InCommonIGTFServerCA.crt: CN=InCommon IGTF Server CA,OU=InCommon,O=Internet2,C=US (Intermediate Certificate, Expiring 2023-12-31) detail info and audit record

 

Page content

CA Certificate Information and Audit Record

This certificate is intermediate certificate used for the issuance of other certificates.

Download certificate through curl:

curl -sSL "http://crt.incommon-igtf.org/InCommonIGTFServerCA.crt" --output cert.crt

Download certificate through wget:

wget -q "http://crt.incommon-igtf.org/InCommonIGTFServerCA.crt" --output-document=cert.crt

CA Certificate Detail Information

Use openssl x509 to decode DER certificate to get detail information:

openssl x509 -in cert.crt -inform der -text -noout

Use openssl x509 to decode PEM certificate to get detail information:

openssl x509 -in cert.crt -inform pem -text -noout

Decoded detail certificate information:

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            a2:7b:f3:85:60:99:fe:15:68:cd:aa:14:75:39:8e:d6
    Signature Algorithm: sha512WithRSAEncryption
        Issuer: C=GB, ST=Greater Manchester, L=Salford, O=COMODO CA Limited, CN=COMODO RSA Certification Authority
        Validity
            Not Before: Jan  1 00:00:00 2014 GMT
            Not After : Dec 31 23:59:59 2023 GMT
        Subject: C=US, O=Internet2, OU=InCommon, CN=InCommon IGTF Server CA
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:85:cf:74:0f:a4:5e:2a:30:b5:d2:b1:51:a8:c4:
                    69:ff:ea:0b:52:3f:bf:42:ab:dc:ef:54:de:a2:e9:
                    0a:b5:10:ca:56:4c:d9:df:5c:2a:8a:66:a8:2c:de:
                    a9:85:5e:32:5b:9d:b9:9c:9a:3b:1e:e1:3e:3f:6d:
                    c2:14:e0:18:7c:4d:c9:4e:8a:b0:47:0c:0f:90:e5:
                    fa:6f:54:f6:1d:66:65:42:82:90:81:6b:95:bc:03:
                    74:5f:ae:ad:8b:72:0f:ef:22:85:7c:9f:ba:76:20:
                    31:e6:59:e1:32:99:0e:f7:e1:4a:40:de:c7:9a:53:
                    fc:9c:84:24:aa:18:ee:2d:81:0a:8f:09:42:be:8e:
                    a4:f0:02:c7:b4:fc:f6:4b:cc:38:d7:a6:f9:06:90:
                    98:d6:5e:70:35:27:b7:9a:de:f5:3a:5e:1c:63:21:
                    e6:27:7f:7c:c0:25:b7:a7:d3:79:04:17:49:28:f8:
                    01:90:35:48:00:d0:e7:82:1e:50:df:41:84:b6:e6:
                    2a:58:19:9c:ab:14:ed:32:e4:42:a5:30:ba:eb:5c:
                    bc:d0:86:f6:be:1e:b2:a6:7a:f4:b3:b2:f0:3e:82:
                    90:90:78:ca:66:f2:0a:75:c1:a0:92:20:92:03:3e:
                    64:96:34:b0:e9:06:df:46:96:f9:56:84:ff:d2:c0:
                    47:33
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Authority Key Identifier: 
                keyid:BB:AF:7E:02:3D:FA:A6:F1:3C:84:8E:AD:EE:38:98:EC:D9:32:32:D4

            X509v3 Subject Key Identifier: 
                61:E6:5F:C9:27:BA:40:F8:EC:28:06:F3:89:32:5A:56:5F:E2:8E:D1
            X509v3 Key Usage: critical
                Digital Signature, Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE, pathlen:0
            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.5923.1.4.3.4.1.1
                Policy: 1.2.840.113612.5.2.2.1
                Policy: 2.23.140.1.2.2

            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://crl.comodoca.com/COMODORSACertificationAuthority.crl

