lists.opendnssec.org

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 0b:2b:2f was issued on by StartCom Ltd..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • Certificate has key usage [KeyAgreement] set
  • commonName field is deprecated
  • emailAddress field is deprecated

lists.opendnssec.org

Country: SE

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: SE

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 0b:2b:2f
Serial Number (int): 731951
Serial Number lenght: 20 bits, 3 octets

SubjectKeyId: 15:f6:7d:05:24:af:f8:ab:40:38:04:eb:76:a9:07:ef:25:ba:95:fc
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 69:cb:07:0c:88:be:52:d1:e0:d2:9d:b0:e1:21:01:fd:79:e1:2a:f9
Fingerprint (sha256): 41:bd:10:89:7a:cc:2f:9f:07:2b:5b:07:71:2f:e3:95:f0:9f:fb:b9:f8:ff:de:97:16:6a:a3:15:cb:db:f8:d2

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on lists.opendnssec.org
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

lists.opendnssec.org
opendnssec.org

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGZjCCBU6gAwIBAgIDCysvMA0GCSqGSIb3DQEBBQUAMIGMMQswCQYDVQQGEwJJ TDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjErMCkGA1UECxMiU2VjdXJlIERpZ2l0 YWwgQ2VydGlmaWNhdGUgU2lnbmluZzE4MDYGA1UEAxMvU3RhcnRDb20gQ2xhc3Mg MSBQcmltYXJ5IEludGVybWVkaWF0ZSBTZXJ2ZXIgQ0EwHhcNMTMwNzE4MDE1NjQx WhcNMTQwNzE4MTQ0ODA4WjBxMRkwFwYDVQQNExBCVG04M1RMeHMwcDhPMDRXMQsw CQYDVQQGEwJTRTEdMBsGA1UEAxMUbGlzdHMub3BlbmRuc3NlYy5vcmcxKDAmBgkq hkiG9w0BCQEWGWhvc3RtYXN0ZXJAb3BlbmRuc3NlYy5vcmcwggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQDXYQBQVBcs5fw2Z6p1WTTXT8Eg6IAok4gVj5Rz Zkf8ykldC2qjHZUg3hqrS070u5yJIvsW5ha5iamaVDkEes3XLVbCcFtOlXAxhMBM AdCxoZXOhFRzMAI6gLdW5ElV2wlZmLZkcJ1y+vJXHAfn1Y033uitwooCf8mUJMIc HJh5F1zp6LF2Ol5nRqvFPMvLn8GMsAa+1BtWn2X6Oi4fBiLYWSflaEfoDNvVzBYs EodIVDWL2ICfUbQOZsAtCRlFzT4X220br06/oiBOsxmbc2mLrpGGRZAjBwMrXpiL 2QYg52tlfP9qlgFH/SPthlCmMASFJCYfJqh3JO8UdLpAKcXVAgMBAAGjggLpMIIC 5TAJBgNVHRMEAjAAMAsGA1UdDwQEAwIDqDATBgNVHSUEDDAKBggrBgEFBQcDATAd BgNVHQ4EFgQUFfZ9BSSv+KtAOATrdqkH7yW6lfwwHwYDVR0jBBgwFoAU60I00Jiw q5/0G2sI98xkLu8OLEUwLwYDVR0RBCgwJoIUbGlzdHMub3BlbmRuc3NlYy5vcmeC Dm9wZW5kbnNzZWMub3JnMIIBVgYDVR0gBIIBTTCCAUkwCAYGZ4EMAQIBMIIBOwYL KwYBBAGBtTcBAgMwggEqMC4GCCsGAQUFBwIBFiJodHRwOi8vd3d3LnN0YXJ0c3Ns LmNvbS9wb2xpY3kucGRmMIH3BggrBgEFBQcCAjCB6jAnFiBTdGFydENvbSBDZXJ0 aWZpY2F0aW9uIEF1dGhvcml0eTADAgEBGoG+VGhpcyBjZXJ0aWZpY2F0ZSB3YXMg aXNzdWVkIGFjY29yZGluZyB0byB0aGUgQ2xhc3MgMSBWYWxpZGF0aW9uIHJlcXVp cmVtZW50cyBvZiB0aGUgU3RhcnRDb20gQ0EgcG9saWN5LCByZWxpYW5jZSBvbmx5 IGZvciB0aGUgaW50ZW5kZWQgcHVycG9zZSBpbiBjb21wbGlhbmNlIG9mIHRoZSBy ZWx5aW5nIHBhcnR5IG9ibGlnYXRpb25zLjA1BgNVHR8ELjAsMCqgKKAmhiRodHRw Oi8vY3JsLnN0YXJ0c3NsLmNvbS9jcnQxLWNybC5jcmwwgY4GCCsGAQUFBwEBBIGB MH8wOQYIKwYBBQUHMAGGLWh0dHA6Ly9vY3NwLnN0YXJ0c3NsLmNvbS9zdWIvY2xh c3MxL3NlcnZlci9jYTBCBggrBgEFBQcwAoY2aHR0cDovL2FpYS5zdGFydHNzbC5j b20vY2VydHMvc3ViLmNsYXNzMS5zZXJ2ZXIuY2EuY3J0MCMGA1UdEgQcMBqGGGh0 dHA6Ly93d3cuc3RhcnRzc2wuY29tLzANBgkqhkiG9w0BAQUFAAOCAQEAUCjvGOR5 TzWdNfUCxupPapEtTzrpL1j+IBMMQjUps1L/buiLKuR7t2XxQ+YETF+p7GXdv8F2 l/Z0fnB7Tg2wRX8hoWPAtM/T+E2JjGeuGpEbSJLkUz0ABrHH9qy/xzRmPPO5MRox Zaoil5mDOs7bmyhFS35U+xVGNgDvVTEeGQIjKGl618Fa99vNA/45lfCwq2x5nCLo 21rFsGPp1sopkAxX6E5LQkLZpFvYgf8b3bKHF5h2hlc9odU2t8D+8mBRmE4RmbOk jMpgHJ1kTP/FViF+pz1SB9OHOzOcdjY7y7RIFLwqtutKMWJ0TjIiK5HQ1f3ium3d bnZlwnMvI3amsg== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA12EAUFQXLOX8NmeqdVk0 10/BIOiAKJOIFY+Uc2ZH/MpJXQtqox2VIN4aq0tO9LuciSL7FuYWuYmpmlQ5BHrN 1y1WwnBbTpVwMYTATAHQsaGVzoRUczACOoC3VuRJVdsJWZi2ZHCdcvryVxwH59WN N97orcKKAn/JlCTCHByYeRdc6eixdjpeZ0arxTzLy5/BjLAGvtQbVp9l+jouHwYi 2Fkn5WhH6Azb1cwWLBKHSFQ1i9iAn1G0DmbALQkZRc0+F9ttG69Ov6IgTrMZm3Np i66RhkWQIwcDK16Yi9kGIOdrZXz/apYBR/0j7YZQpjAEhSQmHyaodyTvFHS6QCnF 1QIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded