herbalifedach.com
Issued by Symantec Basic DV SSL CA - G2
About this certificate
This digital certificate with serial number 2e:6e:12:3b:d9:74:67:d0:13:fb:74:bf:d4:73:29:05 was issued on by Symantec Corporation.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=herbalifedach.com
Symantec Corporation
Organization:
Symantec Corporation
Organization unit: Symantec Trust Network
Organization unit: Domain Validated SSL
Organization unit: Symantec Trust Network
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 2e:6e:12:3b:d9:74:67:d0:13:fb:74:bf:d4:73:29:05Serial Number (int): 61716010285678388032794581114440329477
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: ca:ac:5d:e1:90:2f:f1:ef:8c:d4:9f:35:01:e1:01:3b:a0:ce:c1:77
Fingerprint (sha1): c4:69:94:d4:0c:44:91:4c:6d:61:f1:74:34:2f:eb:c8:1d:2d:2c:ba
Fingerprint (sha256): 00:0b:e9:c9:dd:06:e7:84:c3:1f:1d:f4:3f:7f:45:9f:d6:23:c9:53:11:a4:32:80:02:04:d5:31:ed:bd:9f:39
Issuing Certificate URL: http://hd.symcb.com/hd.crt
Revocation information
OCSP Server: http://hd.symcd.comCheck the revocation status for certificate herbalifedach.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for herbalifedach.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
herbalifedach.com
www.herbalifedach.com
www.herbalifedach.com
Other certificates including the domain name herbalifedach.com
(limited to 100 certificates)
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
herbalifedach.com
Certificate
The complete raw certificate details for herbalifedach.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFljCCBH6gAwIBAgIQLm4SO9l0Z9AT+3S/1HMpBTANBgkqhkiG9w0BAQsFADCB lDELMAkGA1UEBhMCVVMxHTAbBgNVBAoTFFN5bWFudGVjIENvcnBvcmF0aW9uMR8w HQYDVQQLExZTeW1hbnRlYyBUcnVzdCBOZXR3b3JrMR0wGwYDVQQLExREb21haW4g VmFsaWRhdGVkIFNTTDEmMCQGA1UEAxMdU3ltYW50ZWMgQmFzaWMgRFYgU1NMIENB IC0gRzIwHhcNMTcxMDI1MDAwMDAwWhcNMTgxMDI1MjM1OTU5WjAcMRowGAYDVQQD DBFoZXJiYWxpZmVkYWNoLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoC ggEBALpmSefksl/Z76Ipm1gtOTquEkliF7FQ85o0HOh0i9g1x9s9kfBD8BQlTxJk HwDq7gxZjEAz1NZDCiYIaEQT1sKtBZ+pRr6Y35SggV6nnJq/W2Ag8c6F0Ohn38dh EnQ5FiuGKwwDCUEbewBvxab6TayVfYwhBYQO3zQzl8roYfkRRaKcu+jpHXkUR7ko ty95MfUogCzBwb28DY0WKUQFWj8Kq6pB0yYkJZ2NllOYexmseitLim7Pwi+R2Qc+ vZ+YVvvXDbyMZOzC+nrXM9mVSCiXULyvjL2ZKwVtAoDsOvIMTxlciVinqOBkl1vd asaaKeULyDFEe4X77e5Md079wQcCAwEAAaOCAlkwggJVMDMGA1UdEQQsMCqCEWhl cmJhbGlmZWRhY2guY29tghV3d3cuaGVyYmFsaWZlZGFjaC5jb20wCQYDVR0TBAIw ADBhBgNVHSAEWjBYMFYGBmeBDAECATBMMCMGCCsGAQUFBwIBFhdodHRwczovL2Qu c3ltY2IuY29tL2NwczAlBggrBgEFBQcCAjAZDBdodHRwczovL2Quc3ltY2IuY29t L3JwYTAfBgNVHSMEGDAWgBTKrF3hkC/x74zUnzUB4QE7oM7BdzAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEB BEswSTAfBggrBgEFBQcwAYYTaHR0cDovL2hkLnN5bWNkLmNvbTAmBggrBgEFBQcw AoYaaHR0cDovL2hkLnN5bWNiLmNvbS9oZC5jcnQwggEFBgorBgEEAdZ5AgQCBIH2 BIHzAPEAdgDd6x0reg1PpiCLga2BaHB+Lo6dAdVciI09EcTNtuy+zAAAAV9T6F3n AAAEAwBHMEUCIQCcmp2UYGc8Hax70mz1g0RuZlmup85aHnQhM87ZB1TUVwIgBHoW VAyJ7cpcMzTQq21HX1xmJU3VQ8MrniH/kuGljWkAdwCkuQmQtBhYFIe7E6LMZ3AK