secure.gza.net

Issued by VeriSign Class 3 Secure Server CA - G3

About this certificate

This digital certificate with serial number 2e:f8:c6:f9:44:9b:b7:98:27:1e:79:81:cb:3e:fc:5e was issued on by VeriSign, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.

As someone interested in digital certificates you will love EV SSL Certificates without the hessle, right? Easy, automated EV SSL Certificates for only € 99 ($ 121 or £ 87).


We have idenified some issues with this certificate:

  • The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

GZA GeoEnvironmental, Inc

Organization: GZA GeoEnvironmental, Inc
Organization unit: GZA GeoEnvironmentalTerms of use at www.verisign.com/rpa (c)00
Organization unit: Terms of use at www.verisign.com/rpa (c)05
State / Province: New Hampshire
Locality: Manchester
Country: US

VeriSign, Inc.

Organization: VeriSign, Inc.
Organization unit: VeriSign Trust Network
Organization unit: Terms of use at https://www.verisign.com/rpa (c)10
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 2e:f8:c6:f9:44:9b:b7:98:27:1e:79:81:cb:3e:fc:5e
Serial Number (int): 62436213093169987657696710770179374174
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: 0d:44:5c:16:53:44:c1:82:7e:1d:20:ab:25:f4:01:63:d8:be:79:a5

Fingerprint (sha1): b5:ac:6a:90:1f:91:8f:fa:c3:64:58:e5:01:8b:ad:6b:f4:95:70:e4
Fingerprint (sha256): c7:e9:1f:c5:ea:33:5e:9e:1f:b7:cb:df:bf:36:fc:18:e8:e7:a1:a8:b7:f9:19:a7:3c:4d:6d:91:91:ff:85:4c

Issuing Certificate URL: http://SVRSecure-G3-aia.verisign.com/SVRSecureG3.cer

Revocation information

OCSP Server: http://ocsp.verisign.com
CRL Distribution Point: http://SVRSecure-G3-crl.verisign.com/SVRSecureG3.crl

Check the revocation status for the current certificate on secure.gza.net
0
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names.

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIGCTCCBPGgAwIBAgIQLvjG+USbt5gnHnmByz78XjANBgkqhkiG9w0BAQUFADCB tTELMAkGA1UEBhMCVVMxFzAVBgNVBAoTDlZlcmlTaWduLCBJbmMuMR8wHQYDVQQL ExZWZXJpU2lnbiBUcnVzdCBOZXR3b3JrMTswOQYDVQQLEzJUZXJtcyBvZiB1c2Ug YXQgaHR0cHM6Ly93d3cudmVyaXNpZ24uY29tL3JwYSAoYykxMDEvMC0GA1UEAxMm VmVyaVNpZ24gQ2xhc3MgMyBTZWN1cmUgU2VydmVyIENBIC0gRzMwHhcNMTExMjA1 MDAwMDAwWhcNMTcxMjA1MjM1OTU5WjCB9TELMAkGA1UEBhMCVVMxFjAUBgNVBAgT DU5ldyBIYW1wc2hpcmUxEzARBgNVBAcUCk1hbmNoZXN0ZXIxIjAgBgNVBAoUGUda QSBHZW9FbnZpcm9ubWVudGFsLCBJbmMxRzBFBgNVBAsUPkdaQSBHZW9FbnZpcm9u bWVudGFsVGVybXMgb2YgdXNlIGF0IHd3dy52ZXJpc2lnbi5jb20vcnBhIChjKTAw MTMwMQYDVQQLFCpUZXJtcyBvZiB1c2UgYXQgd3d3LnZlcmlzaWduLmNvbS9ycGEg KGMpMDUxFzAVBgNVBAMUDnNlY3VyZS5nemEubmV0MIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAnojS1W5AuSwKzfXqVtmXE/D/J70arpfmNY2nH6eSyXMB Jj8Xreke/UT/fq6NubUvyRn6KwFEDht1mRuXmBhn1b7ZgJaFgIwM4IInetOxwUKx UXFkmtcMelhv2rQ/V1g0SMzO+5NwPzGqmRbJI1CoOP2I4694zcpQxRUqa4bc2ESP Ab/MXYCmjJvMDtYOGqjjWhrIUSXipsl4vnkIWc/Q9T9LO6i59U/qtTixu9OC3lgv eyab5HE0Rq+2pFz/2fKNacoK24WOlrFp8JKjK24Mlld0X9Kh+4ayGcJ2jTFvIIGG lzqg0CFGJkqfx3SZa5r+ZUEJCp+Rzwxo74Ack7JKuwIDAQABo4IB0TCCAc0wCQYD VR0TBAIwADALBgNVHQ8EBAMCBaAwRQYDVR0fBD4wPDA6oDigNoY0aHR0cDovL1NW UlNlY3VyZS1HMy1jcmwudmVyaXNpZ24uY29tL1NWUlNlY3VyZUczLmNybDBEBgNV HSAEPTA7MDkGC2CGSAGG+EUBBxcDMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vd3d3 LnZlcmlzaWduLmNvbS9ycGEwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MB8GA1UdIwQYMBaAFA1EXBZTRMGCfh0gqyX0AWPYvnmlMHYGCCsGAQUFBwEBBGow aDAkBggrBgEFBQcwAYYYaHR0cDovL29jc3AudmVyaXNpZ24uY29tMEAGCCsGAQUF BzAChjRodHRwOi8vU1ZSU2VjdXJlLUczLWFpYS52ZXJpc2lnbi5jb20vU1ZSU2Vj dXJlRzMuY2VyMG4GCCsGAQUFBwEMBGIwYKFeoFwwWjBYMFYWCWltYWdlL2dpZjAh MB8wBwYFKw4DAhoEFEtruSiWBgy70FI4mymsSweLIQUYMCYWJGh0dHA6Ly9sb2dv LnZlcmlzaWduLmNvbS92c2xvZ28xLmdpZjANBgkqhkiG9w0BAQUFAAOCAQEAj+i4 JuKRrKJmr+gBlrObrO399a+voWZK9n/DMbapZXNYmWA/Wjtzd3vDZgzK36Kdz8mz KFXD4YaHT1vMO5uRR+EoV+kcG1NOVcp+P8jXkvaVw+xV16+hfksY7WISCmaxO+7d SYXc3SfKg6nSFjHdBJYE6IdNWMnz+lgban5R3AJSoNlPvRs82D7SQa74qCSiIY37 3YlAO8HybIe2j2q8VwE8MsDT4J/I++4w6UdctIVHGCijH8Q92hVfsg1DAy6YCpqW NsrltlHUN6EOEGmrflflwWoSXReI7p6c3Ux1hvOlh8WhOy85hocjMzZfAD5fudw1 x2iWJUkVcUXURJ4qsQ== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnojS1W5AuSwKzfXqVtmX E/D/J70arpfmNY2nH6eSyXMBJj8Xreke/UT/fq6NubUvyRn6KwFEDht1mRuXmBhn 1b7ZgJaFgIwM4IInetOxwUKxUXFkmtcMelhv2rQ/V1g0SMzO+5NwPzGqmRbJI1Co OP2I4694zcpQxRUqa4bc2ESPAb/MXYCmjJvMDtYOGqjjWhrIUSXipsl4vnkIWc/Q 9T9LO6i59U/qtTixu9OC3lgveyab5HE0Rq+2pFz/2fKNacoK24WOlrFp8JKjK24M lld0X9Kh+4ayGcJ2jTFvIIGGlzqg0CFGJkqfx3SZa5r+ZUEJCp+Rzwxo74Ack7JK uwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded