Ms Domaincontroller Certificate
This certificate example is part of the Sample Certificates collection.
Description
This certificate is used to identify a Domain Controller and is necessary for Smartcard Logon to work.
Openssl X509 Output
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
61:15:f2:58:00:00:00:00:00:07
Signature Algorithm: sha1WithRSAEncryption
Issuer: DC=local, DC=Company, CN=EnterpriseTestCAv1
Validity
Not Before: Feb 11 15:01:46 2008 GMT
Not After : Feb 10 15:01:46 2009 GMT
Subject: CN=company-1.Company.local
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public Key: (1024 bit)
Modulus (1024 bit):
00:c6:25:7f:d3:09:f5:85:f2:81:05:e8:32:a1:e4:
49:e7:91:9d:7f:ba:07:2b:90:ee:3d:e4:c4:4f:1d:
6e:f9:7d:fd:6c:ef:2d:03:ec:3f:81:f2:f0:21:50:
83:18:42:0d:7b:86:11:03:ee:5f:b4:39:67:9f:12:
ac:06:74:c3:90:f8:f4:48:96:05:9d:8f:da:6b:f4:
24:c1:0f:17:88:6f:00:71:8e:54:a6:2e:af:3b:7b:
f3:89:2f:28:f4:13:c5:c7:f4:e3:dc:0e:55:7e:cd:
8f:bf:84:9c:09:e1:ec:4f:1e:a1:0f:9b:75:52:b5:
63:c9:e9:2b:d1:55:a5:18:c9
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Key Usage:
Digital Signature, Key Encipherment
S/MIME Capabilities:
050...*.H..
......0...*.H..
......0...+....0
..*.H..
..
X509v3 Subject Key Identifier:
8B:CF:F5:1E:6C:B8:50:51:69:7A:C3:20:60:E1:F1:2A:75:61:76:5C
1.3.6.1.4.1.311.20.2:
. .D.o.m.a.i.n.C.o.n.t.r.o.l.l.e.r
X509v3 Authority Key Identifier:
keyid:C7:E8:5F:B9:D3:AC:7D:F9:C6:EB:80:26:2C:47:34:75:7F:B8:2C:08
X509v3 CRL Distribution Points:
URI:ldap:///CN=EnterpriseTestCAv1,CN=company-1,CN=CDP,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=Company,DC=local?certificateRevocationList?base?objectClass=cRLDistributionPoint
URI:http://company-1.company.local/CertEnroll/EnterpriseTestCAv1.crl
Authority Information Access:
CA Issuers - URI:ldap:///CN=EnterpriseTestCAv1,CN=AIA,CN=Public%20Key%20Services,CN=Services,CN=Configuration,DC=Company,DC=local?cACertificate?base?objectClass=certificationAuthority
CA Issuers - URI:http://company-1.company.local/CertEnroll/company-1.Company.local_EnterpriseTestCAv1.crt
X509v3 Extended Key Usage:
TLS Web Client Authentication, TLS Web Server Authentication
X509v3 Subject Alternative Name:
othername:<unsupported>, DNS:company-1.Company.local
Signature Algorithm: sha1WithRSAEncryption
35:c8:04:c9:3e:a3:ca:9a:9d:d1:fd:a8:69:bf:bb:5d:86:ec:
cc:34:7c:73:7a:dd:af:08:ff:a5:34:07:8e:2f:77:7f:1e:9c:
e6:68:12:7b:4f:13:e7:94:50:77:8e:4c:79:5a:d7:d4:d1:8f:
46:e1:30:d8:7a:8d:16:96:8d:5e:d7:8c:72:91:23:d9:44:9f:
02:86:39:f9:fc:6a:57:85:20:ea:cc:f1:47:90:f4:61:d8:9b:
d8:3b:92:86:c7:d7:de:82:89:9a:19:22:5e:e8:d5:1c:8e:5d:
55:ec:77:98:b5:e9:16:46:a6:03:76:d3:4c:49:d4:8b:04:74:
bb:c8:73:0c:90:17:1e:f1:6e:88:14:5e:49:7b:ab:c0:1c:cf:
10:4b:ea:b4:7b:7d:4f:6d:cd:84:57:5b:94:a7:69:15:6f:ee:
