thomas.schemme.net

Issued by StartCom Class 1 Primary Intermediate Server CA

About this certificate


This digital certificate with serial number 0f:1d:ce was issued on by StartCom Ltd..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present
  • WARNING: Certificate contains unknown extension ([2.5.29.18])
  • ERROR: Certificate has key usage [KeyAgreement] set

thomas.schemme.net

Country: DE

StartCom Ltd.

Organization: StartCom Ltd.
Organization unit: Secure Digital Certificate Signing
Country: DE

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 0f:1d:ce
Serial Number (int): 990670
Serial Number lenght: 20 bits, 3 octets

SubjectKeyId: e5:dc:bc:8b:37:23:bf:8d:d5:3d:f6:d6:ee:cb:77:59:fa:23:8c:f6
AuthorityKeyId: eb:42:34:d0:98:b0:ab:9f:f4:1b:6b:08:f7:cc:64:2e:ef:0e:2c:45

Fingerprint (sha1): 97:ba:b2:d6:82:44:83:c5:20:5c:71:78:fa:8e:2e:7b:d3:98:68:6d
Fingerprint (sha256): 68:30:c8:0f:2f:c0:88:10:63:a3:b5:ee:e3:b0:ee:49:9f:ec:22:ee:2d:dc:94:29:ee:06:ee:25:2e:c3:75:68

Issuing Certificate URL: http://aia.startssl.com/certs/sub.class1.server.ca.crt

Revocation information

OCSP Server: http://ocsp.startssl.com/sub/class1/server/ca
CRL Distribution Point: http://crl.startssl.com/crt1-crl.crl

Check the revocation status for the current certificate on thomas.schemme.net
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment
Key Agreement