            Authority Information Access: 
                CA Issuers - URI:http://crt.comodoca.com/COMODORSAAddTrustCA.crt
                OCSP - URI:http://ocsp.comodoca.com

    Signature Algorithm: sha512WithRSAEncryption
         10:14:83:d3:d7:83:15:a4:6c:36:70:d8:56:60:e9:9a:7d:77:
         d0:d9:d5:9f:9a:cc:5c:72:70:4b:db:ee:85:dc:aa:d9:4d:f2:
         b6:28:a7:32:a7:40:ec:75:66:82:c8:92:f0:44:77:31:25:72:
         fb:09:dd:53:64:55:a3:a9:af:da:80:d1:ac:2b:b0:77:bb:c5:
         0a:65:15:70:33:2b:cf:0e:d4:3c:c9:1c:ef:da:a8:a9:2c:d3:
         5b:48:c3:ef:28:16:5d:1e:97:c0:e7:f1:7a:1f:5e:65:d2:d2:
         70:76:f3:00:73:0b:75:ee:55:b4:c3:35:74:56:b8:d2:37:eb:
         7b:a3:95:90:74:68:85:e3:02:fb:a1:7f:e0:73:ff:bd:c9:07:
         f8:e6:28:ce:84:03:89:6b:22:00:59:97:03:d4:c9:c0:0e:af:
         91:86:89:fc:36:45:a4:d9:7a:47:27:aa:05:c0:b3:44:f9:e3:
         d2:f6:82:d1:88:b0:0d:d0:b3:b4:11:09:b4:54:d5:c2:b8:21:
         24:1b:a9:ca:00:54:f0:1c:33:52:20:50:e4:c1:d5:f2:02:1e:
         54:6c:c2:bb:75:bf:bc:3a:ff:da:cb:05:0e:a3:ef:1f:d5:26:
         ca:93:34:03:a4:58:e2:67:48:35:8f:fd:7a:76:ec:1a:25:06:
         46:d1:aa:51:df:98:e8:74:02:ca:da:4c:1d:c9:69:6c:e1:be:
         35:62:2a:6f:e2:c9:8b:25:44:53:35:ff:7e:de:2d:be:60:1b:
         7a:4d:21:5e:1a:e1:54:08:67:ba:ed:61:23:90:f4:c0:18:aa:
         13:72:a0:d3:d5:81:02:a0:63:86:1c:5c:7a:27:9a:db:02:d1:
         7d:bb:41:03:17:0b:b1:0a:4a:f3:4f:d2:95:fc:f8:b5:ec:26:
         d3:dc:7a:9e:37:67:e2:04:67:ea:cf:79:bd:73:01:62:8d:3c:
         95:c9:96:0c:46:20:b5:4d:39:68:51:79:3a:d1:fb:fa:4e:f5:
         09:95:f4:03:b1:7e:2f:67:d2:1c:53:b4:8f:9c:27:f1:29:72:
         6c:65:69:fd:09:8c:7f:0b:90:85:19:1f:2e:db:d0:91:9f:52:
         30:0e:ff:82:a6:f2:b3:d1:9f:63:10:5c:3e:65:5b:d4:f4:40:
         a5:8f:66:8d:f1:48:8d:ee:58:c9:9e:23:67:b8:f0:cf:56:1c:
         78:c2:4a:91:cb:3d:39:7d:04:b9:4f:19:29:e4:b8:f2:8f:fc:
         ef:9e:03:bd:6a:55:b8:b4:c0:34:89:48:18:65:11:4a:41:b8:
         6a:25:f7:13:10:7b:86:11:65:75:fd:a8:ab:de:1e:0a:df:ef:
         9b:22:a7:bd:a7:50:de:45

CA Certificate in PEM Format

Use openssl x509 to convert certificate from DER format to PEM format:

openssl x509 -in cert.crt -inform der

Converted PEM format certificate:

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Decode PEM Certificate online

Download PEM Certificate

Also see Top 1 Millions Domains CA Certificate List

Page version: e13a7e3f2 2023-05-06