PDWYBPkb37jjd80OyA3cEAAAAV9T6F4eAAAEAwBIMEYCIQC4G6NKILNGgA4TcNBr FH1s9shuxy+0/yeOkNl4QjU9kwIhAJ1B5Ft8SRhECa9diAssc06qnGs+Ee88KnSm vwq0HsIUMA0GCSqGSIb3DQEBCwUAA4IBAQAbR6NaV3Iyq8mHpehudCu06KFEEVCd m17yMWzH1xarKaeB3TgzQuMiFxYyBkKYDx629tOlDC2xUm3CmcFPxIF6x52o/U/1 o5Spc5Iz5jgxwOUNP08rKy98dBQdzmDgThUa6+n+uu9Bg3lviHHJ8h3EikxQAgYh yxPNtJYmKZmf1td2cpaxy/k6OrBHo8pUL4o9w5+tqeFUOzrGAFSMMWM+TO5k/u/0 DlFPu3VssRN1+LjN8Lfx7Uagcf4EYQ+E6LSwgRIwaWffmHhGxgsg3t+Jdx1Zf4nY PzeKkhpFQBqHhtXjQU2co/ACBRdCSEInvH4mlJCAlohmXVaGJcwiMpyX -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAumZJ5+SyX9nvoimbWC05 Oq4SSWIXsVDzmjQc6HSL2DXH2z2R8EPwFCVPEmQfAOruDFmMQDPU1kMKJghoRBPW wq0Fn6lGvpjflKCBXqecmr9bYCDxzoXQ6Gffx2ESdDkWK4YrDAMJQRt7AG/FpvpN rJV9jCEFhA7fNDOXyuhh+RFFopy76OkdeRRHuSi3L3kx9SiALMHBvbwNjRYpRAVa PwqrqkHTJiQlnY2WU5h7Gax6K0uKbs/CL5HZBz69n5hW+9cNvIxk7ML6etcz2ZVI KJdQvK+MvZkrBW0CgOw68gxPGVyJWKeo4GSXW91qxpop5QvIMUR7hfvt7kx3Tv3B BwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 61716010285678388032794581114440329477 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Corporation' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Basic DV SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-10-25 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-25 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'herbalifedach.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23530765158965337830241765989926302055851313027215576068525339204323869181839037864432591846510839390119517694258926592519074572832281488142263346253133539519036939205060698129623994060630685354944893943703830303128712001354621059714430284640963155871214773975480050674642096786384573428746730718320784663515284374315560684979973111413970708377911269579252696238408468434287452237778314839150310858906609570800817631014848001370507028243183295250525490868656026637444781241012644038887652879444896443980364680643003501196350653751230312058529561756861925034898281627732178181582606345151342363834324166742730229006599 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (44 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'herbalifedach.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.herbalifedach.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://d.symcb.com/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName caac5de1902ff1ef8cd49f3501e1013ba0cec177 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hd.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://hd.symcb.com/hd.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015f53e85de700000403004730450221009c9a9d9460673c1dac7bd26cf583446e6659aea7ce5a1e742133ced90754d4570220047a16540c89edca5c3334d0ab6d475f5c66254dd543c32b9e21ff92e1a58d69007700a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015f53e85e1e0000040300483046022100b81ba34a20b346800e1370d06b147d6cf6c86ec72fb4ff278e90d97842353d930221009d41e45b7c49184409af5d880b2c734eaa9c6b3e11ef3c2a74a6bf0ab41ec214 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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