SOTART.MUSE.USC.EDU
- University of Southern California -
Issued by Thawte SSL CA
About this certificate
This digital certificate with serial number 65:9e:51:8d:c2:13:c5:26:b5:a3:df:c5:2c:49:2f:06 was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
University of Southern California
Organization:
University of Southern California
Organization unit: School of Theatre/Roski School of Fine Arts
Organization unit: School of Theatre/Roski School of Fine Arts
State / Province:
California
Locality: Los Angeles
Country: US
Locality: Los Angeles
Country: US
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 65:9e:51:8d:c2:13:c5:26:b5:a3:df:c5:2c:49:2f:06Serial Number (int): 135074064584337808741343844313393082118
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId:
Fingerprint (sha1): 60:d6:51:52:2b:95:32:91:1c:68:ba:d1:3f:b3:5b:0d:a8:f4:b2:5d
Fingerprint (sha256): 01:99:b3:4c:2c:ea:3a:3c:ea:6b:a1:e0:aa:05:20:e1:bd:de:9f:78:f0:54:fd:0e:45:46:87:8e:53:4a:cd:1e
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl
Check the revocation status for certificate SOTART.MUSE.USC.EDU
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for SOTART.MUSE.USC.EDU
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Extended Key Usages
Server Authentication
Client Authentication
Extensions
4 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name USC.EDU
(limited to 100 certificates)
Certificate
The complete raw certificate details for SOTART.MUSE.USC.EDU in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEIDCCAwigAwIBAgIQZZ5RjcITxSa1o9/FLEkvBjANBgkqhkiG9w0BAQUFADA8 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRYwFAYDVQQDEw1U aGF3dGUgU1NMIENBMB4XDTEwMTIyMDAwMDAwMFoXDTExMTIyMDIzNTk1OVowgbgx CzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRQwEgYDVQQHFAtMb3Mg QW5nZWxlczEqMCgGA1UEChQhVW5pdmVyc2l0eSBvZiBTb3V0aGVybiBDYWxpZm9y bmlhMTQwMgYDVQQLFCtTY2hvb2wgb2YgVGhlYXRyZS9Sb3NraSBTY2hvb2wgb2Yg RmluZSBBcnRzMRwwGgYDVQQDFBNTT1RBUlQuTVVTRS5VU0MuRURVMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo87To84CWETP1lsYuBJyqe1UP+rwtp0E KN2alkUdFJ0Bnbbh9kSaj0JmPGM6iyabgmKFe8+5ulvX6auf3alfxwISEVxZUD1A siXBY7Wuf+a5x6Xc+PPdw1LyMViy0uLTuAB7mvgpSgY80vwrbwK53sHj4DExtJ9W iuWLdh9vVuJXhanasCeafa68+dOdtj01rbZR2hCXOCn8lj3XHBAYVBRvZr0b5zXc NZdeygP/d7I9HDNK9pyDI68wcGg3tkHPeAB1LgNITWHs4NDTESKPetZC3ElOO+mV C0/P8d/jgefw0trBNgDHpBI/qx7b76s6FHBsm9GAp6wKj4ybGnhVTQIDAQABo4Gg MIGdMAwGA1UdEwEB/wQCMAAwOgYDVR0fBDMwMTAvoC2gK4YpaHR0cDovL3N2ci1v di1jcmwudGhhd3RlLmNvbS9UaGF3dGVPVi5jcmwwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMDIGCCsGAQUFBwEBBCYwJDAiBggrBgEFBQcwAYYWaHR0cDov L29jc3AudGhhd3RlLmNvbTANBgkqhkiG9w0BAQUFAAOCAQEASpse+8j1vReiYgQ5 8eoYvuywl2IF3OY9eEqb93dtDQEf08cyb3B6E+ENqN43uCED4d5RPxmujzGmszAw cyzdEtrVvzLR2LijNdT5nJrcDvYHoP4bP9lGfpwdkozu3XNB0iYWCSVKAKMnhpAT 0j58jW3F1HEt3reiLjjQYLzFJcWbiiSLFSIoEsPfh5wDLJ4LtnZO79Ei1YSxh9OO cGz+/x56aas37/LWcSGwWoRv4/q5e9SkWxxGuojCfc46W77yiTnok5sbInjvXaDj S3GRGdh0dq66l0pQfGzhs+HKaS8L7Pv6qXF4+vN/Am9Ju684pJDaD3PI0m3j6/W9 2f7BfQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAo87To84CWETP1lsYuBJy qe1UP+rwtp0EKN2alkUdFJ0Bnbbh9kSaj0JmPGM6iyabgmKFe8+5ulvX6auf3alf xwISEVxZUD1AsiXBY7Wuf+a5x6Xc+PPdw1LyMViy0uLTuAB7mvgpSgY80vwrbwK5 3sHj4DExtJ9WiuWLdh9vVuJXhanasCeafa68+dOdtj01rbZR2hCXOCn8lj3XHBAY VBRvZr0b5zXcNZdeygP/d7I9HDNK9pyDI68wcGg3tkHPeAB1LgNITWHs4NDTESKP etZC3ElOO+mVC0/P8d/jgefw0trBNgDHpBI/qx7b76s6FHBsm9GAp6wKj4ybGnhV TQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 135074064584337808741343844313393082118 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-12-20 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-12-20 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Los Angeles' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'University of Southern California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'School of Theatre/Roski School of Fine Arts' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'SOTART.MUSE.USC.EDU' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20678833765439196735115512566512893640651680066799506802929151804771182407508963019985561831485757530215556995792975441026365436619867589594591082743392763835791880258697412365640908235551567860580525532270435345879225223306363346849613172410949451713949356906235780338582730792004721910954396427333787620618581622169490701314983280387091219769716071716143942877931853970527094472699911479162210915172458254487276088390853626488830820324224425934272381852515077215178693887118887427916621186375624932291129785337447495660517810316151296415929530871371101863588683201106872641292268064883145713511983238490928562328909 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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