Apple Server Authentication CA OCSP Responder RG1 20221221

- Apple Inc. -

Issued by Apple Server Authentication CA

About this certificate

This digital certificate with serial number 4c:46:59:41:e1:68:a4:7e:aa:f4:da:e9:c2:bd:d0:7b was issued on by Apple Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Certificate had 0 embedded SCTs. Browser policy may require 2 for this certificate. Check if certificate has enough embedded SCTs to meet Apple CT Policy (https://support.apple.com/en-us/HT205280)

Apple Inc.

Organization: Apple Inc.
Country: US

Apple Inc.

Organization: Apple Inc.
Organization unit: Certification Authority
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 4c:46:59:41:e1:68:a4:7e:aa:f4:da:e9:c2:bd:d0:7b
Serial Number (int): 101386598813796965000290363594831155323
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: e4:1c:b8:46:9b:8f:77:30:bd:83:d5:4d:8a:8c:59:fa:f9:ab:80:47
AuthorityKeyId: 2c:c5:6d:52:dd:31:ef:8c:ec:08:81:ed:df:dc:ca:43:00:45:01:d0

Fingerprint (sha1): 34:2b:b4:6c:52:ea:43:c2:5f:3c:19:55:10:07:70:b6:d5:5f:60:bd
Fingerprint (sha256): 10:00:36:04:35:d8:21:8c:c1:75:16:6d:fa:57:6c:90:20:05:1e:4a:77:b4:d1:38:e0:75:88:17:12:ae:27:18


Revocation information


Check the revocation status for certificate Apple Server Authentication CA OCSP Responder RG1 20221221

0

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for Apple Server Authentication CA OCSP Responder RG1 20221221

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature

Extended Key Usages

OCSP Signing

Extensions

6 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names.

Other certificates including the domain name

(limited to 100 certificates)

Certificate

The complete raw certificate details for Apple Server Authentication CA OCSP Responder RG1 20221221 in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIID5jCCAs6gAwIBAgIQTEZZQeFopH6q9Nrpwr3QezANBgkqhkiG9w0BAQsFADBt
MScwJQYDVQQDDB5BcHBsZSBTZXJ2ZXIgQXV0aGVudGljYXRpb24gQ0ExIDAeBgNV
BAsMF0NlcnRpZmljYXRpb24gQXV0aG9yaXR5MRMwEQYDVQQKDApBcHBsZSBJbmMu
MQswCQYDVQQGEwJVUzAeFw0yMjEyMjEyMjMzMzZaFw0yMzAyMDEyMjMzMzVaMGcx
QzBBBgNVBAMMOkFwcGxlIFNlcnZlciBBdXRoZW50aWNhdGlvbiBDQSBPQ1NQIFJl
c3BvbmRlciBSRzEgMjAyMjEyMjExEzARBgNVBAoMCkFwcGxlIEluYy4xCzAJBgNV
BAYTAlVTMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxSGZIDDoybN
rXiMioIahBuawEPNCo2T1BvoNeoKaS+jwgYRlBDL2p+Ls+br33+7AoFsznmSndzL
zK8HxgGdErINDuMmQpSXXmNxGwv2A10NAl5nf4tc32VgmqWsh3GRqoBD7W1fMRoe
MC+RJiV2Nh5vObV2ocTmo5t/YKPGpf6Z/hhd6t7Nv4mqG8LAdUxx7poY8N8ibUc2
3Kl2W4Ecydh2MJ4Qp1Wswkk1IPZD5IPEJYLhJeHrXmOLcBK7hhfRfyA//JRm6mIm
fGQ0XniPevOgNIAHb+3kvADHYwA552pph3VkD8kMfTF0vsV0HMIqaDR1wSoeTYAk
v0jxFVd4hQIDAQABo4GHMIGEMAwGA1UdEwEB/wQCMAAwHwYDVR0jBBgwFoAULMVt
Ut0x74zsCIHt39zKQwBFAdAwDwYJKwYBBQUHMAEFBAIFADATBgNVHSUEDDAKBggr
BgEFBQcDCTAdBgNVHQ4EFgQU5By4RpuPdzC9g9VNioxZ+vmrgEcwDgYDVR0PAQH/
BAQDAgeAMA0GCSqGSIb3DQEBCwUAA4IBAQAkuoci+w0Ep0lreHSgmG7qHDn3QFrc
YwHMFaZBOKx2LxUumj7e3TqFvNKr3qHEcxY5oUYbrOm6LdsDVnVLx+3pmKZ+AoWZ
Rc2T6FzqyR6FJ6O62c67E3RgTt82dtdtBDNuzlicJ+jK6Q9A+WpqfULE+lVVVhvY
U4CXueS64B8w4INueW5ru3scApDo2kOe4TQJ7e6B5NJPqeXdWDJbY/tLgg39Rjze
hHlG7CkZtTsuGF4pFvfRgbi40SXucdtb887W32jAJUYWqXArdnSx5V9oJpjVV8aY
teJA0Wmq3E+iAyY8StuNMmGoBLnkSaN5hheIGAZgERkbaTu1H6R+x4OB
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyxSGZIDDoybNrXiMioIa
hBuawEPNCo2T1BvoNeoKaS+jwgYRlBDL2p+Ls+br33+7AoFsznmSndzLzK8HxgGd
ErINDuMmQpSXXmNxGwv2A10NAl5nf4tc32VgmqWsh3GRqoBD7W1fMRoeMC+RJiV2
Nh5vObV2ocTmo5t/YKPGpf6Z/hhd6t7Nv4mqG8LAdUxx7poY8N8ibUc23Kl2W4Ec
ydh2MJ4Qp1Wswkk1IPZD5IPEJYLhJeHrXmOLcBK7hhfRfyA//JRm6mImfGQ0XniP
evOgNIAHb+3kvADHYwA552pph3VkD8kMfTF0vsV0HMIqaDR1wSoeTYAkv0jxFVd4
hQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 101386598813796965000290363594831155323
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Apple Server Authentication CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Certification Authority'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Apple Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-21 22:33:36 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-02-01 22:33:35 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Apple Server Authentication CA OCSP Responder RG1 20221221'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Apple Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25636497148560351828790658759658680029590340419065971096085287947009544995256742115504918180810895557604219614600787679523952204483941479976289851535539695594017817322926626972490355738064174697810489027668045933035357987067726440633155666410817264172896143003244295686972456070945249237333259726437860198990780753691475225919710979175603639052996630299197965344229751344028028021409759297591797238993123117292383881679614978382908878593552163342679132099866310763753572707551255878876689834689421465518182991727800925911697662741343099591853542067332631403587417275925931216745967447357032188148382617589393986648197
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2cc56d52dd31ef8cec0881eddfdcca43004501d0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1.5 (ocspNoCheck)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.9 (ocspSigning)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e41cb8469b8f7730bd83d54d8a8c59faf9ab8047
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits)
							0780
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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