d8:04:0d:45:cf:15:16:dd:24:d3:0a:7e:74:7d:eb:5b:b9:25:
f2:e4:27:04:7b:21:8b:d6:5e:b7:40:89:ef:8f:92:59:78:0e:
ba:14:ea:8d:46:30:50:fc:19:ab:aa:6d:29:6f:45:14:35:bc:
60:ec:bc:59:ed:82:cb:62:4a:fe:e7:d3:e0:8c:3e:b1:1c:36:
a7:eb:16:0e:67:49:75:ce:67:bc:64:d0:70:bb:56:d5:ab:d0:
59:6b:5d:d1
DumpASN1 Output
0 1518: SEQUENCE {
4 1238: SEQUENCE {
8 3: [0] {
10 1: INTEGER 2
: }
13 10: INTEGER 61 15 F2 58 00 00 00 00 00 07
25 13: SEQUENCE {
27 9: OBJECT IDENTIFIER sha1withRSAEncryption (1 2 840 113549 1 1 5)
38 0: NULL
: }
40 77: SEQUENCE {
42 21: SET {
44 19: SEQUENCE {
46 10: OBJECT IDENTIFIER
: domainComponent (0 9 2342 19200300 100 1 25)
58 5: IA5String 'local'
: }
: }
65 23: SET {
67 21: SEQUENCE {
69 10: OBJECT IDENTIFIER
: domainComponent (0 9 2342 19200300 100 1 25)
81 7: IA5String 'Company'
: }
: }
90 27: SET {
92 25: SEQUENCE {
94 3: OBJECT IDENTIFIER commonName (2 5 4 3)
99 18: PrintableString 'EnterpriseTestCAv1'
: }
: }
: }
119 30: SEQUENCE {
121 13: UTCTime 11/02/2008 15:01:46 GMT
136 13: UTCTime 10/02/2009 15:01:46 GMT
: }
151 34: SEQUENCE {
153 32: SET {
155 30: SEQUENCE {
157 3: OBJECT IDENTIFIER commonName (2 5 4 3)
162 23: PrintableString 'company-1.Company.local'
: }
: }
: }
187 159: SEQUENCE {
190 13: SEQUENCE {
192 9: OBJECT IDENTIFIER rsaEncryption (1 2 840 113549 1 1 1)
203 0: NULL
: }
205 141: BIT STRING, encapsulates {
209 137: SEQUENCE {
212 129: INTEGER
: 00 C6 25 7F D3 09 F5 85 F2 81 05 E8 32 A1 E4 49
: E7 91 9D 7F BA 07 2B 90 EE 3D E4 C4 4F 1D 6E F9
: 7D FD 6C EF 2D 03 EC 3F 81 F2 F0 21 50 83 18 42
: 0D 7B 86 11 03 EE 5F B4 39 67 9F 12 AC 06 74 C3
: 90 F8 F4 48 96 05 9D 8F DA 6B F4 24 C1 0F 17 88
: 6F 00 71 8E 54 A6 2E AF 3B 7B F3 89 2F 28 F4 13
: C5 C7 F4 E3 DC 0E 55 7E CD 8F BF 84 9C 09 E1 EC
: 4F 1E A1 0F 9B 75 52 B5 63 C9 E9 2B D1 55 A5 18
: [ Another 1 bytes skipped ]
344 3: INTEGER 65537
: }
: }
: }
349 893: [3] {
353 889: SEQUENCE {
357 11: SEQUENCE {
359 3: OBJECT IDENTIFIER keyUsage (2 5 29 15)
364 4: OCTET STRING, encapsulates {
366 2: BIT STRING 5 unused bits
: '101'B
: }
: }
370 68: SEQUENCE {
372 9: OBJECT IDENTIFIER
: sMIMECapabilities (1 2 840 113549 1 9 15)
383 55: OCTET STRING, encapsulates {
385 53: SEQUENCE {
387 14: SEQUENCE {
389 8: OBJECT IDENTIFIER rc2CBC (1 2 840 113549 3 2)
399 2: INTEGER 128
: }
403 14: SEQUENCE {
405 8: OBJECT IDENTIFIER rc4 (1 2 840 113549 3 4)
415 2: INTEGER 128
: }
419 7: SEQUENCE {
421 5: OBJECT IDENTIFIER desCBC (1 3 14 3 2 7)
: }
428 10: SEQUENCE {
430 8: OBJECT IDENTIFIER des-EDE3-CBC (1 2 840 113549 3 7)
: }
: }
: }
: }
440 29: SEQUENCE {
442 3: OBJECT IDENTIFIER subjectKeyIdentifier (2 5 29 14)
447 22: OCTET STRING, encapsulates {
449 20: OCTET STRING
: 8B CF F5 1E 6C B8 50 51 69 7A C3 20 60 E1 F1 2A
: 75 61 76 5C
: }
: }
471 47: SEQUENCE {
