servlet-dev.uwo.ca

- The University of Western Ontario -

Issued by thawte SSL CA - G2

About this certificate

This digital certificate with serial number 64:25:82:37:ec:02:26:e8:00:90:6b:e9:ce:21:fd:fd was issued on by thawte, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

The University of Western Ontario

Organization: The University of Western Ontario
Organization unit: ITS
State / Province: Ontario
Locality: London
Country: CA

thawte, Inc.

Organization: thawte, Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 64:25:82:37:ec:02:26:e8:00:90:6b:e9:ce:21:fd:fd
Serial Number (int): 133117555706095852813418305852908109309
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: c2:4f:48:57:fc:d1:4f:9a:c0:5d:38:7d:0e:05:db:d9:2e:b5:52:60

Fingerprint (sha1): 68:5b:f0:0e:9d:92:dd:55:de:34:2e:bc:07:f9:3f:7f:bd:27:c5:57
Fingerprint (sha256): 06:ca:e4:94:31:36:49:0a:5e:a2:2f:09:61:32:65:ed:30:ff:36:48:12:2f:56:bc:f7:f4:70:a3:2e:92:9b:c6

Issuing Certificate URL: http://tj.symcb.com/tj.crt

Revocation information

OCSP Server: http://tj.symcd.com
CRL Distribution Point: http://tj.symcb.com/tj.crl

Check the revocation status for certificate servlet-dev.uwo.ca

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for servlet-dev.uwo.ca

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

servlet-dev.uwo.ca

Other certificates including the domain name uwo.ca

(limited to 100 certificates)
internalapps.uwo.ca
win4.uwo.ca
www.ipb.uwo.ca
www.schulich.uwo.ca
ssts.uwo.ca
dropz.its.uwo.ca
jira.schulich.uwo.ca
sofl2a.uwo.ca
grad.uwo.ca
recruit.uwo.ca
star.schulich.uwo.ca
www.uwo.ca
*.sp.uwo.ca
www.extranet.uwo.ca
draftmyschedule.uwo.ca
owl.uwo.ca
rest.has.uwo.ca
*.sp.uwo.ca
notifylink.uwo.ca
hospitalityservices.uwo.ca
outlook.kings.uwo.ca
ce.uwo.ca
pma.uwo.ca
instruct.uwo.ca
pma.uwo.ca
ivey.uwo.ca
spamtrap.uwo.ca
internalapps-qat.uwo.ca
applywesternrem.uwo.ca
kiwi.uwo.ca
webapps.uwo.ca
mail.edu.uwo.ca
www.edu.uwo.ca
firstnationsstudies.uwo.ca
sso.uwo.ca
outlook.kings.uwo.ca
myhr.uwo.ca
www.edu.uwo.ca
kucprint01.kc.uwo.ca
remote-gate.uwo.ca
appointmentsdev.uwo.ca
mysurveys.uwo.ca
iveytrading.ivey.uwo.ca
webapps.fims.uwo.ca
ssc.uwo.ca
ohstraining.uwo.ca
spamtrap.uwo.ca
edq.uwo.ca
eateries.uwo.ca
residence.uwo.ca
servlet-dev.uwo.ca
owlhelp.uwo.ca
tableau.uwo.ca
mystarrez.uwo.ca
cas.schulich.uwo.ca
*.eng.uwo.ca
m.onsite.uwo.ca
law.uwo.ca
westerncalendar.uwo.ca
api-qat.ramp.uwo.ca
www.graphicservices.uwo.ca
ir.lib.uwo.ca
security.uwo.ca
*.communications.uwo.ca
spamtrap.uwo.ca
sert.uwo.ca
retain.has.uwo.ca
events.uwo.ca
kiwi.uwo.ca
rezlife.uwo.ca
chrldb.nca.uwo.ca
api-qat.ramp.uwo.ca
www.fims.uwo.ca
eateries.uwo.ca
papercut.uwo.ca
sakdev.uwo.ca
ssocas.uwo.ca
wcs.uwo.ca
catering.has.uwo.ca
ir.lib.uwo.ca
discourse.syllabus.fims.uwo.ca
am.uwo.ca
chrldb.nca.uwo.ca
student.uwo.ca
wcs.uwo.ca
redcap.schulich.uwo.ca
apps.iwesterne.uwo.ca
www.kings.uwo.ca
webtest2.has.uwo.ca
dl.nca.uwo.ca
impact.uwo.ca
myhousing.uwo.ca
dropz.its.uwo.ca
imap.nca.uwo.ca
www.ivey.uwo.ca
webtest2.has.uwo.ca
sscsecure.uwo.ca
www.schulich.uwo.ca
mediarelations.uwo.ca
jdc.math.uwo.ca

Certificate

The complete raw certificate details for servlet-dev.uwo.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx4rF0O5ChFNsV0YKfpYG
3YhdC+F5lTaGVYO6EGVz2/5rOOw/Vk6cwl2XUy/f2isIhgvUSZ32I0x8PGU9+T7F
5+xaPGzWc8CaavVk7oCd7RKgXWCh9NWVDrUWCR8z1jk1uaQTRoNUvvVNv8k/c0ZJ
ZFE+JkXVhURFM/vdWo3Ke17jY7TKa+5Bn0KqnCdtJMxWedPlU522Dszze3nuwGHo
3t4qZPkekDEYZXmvlYrC/wvmBz2c2uUdyqh8QoKhVh7FpWgLv+RiYRyPCO/UQX9h
GN0f8Lf2r9Iu3C30qQOzvBRyUUjgFCM/3NEm6yLJfSWsk7ElvYHl+jBOiaPI3HWL
JwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 133117555706095852813418305852908109309
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte SSL CA - G2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-11-29 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-29 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Ontario'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'London'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'The University of Western Ontario'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'ITS'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'servlet-dev.uwo.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25189854066594794696185577823830502200913249588361501943052998251735114128255433508829801866156300578162534388207028927263623829086759175215515739442695953869461029172162006032850398970171397147323217486446449486092349105638531413234076697814746962452026776748194145660663538784800812445339461965302267169279875435071800955395124608140315546507487348444231828257242897229081723086748974156366828620690025601195809633190378064108971194777655179583858894239340131596575834452628870272798331375120894813515744790492346326962820178583808104568409865739480866663693471894099291638798085154965985953365793308074210286209831
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'servlet-dev.uwo.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c24f4857fcd14f9ac05d387d0e05dbd92eb55260
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tj.symcb.com/tj.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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