*.studioarma.com
- STUDIOA -
Issued by TWCA Secure Certification Authority
About this certificate
This digital certificate with serial number 40:01:33:06:19:00:00:00:00:00:00:00:b7:f1:77:8d was issued on by TAIWAN-CA INC..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: authorityInformationAccess MUST contain the HTTP URL of the Issuing CA's OSCP responder. (BRs: 7.1.2.3)
- Subscriber Certificate: authorityInformationAccess MUST be present. (BRs: 7.1.2.3)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Subscriber certificates authorityInformationAccess extension should contain the HTTP URL of the issuing CA’s certificate (BRs: 7.1.2.3)
STUDIOA
Organization:
STUDIOA
Organization unit: ASP
Organization unit: ASP
State / Province:
TAIWAN
Locality: TAIPEI
Country: TW
Locality: TAIPEI
Country: TW
TAIWAN-CA INC.
Organization:
TAIWAN-CA INC.
Organization unit: SSL Security Services
Organization unit: SSL Security Services
Country:
TW
This certificate has expire since
Certificate Details
Serial Number (hex): 40:01:33:06:19:00:00:00:00:00:00:00:b7:f1:77:8dSerial Number (int): 85076818913089037259783455946556143501
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 4d:8f:5b:2d:5c:8d:18:3c:54:24:57:09:ad:a6:f4:aa:db:3d:2a:f3
AuthorityKeyId: 23:f5:38:50:f2:de:f4:7b:3e:ef:fd:ab:ab:51:31:03:0d:b8:f9:1d
Fingerprint (sha1): 0b:c2:1d:7a:6b:a2:4c:7c:32:d6:97:08:1d:a3:12:76:e7:27:aa:22
Fingerprint (sha256): 0e:f4:db:5d:95:ed:33:33:9b:83:38:f3:ad:71:43:2e:9c:81:59:f5:d0:94:94:2a:7b:b5:9a:15:3c:7e:2c:39
Revocation information
CRL Distribution Point: http://sslserver.twca.com.tw/sslserver/cmdssl_revoke_2012.crlCheck the revocation status for certificate *.studioarma.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.studioarma.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.studioarma.com
Other certificates including the domain name studioarma.com
(limited to 100 certificates)
ebooking.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
service.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.mico.com.tw
ebooking.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
service.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
*.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.studioarma.com
ebooking.mico.com.tw
ebooking.studioarma.com
Certificate
The complete raw certificate details for *.studioarma.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEtjCCA56gAwIBAgIQQAEzBhkAAAAAAAAAt/F3jTANBgkqhkiG9w0BAQUFADB0 MQswCQYDVQQGEwJUVzEXMBUGA1UEChMOVEFJV0FOLUNBIElOQy4xHjAcBgNVBAsT FVNTTCBTZWN1cml0eSBTZXJ2aWNlczEsMCoGA1UEAxMjVFdDQSBTZWN1cmUgQ2Vy dGlmaWNhdGlvbiBBdXRob3JpdHkwHhcNMTIxMTEzMDg0MjQ0WhcNMTMxMTIxMTU1 OTU5WjBqMQswCQYDVQQGEwJUVzEPMA0GA1UECBMGVEFJV0FOMQ8wDQYDVQQHEwZU QUlQRUkxEDAOBgNVBAoTB1NUVURJT0ExDDAKBgNVBAsTA0FTUDEZMBcGA1UEAxQQ Ki5zdHVkaW9hcm1hLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEB AKS2bQgcTNyFcepCUoSecq4sIrL2Ix6DLJxJQVcTL8fcJIOJ8k2fZ84ZntP7YwSK sN78za9Av+f7ptDbajRKw6aEd5AFR71PlwJ4nDDq+TBYUSn//B4LoF2RmdFmBek7 iCfJNYv/gu4G7FWzlNeOP471sKXVASl2VSr5+8Xdu8fIoxxpm2Ww1Dsa1ZuAr2gu to6OQYeYz3ifwPytPzRCPTJjdMNB485+zl/jBTs6tdRxRRiCRaOfcyhSeOpsfs6M WdqZgKppA7yHGCLFjoPgtGMo4KLbjpcvSDShEdNuAZDEzBA158l1TIdaU52iLonq VEgIxQlJVJRlgqEUIYX6HyMCAwEAAaOCAUwwggFIMB8GA1UdIwQYMBaAFCP1OFDy 3vR7Pu/9q6tRMQMNuPkdMB0GA1UdDgQWBBRNj1stXI0YPFQkVwmtpvSq2z0q8zBO BgNVHR8ERzBFMEOgQaA/hj1odHRwOi8vc3Nsc2VydmVyLnR3Y2EuY29tLnR3L3Nz bHNlcnZlci9jbWRzc2xfcmV2b2tlXzIwMTIuY3JsMBsGA1UdEQQUMBKCECouc3R1 