www.hsc.ch
Issued by RapidSSL SHA256 CA - G2
About this certificate
This digital certificate with serial number 39:df:35:60:84:69:b2:00:17:0a:85:e1:6b:cc:52:49 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.hsc.ch
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 39:df:35:60:84:69:b2:00:17:0a:85:e1:6b:cc:52:49Serial Number (int): 76924960573785865314959503849658536521
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 4c:f4:bf:e8:3b:be:c2:24:f3:1b:47:3b:b5:6e:48:8e:16:ab:af:12
Fingerprint (sha1): 28:d3:09:78:22:89:46:b2:c5:ae:c5:36:75:61:68:b5:73:d2:ef:be
Fingerprint (sha256): 20:f2:f8:43:d1:d3:d9:e7:e0:19:a6:4a:c6:d1:0e:6d:56:55:4e:59:1c:08:b5:aa:9d:b6:d1:51:53:cf:d4:5c
Issuing Certificate URL: http://gs.symcb.com/gs.crt
Revocation information
OCSP Server: http://gs.symcd.comCRL Distribution Point: http://gs.symcb.com/gs.crl
Check the revocation status for certificate www.hsc.ch
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.hsc.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.hsc.ch
hsc.ch
hsc.ch
Other certificates including the domain name hsc.ch
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.hsc.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVTCCBT2gAwIBAgIQOd81YIRpsgAXCoXha8xSSTANBgkqhkiG9w0BAQsFADBH MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEgMB4GA1UEAxMX UmFwaWRTU0wgU0hBMjU2IENBIC0gRzIwHhcNMTYxMDEzMDAwMDAwWhcNMTkxMTEy MjM1OTU5WjAVMRMwEQYDVQQDDAp3d3cuaHNjLmNoMIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAx8G4jrpzRtMrDiUphXCUR3LwlASh22NKwu0wKkjh8ed3 cUYvkw2utfwjH8YsucIKyIaEJOMAbrEdWSxLSqp1UW9fI7YE3SvmbRiu8tSyC8/c 1y02Utsv5+eBZcNcJH4QKEDC3WUU2l24RgseBmG9V8BlnSV9LmyVL+Y0pXlToIcO zEGf0eaDsyTR71LrvwG1trIgSQ2GnUVoP7qVqmCMnE2zGHS7wIGBhSkY3RJk8MDq Vl/o8ilsvBBTzug1NRlOysQoKV+V4sCnbK56z9yhtdMZQo4RIK3E75z1/RDfnxBw 3Rw1zHyxBnhl+SjjF+XzPIQhm/dw8JpeCj2oSHwz7QIDAQABo4IDbTCCA2kwHQYD VR0RBBYwFIIKd3d3LmhzYy5jaIIGaHNjLmNoMAkGA1UdEwQCMAAwKwYDVR0fBCQw IjAgoB6gHIYaaHR0cDovL2dzLnN5bWNiLmNvbS9ncy5jcmwwbwYDVR0gBGgwZjBk BgZngQwBAgEwWjAqBggrBgEFBQcCARYeaHR0cHM6Ly93d3cucmFwaWRzc2wuY29t L2xlZ2FsMCwGCCsGAQUFBwICMCAMHmh0dHBzOi8vd3d3LnJhcGlkc3NsLmNvbS9s ZWdhbDAfBgNVHSMEGDAWgBRM9L/oO77CJPMbRzu1bkiOFquvEjAOBgNVHQ8BAf8E BAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEB BEswSTAfBggrBgEFBQcwAYYTaHR0cDovL2dzLnN5bWNkLmNvbTAmBggrBgEFBQcw AoYaaHR0cDovL2dzLnN5bWNiLmNvbS9ncy5jcnQwggH0BgorBgEEAdZ5AgQCBIIB 5ASCAeAB3gB2AN3rHSt6DU+mIIuBrYFocH4ujp0B1VyIjT0RxM227L7MAAABV7yd rMMAAAQDAEcwRQIhAIu5N5EoUb0EwVAcHOPu7eqDlzQ9561VM3J4CWal980sAiAR aQxDNFPxO5EhY+gbPbV0lUsPfgirjPdztgRywusdIQB2AGj2mPgfZIK+OozuuSgd TPxxUV1nk9RE0QpnrLtPT/vEAAABV7ydrOIAAAQDAEcwRQIgKzhmXyIKBtU7BA7i