473 9: OBJECT IDENTIFIER '1 3 6 1 4 1 311 20 2'
484 34: OCTET STRING, encapsulates {
486 32: BMPString ''
: }
: }
520 31: SEQUENCE {
522 3: OBJECT IDENTIFIER authorityKeyIdentifier (2 5 29 35)
527 24: OCTET STRING, encapsulates {
529 22: SEQUENCE {
531 20: [0]
: C7 E8 5F B9 D3 AC 7D F9 C6 EB 80 26 2C 47 34 75
: 7F B8 2C 08
: }
: }
: }
553 283: SEQUENCE {
557 3: OBJECT IDENTIFIER cRLDistributionPoints (2 5 29 31)
562 274: OCTET STRING, encapsulates {
566 270: SEQUENCE {
570 266: SEQUENCE {
574 262: [0] {
578 258: [0] {
582 189: [6]
: 'ldap:///CN=EnterpriseTestCAv1,CN=company-1,CN=CD'
: 'P,CN=Public%20Key%20Services,CN=Services,CN=Conf'
: 'iguration,DC=Company,DC=local?certificateRevocat'
: 'ionList?base?objectClass=cRLDistributionPoint'
774 64: [6]
: 'http://company-1.company.local/CertEnroll/Enterp'
: 'riseTestCAv1.crl'
: }
: }
: }
: }
: }
: }
840 302: SEQUENCE {
844 8: OBJECT IDENTIFIER authorityInfoAccess (1 3 6 1 5 5 7 1 1)
854 288: OCTET STRING, encapsulates {
858 284: SEQUENCE {
862 179: SEQUENCE {
865 8: OBJECT IDENTIFIER caIssuers (1 3 6 1 5 5 7 48 2)
875 166: [6]
: 'ldap:///CN=EnterpriseTestCAv1,CN=AIA,CN=Public%2'
: '0Key%20Services,CN=Services,CN=Configuration,DC='
: 'Company,DC=local?cACertificate?base?objectClass='
: 'certificationAuthority'
: }
1044 100: SEQUENCE {
1046 8: OBJECT IDENTIFIER caIssuers (1 3 6 1 5 5 7 48 2)
1056 88: [6]
: 'http://company-1.company.local/CertEnroll/compan'
: 'y-1.Company.local_EnterpriseTestCAv1.crt'
: }
: }
: }
: }
1146 29: SEQUENCE {
1148 3: OBJECT IDENTIFIER extKeyUsage (2 5 29 37)
1153 22: OCTET STRING, encapsulates {
1155 20: SEQUENCE {
1157 8: OBJECT IDENTIFIER clientAuth (1 3 6 1 5 5 7 3 2)
1167 8: OBJECT IDENTIFIER serverAuth (1 3 6 1 5 5 7 3 1)
: }
: }
: }
1177 67: SEQUENCE {
1179 3: OBJECT IDENTIFIER subjectAltName (2 5 29 17)
1184 60: OCTET STRING, encapsulates {
1186 58: SEQUENCE {
1188 31: [0] {
1190 9: OBJECT IDENTIFIER '1 3 6 1 4 1 311 25 1'
1201 18: [0] {
1203 16: OCTET STRING
: 5A 4C 90 78 1B 2D BB 4D BA F1 6C 76 1A 55 3E 6D
: }
: }
1221 23: [2] 'company-1.Company.local'
: }
: }
: }
: }
: }
: }
1246 13: SEQUENCE {
1248 9: OBJECT IDENTIFIER sha1withRSAEncryption (1 2 840 113549 1 1 5)
1259 0: NULL
: }
1261 257: BIT STRING
: 35 C8 04 C9 3E A3 CA 9A 9D D1 FD A8 69 BF BB 5D
: 86 EC CC 34 7C 73 7A DD AF 08 FF A5 34 07 8E 2F
: 77 7F 1E 9C E6 68 12 7B 4F 13 E7 94 50 77 8E 4C
: 79 5A D7 D4 D1 8F 46 E1 30 D8 7A 8D 16 96 8D 5E
: D7 8C 72 91 23 D9 44 9F 02 86 39 F9 FC 6A 57 85
: 20 EA CC F1 47 90 F4 61 D8 9B D8 3B 92 86 C7 D7
: DE 82 89 9A 19 22 5E E8 D5 1C 8E 5D 55 EC 77 98
: B5 E9 16 46 A6 03 76 D3 4C 49 D4 8B 04 74 BB C8
: [ Another 128 bytes skipped ]
: }
PEM
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
page revision: 1, last edited: 12 Feb 2008 10:11
