMBYGA1UEAxMPbWFpbC5ib2xpY2VrLmN6MSMwIQYJKoZIhvcN AQkBFhR3ZWJtYXN0ZXJAYm9saWNlay5jejCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALliNz3lioXIOQGwAqvgTbAcn8WA97REP1ErYS38wFzC+HpVryh2 QtO1vGS5ZpaayGeuoJXO4jeUK870lh9zzR3K5QIGc03rZDCna9GZRAWLldgaPFmb mlqdXIVWCAoH+OwwLRIKWugfFrIg24D3kElbHWG0CcMKS/UtEAtKB+UW4HypqLNt RjEcvmJoL5zNl1UIKcizIvQ5H7l8jq0F2Ie1KA1kyqJQ4Xw/CvtbvGRT47yPC0tV QHyAApw9PKv7LHwDuuFhynguJugtnO0fystJrZepGZypIoHgFj+hhiIM8AIJBLbs bMiAO0vRQ5Jk3i/Y6TadRf/yFFPFY2jGDeMCAwEAAaOCAuAwggLcMAkGA1UdEwQC MAAwCwYDVR0PBAQDAgOoMBMGA1UdJQQMMAoGCCsGAQUFBwMBMB0GA1UdDgQWBBQX NrxzKV0XuGOCtmYV8VqlFioQ9TAfBgNVHSMEGDAWgBTrQjTQmLCrn/Qbawj3zGQu 7w4sRTAmBgNVHREEHzAdgg9tYWlsLmJvbGljZWsuY3qCCmJvbGljZWsuY3owggFW BgNVHSAEggFNMIIBSTAIBgZngQwBAgEwggE7BgsrBgEEAYG1NwECAzCCASowLgYI KwYBBQUHAgEWImh0dHA6Ly93d3cuc3RhcnRzc2wuY29tL3BvbGljeS5wZGYwgfcG CCsGAQUFBwICMIHqMCcWIFN0YXJ0Q29tIENlcnRpZmljYXRpb24gQXV0aG9yaXR5 MAMCAQEagb5UaGlzIGNlcnRpZmljYXRlIHdhcyBpc3N1ZWQgYWNjb3JkaW5nIHRv IHRoZSBDbGFzcyAxIFZhbGlkYXRpb24gcmVxdWlyZW1lbnRzIG9mIHRoZSBTdGFy dENvbSBDQSBwb2xpY3ksIHJlbGlhbmNlIG9ubHkgZm9yIHRoZSBpbnRlbmRlZCBw dXJwb3NlIGluIGNvbXBsaWFuY2Ugb2YgdGhlIHJlbHlpbmcgcGFydHkgb2JsaWdh dGlvbnMuMDUGA1UdHwQuMCwwKqAooCaGJGh0dHA6Ly9jcmwuc3RhcnRzc2wuY29t L2NydDEtY3JsLmNybDCBjgYIKwYBBQUHAQEEgYEwfzA5BggrBgEFBQcwAYYtaHR0 cDovL29jc3Auc3RhcnRzc2wuY29tL3N1Yi9jbGFzczEvc2VydmVyL2NhMEIGCCsG AQUFBzAChjZodHRwOi8vYWlhLnN0YXJ0c3NsLmNvbS9jZXJ0cy9zdWIuY2xhc3Mx LnNlcnZlci5jYS5jcnQwIwYDVR0SBBwwGoYYaHR0cDovL3d3dy5zdGFydHNzbC5j b20vMA0GCSqGSIb3DQEBBQUAA4IBAQBXex1d+ZVF1x4E/8S9CB/P1UNoRbegUKBs iZ7pnS/Y0KOIeabZ5Mpyf2dAQOFi1lcDdk9WC7ohblUPRgwUZTmk85n4L60/G32F cGQrM6VwZKlstiwZFr1WD3HFyuQr4m+tGtulkeSEmwOyuOtmNffam4h3m58d5JZJ gCI8TbQhfrNCyt7QRKJqkvf1t9wdm8EUkIjyjqvLi8Z9eED3YyDFmXPdhel/rxK6 DeRhRS4v5GaQ4SSvfb5BRBwwmrYJBnurd65zJLPkLG2rcbfr2osLL+ri+lmJ4TTr BfNC39xFbkBnYTwxty8cX4xCnVzTM6/5cG3Y/YEsfI0tWmYBO8i2 -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuWI3PeWKhcg5AbACq+BN sByfxYD3tEQ/USthLfzAXML4elWvKHZC07W8ZLlmlprIZ66glc7iN5QrzvSWH3PN HcrlAgZzTetkMKdr0ZlEBYuV2Bo8WZuaWp1chVYICgf47DAtEgpa6B8WsiDbgPeQ SVsdYbQJwwpL9S0QC0oH5RbgfKmos21GMRy+YmgvnM2XVQgpyLMi9DkfuXyOrQXY h7UoDWTKolDhfD8K+1u8ZFPjvI8LS1VAfIACnD08q/ssfAO64WHKeC4m6C2c7R/K y0mtl6kZnKkigeAWP6GGIgzwAgkEtuxsyIA7S9FDkmTeL9jpNp1F//IUU8VjaMYN 4wIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded