www.nsccsz.gov.cn

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 0d:49:41 was issued on by StartCom Ltd..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • ERROR: Certificate has key usage [KeyAgreement] set

www.nsccsz.gov.cn

Country: CN

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: CN

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 0d:49:41
Serial Number (int): 870721
Serial Number lenght: 20 bits, 3 octets

SubjectKeyId: 0d:e4:71:e8:ef:2a:f3:4d:9f:ab:78:33:d9:59:27:8e:de:bf:ee:72
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 92:73:57:d1:fc:ff:b5:d7:11:ba:1a:0e:f0:9e:18:bc:c0:81:df:24
Fingerprint (sha256): c8:bf:59:86:c3:37:5c:51:a8:66:82:d1:1d:aa:e4:d2:65:3c:31:00:33:c7:6c:37:5c:06:41:77:89:71:67:3c

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on www.nsccsz.gov.cn
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

www.nsccsz.gov.cn
nsccsz.gov.cn

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgIDDUlBMA0GCSqGSIb3DQEBBQUAMIGMMQswCQYDVQQGEwJJ TDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjErMCkGA1UECxMiU2VjdXJlIERpZ2l0 YWwgQ2VydGlmaWNhdGUgU2lnbmluZzE4MDYGA1UEAxMvU3RhcnRDb20gQ2xhc3Mg MSBQcmltYXJ5IEludGVybWVkaWF0ZSBTZXJ2ZXIgQ0EwHhcNMTMxMjA1MTA1OTA0 WhcNMTQxMjA2MjIxMjI3WjBnMRkwFwYDVQQNExBSOHhRVElSN2JaaHZSMjhsMQsw CQYDVQQGEwJDTjEaMBgGA1UEAxMRd3d3Lm5zY2Nzei5nb3YuY24xITAfBgkqhkiG 9w0BCQEWEmxpcHVAbnNjY3N6Lmdvdi5jbjCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBALk+e162wkqOB/ldrmkNxvI2zBwo0XCRTZuWmBCISzM/0B7ou+Ia t2irraLMDhaLaO2fYuDgDJawsbBbVUajLwDNLa/FGNMtY+8+L3KLec/M3uUjhcTj 0Nl2kAsKkJDiQ0FzjCrm7uPOdof+7Otjx1gVSUYxBif53veMrdDmOO1F6c426Eo2 Bgn6DdYA84PDgSxq8pxsHSsFh52OU3tAMZ0lszr5BwgMuc29L2i/QQbqsYaO5kPV F193hsdwYi1fJ8DgeWih5rAg6RQQFw4KNTMLFSmQ639HXl9hvRVtJDD5zMJpsMlz Ba++2HVqx3vec67gbTz25K0xxdItDQYWmMcCAwEAAaOCAuUwggLhMAkGA1UdEwQC MAAwCwYDVR0PBAQDAgOoMBMGA1UdJQQMMAoGCCsGAQUFBwMBMB0GA1UdDgQWBBQN 5HHo7yrzTZ+reDPZWSeO3r/ucjAfBgNVHSMEGDAWgBTrQjTQmLCrn/Qbawj3zGQu 7w4sRTArBgNVHREEJDAighF3d3cubnNjY3N6Lmdvdi5jboINbnNjY3N6Lmdvdi5j bjCCAVYGA1UdIASCAU0wggFJMAgGBmeBDAECATCCATsGCysGAQQBgbU3AQIDMIIB KjAuBggrBgEFBQcCARYiaHR0cDovL3d3dy5zdGFydHNzbC5jb20vcG9saWN5LnBk ZjCB9wYIKwYBBQUHAgIwgeowJxYgU3RhcnRDb20gQ2VydGlmaWNhdGlvbiBBdXRo b3JpdHkwAwIBARqBvlRoaXMgY2VydGlmaWNhdGUgd2FzIGlzc3VlZCBhY2NvcmRp bmcgdG8gdGhlIENsYXNzIDEgVmFsaWRhdGlvbiByZXF1aXJlbWVudHMgb2YgdGhl IFN0YXJ0Q29tIENBIHBvbGljeSwgcmVsaWFuY2Ugb25seSBmb3IgdGhlIGludGVu ZGVkIHB1cnBvc2UgaW4gY29tcGxpYW5jZSBvZiB0aGUgcmVseWluZyBwYXJ0eSBv YmxpZ2F0aW9ucy4wNQYDVR0fBC4wLDAqoCigJoYkaHR0cDovL2NybC5zdGFydHNz bC5jb20vY3J0MS1jcmwuY3JsMIGOBggrBgEFBQcBAQSBgTB/MDkGCCsGAQUFBzAB hi1odHRwOi8vb2NzcC5zdGFydHNzbC5jb20vc3ViL2NsYXNzMS9zZXJ2ZXIvY2Ew QgYIKwYBBQUHMAKGNmh0dHA6Ly9haWEuc3RhcnRzc2wuY29tL2NlcnRzL3N1Yi5j bGFzczEuc2VydmVyLmNhLmNydDAjBgNVHRIEHDAahhhodHRwOi8vd3d3LnN0YXJ0 c3NsLmNvbS8wDQYJKoZIhvcNAQEFBQADggEBAEV4SCKM8D4D2wwdLBxmUzCf2Z2F rzR0sgSr+4IG75id2SHHfLrH3qT7WrSitRNVfzqPfdIiHdKHBKG3vDdyI54CsNB3 6FEow3zWcyzwwFMpwJTuer5R/ctmvVZyymm09ErVkgzeRy4KJfUcnLsLB6iMBcNm AMrLZzDcdZMtYdkBE2k3i/lsy0SML3XWLphE3kMBw+wLFTP96bR/an3sFFHI8Utq //vs+l+wB9CbJv3KYYeRcvH+0FSOIQ7+Jk3g/S+CtVZC1+rP0isS8kuz5Ktd2Zz8 bi26frd7U5ZyTZRGV02DRykd0aFHUnVWixE1k70xg6H/WOsHi4N3KanyP7A= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuT57XrbCSo4H+V2uaQ3G 8jbMHCjRcJFNm5aYEIhLMz/QHui74hq3aKutoswOFoto7Z9i4OAMlrCxsFtVRqMv AM0tr8UY0y1j7z4vcot5z8ze5SOFxOPQ2XaQCwqQkOJDQXOMKubu4852h/7s62PH WBVJRjEGJ/ne94yt0OY47UXpzjboSjYGCfoN1gDzg8OBLGrynGwdKwWHnY5Te0Ax nSWzOvkHCAy5zb0vaL9BBuqxho7mQ9UXX3eGx3BiLV8nwOB5aKHmsCDpFBAXDgo1 MwsVKZDrf0deX2G9FW0kMPnMwmmwyXMFr77YdWrHe95zruBtPPbkrTHF0i0NBhaY xwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded