*.henz.nl
Issued by Sectigo RSA Domain Validation Secure Server CA
About this certificate
This digital certificate with serial number e2:b0:68:67:c1:78:02:93:9e:df:6c:e3:41:8c:e1:19 was issued on by Sectigo Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=*.henz.nl
Sectigo Limited
Organization:
Sectigo Limited
State / Province:
Greater Manchester
Locality: Salford
Country: GB
Locality: Salford
Country: GB
This certificate has expire since
Certificate Details
Serial Number (hex): e2:b0:68:67:c1:78:02:93:9e:df:6c:e3:41:8c:e1:19Serial Number (int): 301321488885468325843558312467015459097
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: e6:f1:30:20:4f:76:66:c7:90:26:46:ca:85:91:9b:b6:fe:9b:d7:26
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1
Fingerprint (sha1): 06:d0:0e:2a:b5:89:3f:46:94:0a:0c:4f:75:dd:a5:76:22:e5:67:94
Fingerprint (sha256): ef:65:e5:79:0b:fd:7e:a7:fd:88:8b:5f:4e:85:af:31:4a:19:27:01:5e:16:1f:ba:b9:af:4f:b4:a0:79:57:3e
Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt
Revocation information
OCSP Server: http://ocsp.sectigo.comCheck the revocation status for certificate *.henz.nl
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.henz.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.henz.nl
henz.nl
henz.nl
Other certificates including the domain name henz.nl
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.henz.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGJjCCBQ6gAwIBAgIRAOKwaGfBeAKTnt9s40GM4RkwDQYJKoZIhvcNAQELBQAw gY8xCzAJBgNVBAYTAkdCMRswGQYDVQQIExJHcmVhdGVyIE1hbmNoZXN0ZXIxEDAO BgNVBAcTB1NhbGZvcmQxGDAWBgNVBAoTD1NlY3RpZ28gTGltaXRlZDE3MDUGA1UE AxMuU2VjdGlnbyBSU0EgRG9tYWluIFZhbGlkYXRpb24gU2VjdXJlIFNlcnZlciBD QTAeFw0yMjExMTUwMDAwMDBaFw0yMzExMjEyMzU5NTlaMBQxEjAQBgNVBAMMCSou aGVuei5ubDCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAJvh81mFlLIJ 5rWUExKvNQYX218GfmpGzKoZq98cbKZ9KuN6yYu1ewxNUdSp3ecuov6oTy0LALdM KaDn3h6qJkCENKUm3SnHcQEFIGupfpYtCKMMqFqbLoiVekj7YRCLRkHgMB9tJEOO CQrrXVdxjlXCxpW5RBIVLP1lD7bbypEaWhl9ul2lGtDKiLVQqu+8+gFqfpFn3MwF sEkoHdJCaQFXRTerAHPLOZV4EUyCdFis+7oGdQY8/x5iK1C2Ee7eVmJlcyaDDViC BsUbnKTz1fnZj1px+OSBn1emzLreGPvePpl12DoldmJQEs1lSMXeLK75/JwdHiIY vbDCVtU86OsCAwEAAaOCAvUwggLxMB8GA1UdIwQYMBaAFI2MXsRUrYrhd+mb+ZsF 4bgBjWHhMB0GA1UdDgQWBBTm8TAgT3Zmx5AmRsqFkZu2/pvXJjAOBgNVHQ8BAf8E BAMCBaAwDAYDVR0TAQH/BAIwADAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUH AwIwSQYDVR0gBEIwQDA0BgsrBgEEAbIxAQICBzAlMCMGCCsGAQUFBwIBFhdodHRw czovL3NlY3RpZ28uY29tL0NQUzAIBgZngQwBAgEwgYQGCCsGAQUFBwEBBHgwdjBP BggrBgEFBQcwAoZDaHR0cDovL2NydC5zZWN0aWdvLmNvbS9TZWN0aWdvUlNBRG9t YWluVmFsaWRhdGlvblNlY3VyZVNlcnZlckNBLmNydDAjBggrBgEFBQcwAYYXaHR0 