ZGlvYXJtYS5jb20wXwYDVR0gBFgwVjBUBgdggR4DAQgFMEkwIgYIKwYBBQUHAgIw FhoUUmVzdHJpY3Rpb24gPTMuMi4xLjEwIwYIKwYBBQUHAgEWF2h0dHA6Ly93d3cu dHdjYS5jb20udHcvMAkGA1UdEwQCMAAwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjANBgkqhkiG9w0BAQUFAAOCAQEAsR9rz2rf yJeoSgTa+mdzUba05/jnryxNyJiz6fnlCHwy5rHjmfYQ92cM5nfHgGEjwV1pik8y q3gEx0eKDVm4VuyorDCZdD2Bt/9cAq/MLvdGxNSF2ajGlzGJoyuUQM9MjQnS+aOl vVSEieU2NlXjCt/7nkZsZc+S5KYvuVuo/vKhwb8/jpQrGgmOTskG+rUPNdsDuSP2 MS8ShVLy7CkEuAoiCpTaX33FLX0J5RcuYj+GGxCObfue9Ea1Zl60fN8zdXgFTjoH 2FKoGTEUXb+Ii83ZnRKiF90mtduF/YZngMNUiCc8T5BmeXL492AZE7MmZU6KiW1l 0I7qhvDIm3k8+w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApLZtCBxM3IVx6kJShJ5y riwisvYjHoMsnElBVxMvx9wkg4nyTZ9nzhme0/tjBIqw3vzNr0C/5/um0NtqNErD poR3kAVHvU+XAnicMOr5MFhRKf/8HgugXZGZ0WYF6TuIJ8k1i/+C7gbsVbOU144/ jvWwpdUBKXZVKvn7xd27x8ijHGmbZbDUOxrVm4CvaC62jo5Bh5jPeJ/A/K0/NEI9 MmN0w0Hjzn7OX+MFOzq11HFFGIJFo59zKFJ46mx+zoxZ2pmAqmkDvIcYIsWOg+C0 YyjgotuOly9INKER024BkMTMEDXnyXVMh1pTnaIuiepUSAjFCUlUlGWCoRQhhfof IwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 85076818913089037259783455946556143501 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TW' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TAIWAN-CA INC.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SSL Security Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TWCA Secure Certification Authority' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-11-13 08:42:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-11-21 15:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TW' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TAIWAN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TAIPEI' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'STUDIOA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ASP' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '*.studioarma.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20793039580957052952292508791232750527304348872378493988032830679269753929618271386224607348425710266310575953717293728163381708088536641074268803712411458212314548106202676251710024941998478142302554825121865650954015524516412243473907761762645368098815621771885184403067768396307163675966235151117314046712789408812445090027757918353896903712840595722180419323441248251390348052237882465842776825009014108368549253770957253315625839804261408537609297365781298584268022765233693703998238602154703871294424068269955233862713114776692491235485272119388450805679960197289560250698694005399515003863763098249785408888611 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 23f53850f2def47b3eeffdabab5131030db8f91d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4d8f5b2d5c8d183c54245709ada6f4aadb3d2af3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (71 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sslserver.twca.com.tw/sslserver/cmdssl_revoke_2012.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.studioarma.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (88 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.158.3.1.8.5 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:26|false] VisibleString, ISO646String [82 101 115 116 114 105 99 116 105 111 110 32 61 51 46 50 46 49 46 49] . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.twca.com.tw/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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