webmail.ngaitahu.iwi.nz

- Modica Group -

Issued by Thawte SSL CA

About this certificate

This digital certificate with serial number 67:85:50:10:f0:18:1e:6b:0d:b8:36:2d:95:88:b0:57 was issued on by Thawte, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

Modica Group

Organization: Modica Group
Organization unit: IT
State / Province: New Zealand
Locality: Wellington
Country: NZ

Thawte, Inc.

Organization: Thawte, Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 67:85:50:10:f0:18:1e:6b:0d:b8:36:2d:95:88:b0:57
Serial Number (int): 137602682982755919568128269755504701527
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId:
AuthorityKeyId:

Fingerprint (sha1): 6d:b3:dd:fc:84:a2:d6:37:52:82:99:ba:a1:97:7c:3a:e2:6c:0e:07
Fingerprint (sha256): 14:2f:f8:a6:83:11:c3:20:51:43:36:7f:92:29:e7:9e:42:36:e7:1c:00:64:10:b4:ea:ad:86:c2:23:2a:5e:21


Revocation information

OCSP Server: http://ocsp.thawte.com
CRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl

Check the revocation status for certificate webmail.ngaitahu.iwi.nz

0

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for webmail.ngaitahu.iwi.nz

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Extended Key Usages

Server Authentication
Client Authentication

Extensions

4 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names.

Other certificates including the domain name ngaitahu.iwi.nz

(limited to 100 certificates)
ssl388199.cloudflaressl.com
communitynet.ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
leadersonline.ngaitahu.iwi.nz
webmail.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388198.cloudflaressl.com
ssl388199.cloudflaressl.com
*.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
tekereme.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
sni.cloudflaressl.com
ssl388198.cloudflaressl.com
communitynet.ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
sts.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
www.mahi.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388197.cloudflaressl.com
ssl388198.cloudflaressl.com
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
ngaitahu.iwi.nz
tekereme.ngaitahu.iwi.nz
mahi.ngaitahu.iwi.nz
sni.cloudflaressl.com
ssl388199.cloudflaressl.com
mahi.ngaitahu.iwi.nz
sts.ngaitahu.iwi.nz
sts.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
www.mahi.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
sni.cloudflaressl.com
sni.cloudflaressl.com
ssl388197.cloudflaressl.com
webmail.ngaitahu.iwi.nz
sts.ngaitahu.iwi.nz
*.ngaitahu.iwi.nz
mahi.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
ssl388199.cloudflaressl.com
mahi.ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
webmail.ngaitahu.iwi.nz
ngaitahu.iwi.nz
ngaitahu.iwi.nz
ssl388199.cloudflaressl.com
mahi.ngaitahu.iwi.nz
mahi.ngaitahu.iwi.nz

Certificate

The complete raw certificate details for webmail.ngaitahu.iwi.nz in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuxtoXllf/PoNg8xH8bDH
kMfOXm2+rGamgH/lsoQGfOWXw52JlCqu6h5fz4ct18PDZ1vouDXaP0pnF8b0fuaF
YRs7KmsY8JPh+VvaAIuOUVynzlEOWMCcCxbd9AvkR9oDkqIOgBIhblA/cm5F3ZDu
jzL7eDMBwIsjQWLyFjAzoD46b+YDgl5IUsixLR2n9+IVbKdUC4vWzxCSXL2i1bnp
2DYtkijdoFHvYc08EGSZr1xHkI8C91KPuQvTqKWdO690iUNG4g4TZSKShxUuXukT
0MoQJF6kgLWBQ+0JYe9k2ovHsrF67y6nc1u4NqMw1sm+NFt8Mz0CdWogAOtghU1d
aQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 137602682982755919568128269755504701527
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-03-08 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-06-29 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NZ'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'New Zealand'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Wellington'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Modica Group'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'IT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'webmail.ngaitahu.iwi.nz'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23620078264140746344066510358682199295550680240420375630634365606174295622896456224657856481752704280902067406702730030135298231267406094929795261422010492133259371614387891343304719553645001929953269195019161745408260816930226732873281609674835688456702340464529370468634658635643026443833953644779834706699665520276418280545853082892858835476432883129086820831261907848212272253650636518197711817293121171400211905486711224858085290468788961861786525055518986428322894823462063614477442905787015096390798723343515703595404104272499247027681684201633122733350623286278631620321403667622549109161958611639568943635817
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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