cDovL29jc3Auc2VjdGlnby5jb20wHQYDVR0RBBYwFIIJKi5oZW56Lm5sggdoZW56 Lm5sMIIBfwYKKwYBBAHWeQIEAgSCAW8EggFrAWkAdwCt9776fP8QyIudPZwePhhq tGcpXc+xDCTKhYY069yCigAAAYR6tsP7AAAEAwBIMEYCIQDhqAWMCubUbjId8lSS ui+83CvgoqhBKMWagtxD7MhvAAIhAM0txSroqLL/q2XWg+poq4wy0DLR2ApOK/eE abFLICd/AHUAejKMVNi3LbYg6jjgUh7phBZwMhOFTTvSK8E6V6NS61IAAAGEerbD 0gAABAMARjBEAiB94Ih/PQICWma5DyDnCdQAdH1tB8Yf+w2qFFaHh0H6SAIgGgk1 1vcNrUCAC9E8WYc3nOr6Tr1kX8ilNDOManmQL/UAdwDoPtDaPvUGNTLnVyi8iWvJ A9PL0RFr7Otp4Xd9bQa9bgAAAYR6tsOkAAAEAwBIMEYCIQDaGvkKQeE3vfU6Dblx 8QPCWZH54DSABGEHzzOvfOHWLgIhAPpmZt4/CFkYIk7Dkfhml/e60O5Vr9wieSDE Q92dVhONMA0GCSqGSIb3DQEBCwUAA4IBAQCVaUoBRe5Yf3C3g0v+WNadauk8C5gV +bI+5Cu0gxPdJjXpyWan7ivrB0KjkgtuGngEINkfWwvW2+YZGcvAHTOAJV8BTVdi 2ItfjmvZsXXQOGvCibQ6cCeQZ9AHd07M6jCOJ0OeIHDbcnySXco/oJPrH33ae+Ax azcQoE0/AkzDYSrFsp/KyeQH/5uTtHF0xEBNiqLPwfbpX5uf0jAlneI3at7dq74m p3GwXPitZpBXw9a+e6A9ytxjQIoeLBZRBQKRjDKhEGD5uexbbBsVvilWQY/mByVK PAOvLcQ5DJ3A/cRHpW6ONHaN1RZLvpfQfqmFxw8SX43aBa/DgE7WQASJ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAm+HzWYWUsgnmtZQTEq81 BhfbXwZ+akbMqhmr3xxspn0q43rJi7V7DE1R1Knd5y6i/qhPLQsAt0wpoOfeHqom QIQ0pSbdKcdxAQUga6l+li0IowyoWpsuiJV6SPthEItGQeAwH20kQ44JCutdV3GO VcLGlblEEhUs/WUPttvKkRpaGX26XaUa0MqItVCq77z6AWp+kWfczAWwSSgd0kJp AVdFN6sAc8s5lXgRTIJ0WKz7ugZ1Bjz/HmIrULYR7t5WYmVzJoMNWIIGxRucpPPV +dmPWnH45IGfV6bMut4Y+94+mXXYOiV2YlASzWVIxd4srvn8nB0eIhi9sMJW1Tzo 6wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 301321488885468325843558312467015459097 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-11-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.henz.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19678357655771140437585240629048075393844605994814850131470158104752032633955382039023322349239426840857848449890580584412204379811465678616946513765859778763870234067110219210914673339770177996156016603053446354971194788132453379548392109811743103818597400483117029701113935922086076135621965273050608115511512586613702432992521148431516928163271756798696746779371201004174779462358008892858634848186874974538792616029447653986603741985425867141555987894644081573692148019450698011668371908151304865039536186724139380271946130959602232460977036436053766953514685040167278513922641026832632708040890660105988096190699 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e6f130204f7666c7902646ca85919bb6fe9bd726 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.henz.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'henz.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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