shopfloor.masholdings.com

Issued by GeoTrust DV SSL CA - G4

About this certificate

This digital certificate with serial number b7:1b was issued on by GeoTrust Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

Certificate Subject

CN=shopfloor.masholdings.com,OU=GT69496176+OU=See www.geotrust.com/resources/cps (c)15+OU=Domain Control Validated - QuickSSL(R) Premium

GeoTrust Inc.

Organization: GeoTrust Inc.
Organization unit: Domain Validated SSL
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): b7:1b
Serial Number (int): 46875
Serial Number lenght: 16 bits, 2 octets

SubjectKeyId:
AuthorityKeyId: 0b:50:ec:77:ef:2a:9b:ff:ec:03:a1:0a:ff:ad:c6:e4:2a:18:c7:3e

Fingerprint (sha1): 0a:e9:85:7d:1b:20:21:6b:6d:fc:6c:e0:66:58:23:b2:8f:fc:4a:5e
Fingerprint (sha256): 10:2f:a9:41:08:61:9e:5c:1c:97:76:d6:74:58:be:79:2f:34:ae:fe:05:f9:5d:d0:89:ec:c1:53:4e:d3:9b:d1

Issuing Certificate URL: http://gu.symcb.com/gu.crt

Revocation information

OCSP Server: http://gu.symcd.com
CRL Distribution Point: http://gu.symcb.com/gu.crl

Check the revocation status for certificate shopfloor.masholdings.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for shopfloor.masholdings.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

shopfloor.masholdings.com

Other certificates including the domain name masholdings.com

(limited to 100 certificates)
energy.masholdings.com
cert00080-azurecdn.akamaized.net
cert00080-azurecdn.akamaized.net
cert00080-azurecdn.akamaized.net
learn.masholdings.com
cert00080-azurecdn.akamaized.net
cert00080-azurecdn.akamaized.net
apps.masholdings.com
cert00080-azurecdn.akamaized.net
cert00080-azurecdn.akamaized.net
shopfloor.masholdings.com
cert00080-azurecdn.akamaized.net
biq.masholdings.com
Activeevents.masholdings.com
portal.masholdings.com
cert00080-azurecdn.akamaized.net
kanban.masholdings.com
sip.masholdings.com
knet.masholdings.com
join.masholdings.com
cert00080-azurecdn.akamaized.net
masholdings.com
board.masholdings.com
plm.masholdings.com
visitors.masholdings.com
cert00080-azurecdn.akamaized.net
connect.masholdings.com
bi.masholdings.com
fs.masholdings.com
dashboard.masholdings.com
psrint.masholdings.com
cert00080-azurecdn.akamaized.net
pragna.masholdings.com
shopfloor.masholdings.com
cert00080-azurecdn.akamaized.net
fs.masholdings.com
cert00080-azurecdn.akamaized.net
visitors.masholdings.com
apps.masholdings.com
cert00080-azurecdn.akamaized.net
portal.masholdings.com
t2ouat.masholdings.com
shopfloor.masholdings.com
cert00080-azurecdn.akamaized.net
pdmobile.masholdings.com
maswas.masholdings.com
learn.masholdings.com
cert00080-azurecdn.akamaized.net
connect.masholdings.com
cert00080-azurecdn.akamaized.net
smc.masholdings.com
cert00080-azurecdn.akamaized.net
cert00080-azurecdn.akamaized.net
one.masholdings.com
darwinddm.masholdings.com
pdmobile.masholdings.com
smartrouting.masholdings.com
etrnv2.masholdings.com
cert00080-azurecdn.akamaized.net
b1.masholdings.com
acmeerp.masholdings.com
etrnq.masholdings.com
maspdweb.masholdings.com
sip.masholdings.com
shopfloor.masholdings.com
mail.masholdings.com
sip.masholdings.com
connect.masholdings.com
fs.masholdings.com
cert00080-azurecdn.akamaized.net
cert00080-azurecdn.akamaized.net
cert00080-azurecdn.akamaized.net
knet.masholdings.com
learn.masholdings.com
energy.masholdings.com
cert00080-azurecdn.akamaized.net
remote.masholdings.com
sip.masholdings.com
cert00080-azurecdn.akamaized.net
mail.masholdings.com
biq.masholdings.com
sip.masholdings.com
cert00080-azurecdn.akamaized.net
acmeerp.masholdings.com
apps.masholdings.com
learn.masholdings.com
learn.masholdings.com
portal.masholdings.com
etrn.masholdings.com
fs.masholdings.com
fs.masholdings.com
visitors.masholdings.com
cert00080-azurecdn.akamaized.net
sip.masholdings.com
sip.masholdings.com
visitors.masholdings.com
cert00080-azurecdn.akamaized.net
legcompliance.masholdings.com
shopfloor.masholdings.com
supportdesk.masholdings.com

Certificate

The complete raw certificate details for shopfloor.masholdings.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyvTFG3FOEt6C+Hm775zu
+lljMQDCPTavREJ5Svqw6P8MD3Smwe5rAE6V2u7IcyIZdqlHI86aMYUMEaGrLnU+
Z/FVAEu7UqTwNnC9U/WQV65r32v4n07fEm/oCGSDlMKDForvqeBXN2r3nTQxly1T
Qg+JKeCDSFgebACO10NaGREgo/WAuLDIki6LaYU7UENqC6SngiCPagKXpjLl6nB6
Zf6vV3w3DcD/yuyODJ8exKtKqmj7JElOqWsX6julw9Pl5Cpe16R63ZS96MZ03lYl
t98ypqaN9y0gu/tRmWJGmYe84jdpVK1/J0nQ+1/ay39gn2EwwUC6JM5zj4/5ahFC
3wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 46875
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust DV SSL CA - G4'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-02-16 23:17:13 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-02-20 10:49:25 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT69496176'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.geotrust.com/resources/cps (c)15'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - QuickSSL(R) Premium'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'shopfloor.masholdings.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25620838164055820115772514949416529709330355895216013076176909959255141134545338981167229888500232636079702823359422167128141513317282756106483229206005713364259760092744201651934955708054030630241649078715046165627017661455554173334634106767864605162824771087705248854610265871670758368873367336346862889932803218500810079075374061492023858324664424125474182178088036357157196664282521707878905516413428171340769843227268168518063432354247847190892566857717300770995813880550504402221166048455801933579437530123761633615964992500789533192313159928806345300752828840693377207501731109297395709120390404508373375599327
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0b50ec77ef2a9bffec03a10affadc6e42a18c73e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gu.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gu.symcb.com/gu.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (29 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'shopfloor.masholdings.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gu.symcb.com/gu.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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