Certificate for CN=ASA Temporary Self Signed Certificate

Certificate is witin its validity period

Issued by itself (self-signed)

About the CN=ASA Temporary Self Signed Certificate Certificate

This certificate with serial number 67:b5:0b:00 for CN=ASA Temporary Self Signed Certificate was issued on Tuesday Feb 18, 2025 at 10:34PM by itself (self-signed).

This Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this Certificate review for CN=ASA Temporary Self Signed Certificate provides you with the detailed information you were looking for.

We have identified some issues with this certificate:

CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
Subscriber certificates MUST contain the Subject Alternate Name extension (BRs: 7.1.4.2.1)
Subscriber Certificate: authorityInformationAccess MUST be present. (BRs: 7.1.2.3)
Subscriber certificates must contain at least one policy identifier that indicates adherence to CAB standards (BRs: 7.1.2.3)
Subscriber Certificate: certificatePolicies MUST be present and SHOULD NOT be marked critical. (BRs: 7.1.2.3)
Subscriber certificates MUST have the extended key usage extension present (BRs: 7.1.2.3)
Missing common name, 'CN=ASA Temporary Self Signed Certificate' The common name field in subscriber certificates must include only names from the SAN extension (BRs: 7.1.4.2.2)
TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC must not have a validity period greater than 398 days (https://support.apple.com/en-us/HT211025)
Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Apple recommends that certificates be issued with a maximum validity of 397 days. TLS server certificates issued on or after September 1, 2020 00:00 GMT/UTC should not have a validity period greater than 397 days (https://support.apple.com/en-us/HT211025)

CN=ASA Temporary Self Signed Certificate

This X.509 certificate will expire on Friday Feb 16, 2035 at 10:34PM UTC

Certificate Details

Serial Number (hex): 67:b5:0b:00
Serial Number (int): 1739918080
Serial Number Length: 31 bits, 4 octets

Subject Key Identifier:
Authority Key Identifier:

Fingerprint (SHA-1): 38:30:40:6a:d3:7e:4b:5d:97:04:13:64:60:bf:6d:5b:5b:e8:67:f5
Fingerprint (SHA-256): 81:78:01:5c:a1:62:7d:41:78:d4:7e:2a:da:35:9d:27:1b:92:09:b3:72:6e:59:71:8d:9a:55:f9:7a:9b:b6:b9

Revocation Information

Check the revocation status for certificate CN=ASA Temporary Self Signed Certificate

DNS Names

Email Addresses

IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for CN=ASA Temporary Self Signed Certificate

Public Key Algorithm

ECDSA

Key Size

256

Signature Algorithm

ECDSA with SHA256

Key Usage

None

Extended Key Usages

None

Extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

This X.509 certificate doesn't contain any subject alternative names.

X.509 Certificate

The complete raw X.509 certificate details for CN=ASA Temporary Self Signed Certificate in PEM and ASN.1 format.

Certificate (PEM)

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEJphX/4c5THLMFNwiuklYdQPi0vXS
TzFxj6QEtEzTBgUxRXNIAYe6ji9QoWu7ZVFVJKthr7DTaDnQURid6KniZA==
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 1739918080
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.4.3.2
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'CN=ASA Temporary Self Signed Certificate'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-02-18 22:34:39 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2035-02-16 22:34:39 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'CN=ASA Temporary Self Signed Certificate'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.2.1
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.3.1.7
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (520 bits)
				0004269857ff87394c72cc14dc22ba49587503e2d2f5d24f31718fa404b44cd30605314573480187ba8e2f50a16bbb65515524ab61afb0d36839d051189de8a9e264
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.4.3.2
 . . . . [c:0|t:3|false] BIT STRING (576 bits)
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 58025715571535978935813711559499813747404007804381981490667431056192712880330
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 105195714012343982876646332477702491426023641321394406323246397039502732610188