jmURGlHaiQ4Ffi6sjTJgHwQQZmcCIQDSMMhUGMcgXhZ7tWnmVnXR3MPd5+3SEHW1 Zu6h73avmAB1AO5Lvbd1zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABV7yd rsMAAAQDAEYwRAIgGDyYKWdOJeg6ZTf5lY8wgdhnlEJ1ae5JhxnR0bHhgmMCIFea mvJ4Hi0KV9pUGvr8xfmNRkiFTW3gxwTlkCm9yh0AAHUAvHjh38X2PGhGSTNNoQ+h Xwl5aSAJwIG08/aRfz7ZuKUAAAFXvJ2ttQAABAMARjBEAiBXosbbZBM1+fMWEo/w /bCxlPGfQEAUCzrAgrXr7fLMKgIgLb+g8TxtQCe9key0UKz64gO1piOrQYtQKuF8 aKSKdUMwDQYJKoZIhvcNAQELBQADggEBALeMMiBD+gipinOPfPKbV1bfybnZ5AFr bB7gw/4u0wYFS238KtkqfGMeV0ywyRXVdSRoFoI1kwwiR7QASW+NfdUodeTOuAuU zpiUlsgfHSeoIDhdlq1Zj1gaVCH5lrChPn+QaoavDWWjjWdK5tHjGJ6xrnRFRI9h V9YjpbS3fF6z569MaYGCPiQJAabCbAKtGo4KynzK4XDr1Ig6xovBqDM9YnokB7T+ VAlUGQc1Ber4R2bzP/j6oBiCioZAcaqTsJOYxARIjHfwXgTndAI7fcADywp+t6bh cVTGi1cCwlty/sN7IalS0PB81kOl88CdxrkRBjUpH1cdq0KRKlP5Nbw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8G4jrpzRtMrDiUphXCU R3LwlASh22NKwu0wKkjh8ed3cUYvkw2utfwjH8YsucIKyIaEJOMAbrEdWSxLSqp1 UW9fI7YE3SvmbRiu8tSyC8/c1y02Utsv5+eBZcNcJH4QKEDC3WUU2l24RgseBmG9 V8BlnSV9LmyVL+Y0pXlToIcOzEGf0eaDsyTR71LrvwG1trIgSQ2GnUVoP7qVqmCM nE2zGHS7wIGBhSkY3RJk8MDqVl/o8ilsvBBTzug1NRlOysQoKV+V4sCnbK56z9yh tdMZQo4RIK3E75z1/RDfnxBw3Rw1zHyxBnhl+SjjF+XzPIQhm/dw8JpeCj2oSHwz 7QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 76924960573785865314959503849658536521 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-10-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.hsc.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25216950038127185509169535909557366772161258346584904850158159948697647539554735334994189551975198436767425143701287563976290301960062166949511895029016879408247183425000170659297014787704143659125003473567582061483316965119197289588275940196723320110137313276452743506297411568925770742960122565053474762510919060715223856426523925176111536710428813934752249834286181224606789517380659389099506815247682278396281270193587302155615743609192313740652701064463432229306928244064873821925839472402769915400766388709468615667459210395101098829292866482191213808823433715579349238200320502361436817089602624102986552194029 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hsc.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hsc.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gs.symcb.com/gs.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4cf4bfe83bbec224f31b473bb56e488e16abaf12 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gs.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gs.symcb.com/gs.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (484 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (480 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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