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

thomas.schemme.net
schemme.net

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIHPTCCBiWgAwIBAgIDDx3OMA0GCSqGSIb3DQEBCwUAMIGMMQswCQYDVQQGEwJJ TDEWMBQGA1UEChMNU3RhcnRDb20gTHRkLjErMCkGA1UECxMiU2VjdXJlIERpZ2l0 YWwgQ2VydGlmaWNhdGUgU2lnbmluZzE4MDYGA1UEAxMvU3RhcnRDb20gQ2xhc3Mg MSBQcmltYXJ5IEludGVybWVkaWF0ZSBTZXJ2ZXIgQ0EwHhcNMTQwMzEzMjI1NjM5 WhcNMTUwMzE0MDI0NDMyWjBNMQswCQYDVQQGEwJERTEbMBkGA1UEAxMSdGhvbWFz LnNjaGVtbWUubmV0MSEwHwYJKoZIhvcNAQkBFhJ0c2NoZW1tZUBnbWFpbC5jb20w ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDWAzq3GjN1EQLrYon4fZdg dcof9VZ+rwQ79uLoBHskO8mpvrqepgMGPXCEuxUtxi2cE+6pT/hUrYOYvglBkVpm XGdBI4l40sf0cAkJ2TVuiSm5+54HeAFmkvkPbyJC0Kk8qLHhiSffVqmxSPC5O5d5 pBQJJpNSDvEwCM9FhPQhyoGpaRs4ZEqXlWaQjytAxbPcezMAN1c1CwHx4Q5AVALW MSgsGfgRhIW2Vt92AqmbxwTnGpGgOmpzuOYGI4GvhhWA2YjRtxIn85N8r9Qca5w1 UPtMP9n/14YLC8B44eFWgEr8GcAG3VRdz5XDKDl/hv/RojPwW4muGjXyId1S/9C+ 7Bz9j2xI0D6ZCAU5GjLuPNWGPi7m51e57K4MV7l6/+A4hjpKHGdtG3I+/jvVsIZK 7uGi+tQu2k61igZg3tRGZc2GWAY3Nwgtw3n0FTU/C7hqt+QhlaCSdKY5NlSXzIWF DTsapJmSCkj9TwMy5G0KEUqTv3mC4XC4x0DKBP4YLCBoPzUz7qmgA18xvf79nD9n 96/BMKNj2YDKOxIYWvzxOXBgNjrAerixg47opnKrosBsMioqejivQzmqYcI+stjN uPRdV1+TOfvvanGtSVvv0t5rjiFOQQUd/TkSM2S7RB1PMNOioRMG0Dr5Li1jP+Zr vdb5iB3T5aZnO5GnB0KZIQIDAQABo4IC5DCCAuAwCQYDVR0TBAIwADALBgNVHQ8E BAMCA6gwEwYDVR0lBAwwCgYIKwYBBQUHAwEwHQYDVR0OBBYEFOXcvIs3I7+N1T32 1u7Ld1n6I4z2MB8GA1UdIwQYMBaAFOtCNNCYsKuf9BtrCPfMZC7vDixFMCoGA1Ud EQQjMCGCEnRob21hcy5zY2hlbW1lLm5ldIILc2NoZW1tZS5uZXQwggFWBgNVHSAE ggFNMIIBSTAIBgZngQwBAgEwggE7BgsrBgEEAYG1NwECAzCCASowLgYIKwYBBQUH AgEWImh0dHA6Ly93d3cuc3RhcnRzc2wuY29tL3BvbGljeS5wZGYwgfcGCCsGAQUF BwICMIHqMCcWIFN0YXJ0Q29tIENlcnRpZmljYXRpb24gQXV0aG9yaXR5MAMCAQEa gb5UaGlzIGNlcnRpZmljYXRlIHdhcyBpc3N1ZWQgYWNjb3JkaW5nIHRvIHRoZSBD bGFzcyAxIFZhbGlkYXRpb24gcmVxdWlyZW1lbnRzIG9mIHRoZSBTdGFydENvbSBD QSBwb2xpY3ksIHJlbGlhbmNlIG9ubHkgZm9yIHRoZSBpbnRlbmRlZCBwdXJwb3Nl IGluIGNvbXBsaWFuY2Ugb2YgdGhlIHJlbHlpbmcgcGFydHkgb2JsaWdhdGlvbnMu MDUGA1UdHwQuMCwwKqAooCaGJGh0dHA6Ly9jcmwuc3RhcnRzc2wuY29tL2NydDEt Y3JsLmNybDCBjgYIKwYBBQUHAQEEgYEwfzA5BggrBgEFBQcwAYYtaHR0cDovL29j c3Auc3RhcnRzc2wuY29tL3N1Yi9jbGFzczEvc2VydmVyL2NhMEIGCCsGAQUFBzAC hjZodHRwOi8vYWlhLnN0YXJ0c3NsLmNvbS9jZXJ0cy9zdWIuY2xhc3MxLnNlcnZl ci5jYS5jcnQwIwYDVR0SBBwwGoYYaHR0cDovL3d3dy5zdGFydHNzbC5jb20vMA0G CSqGSIb3DQEBCwUAA4IBAQBt2NBL9eVzxfEbGvHI98bzhweplJQYJ1Wyzzfp73ti DZ0RiPpTf2hTsExO91P9oEL/EyQn4Ptv8+UlJsKD9lGorFD2TTQuJZeW2S1tLuGL St+LiWm+K/Dk4O6pnKYGZ21VdG0T0QaSXhf03HL+8S4ERMrtRgmm5JFzXxTzYayP B9GAPN6JGD7zdnUPduBOR/d0f536XXFkFvhdhAn1rhurE026cY/HysZwbabArNkW oRbVMBK7QPks94Ebu2q4QZo8cAsqj0VFFbWXxMTzD/8ZBdI8L8GUZUiDv0prgzxR FSCMr8aQ4lreUP0NhS+2oo20/9HKtdw0DOImP5fAgfpj -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1gM6txozdREC62KJ+H2X YHXKH/VWfq8EO/bi6AR7JDvJqb66nqYDBj1whLsVLcYtnBPuqU/4VK2DmL4JQZFa ZlxnQSOJeNLH9HAJCdk1bokpufueB3gBZpL5D28iQtCpPKix4Ykn31apsUjwuTuX eaQUCSaTUg7xMAjPRYT0IcqBqWkbOGRKl5VmkI8rQMWz3HszADdXNQsB8eEOQFQC 1jEoLBn4EYSFtlbfdgKpm8cE5xqRoDpqc7jmBiOBr4YVgNmI0bcSJ/OTfK/UHGuc NVD7TD/Z/9eGCwvAeOHhVoBK/BnABt1UXc+Vwyg5f4b/0aIz8FuJrho18iHdUv/Q vuwc/Y9sSNA+mQgFORoy7jzVhj4u5udXueyuDFe5ev/gOIY6ShxnbRtyPv471bCG Su7hovrULtpOtYoGYN7URmXNhlgGNzcILcN59BU1Pwu4arfkIZWgknSmOTZUl8yF hQ07GqSZkgpI/U8DMuRtChFKk795guFwuMdAygT+GCwgaD81M+6poANfMb3+/Zw/ Z/evwTCjY9mAyjsSGFr88TlwYDY6wHq4sYOO6KZyq6LAbDIqKno4r0M5qmHCPrLY zbj0XVdfkzn772pxrUlb79Lea44hTkEFHf05EjNku0QdTzDToqETBtA6+S4tYz/m a73W+Ygd0+WmZzuRpwdCmSECAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded