www.bonz.ch

Issued by GeoTrust Secure Site Starter DV SSL CA - G1

About this certificate


This digital certificate with serial number 0d:71 was issued on by GeoTrust, Inc. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

www.bonz.ch

Organization unit: GT84010051
Organization unit: See www.rapidssl.com/resources/cps (c)15
Organization unit: Domain Control Validated - RapidSSL(R)

GeoTrust, Inc.

Organization: GeoTrust, Inc.
Organization unit: Domain Validated SSL

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 0d:71
Serial Number (int): 3441
Serial Number lenght: 12 bits, 2 octets

SubjectKeyId:
AuthorityKeyId: 25:99:72:41:80:a8:4e:d1:07:fa:81:b3:a1:42:b8:8a:20:08:3c:05

Fingerprint (sha1): 6b:39:02:7d:11:15:95:2e:09:5a:0f:3e:85:21:52:58:27:aa:b7:d8
Fingerprint (sha256): 50:06:43:38:97:44:91:30:db:6b:04:32:46:2e:31:fc:07:4f:36:82:ed:1b:d7:07:c1:c6:97:ec:35:94:f8:f9

Issuing Certificate URL: http://fa.symcb.com/fa.crt

Revocation information

OCSP Server: http://fa.symcd.com
CRL Distribution Point: http://fa.symcb.com/fa.crl

Check the revocation status for the current certificate on www.bonz.ch
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

www.bonz.ch
bonz.ch

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgICDXEwDQYJKoZIhvcNAQELBQAwezELMAkGA1UEBhMCVVMx FzAVBgNVBAoTDkdlb1RydXN0LCBJbmMuMR0wGwYDVQQLExREb21haW4gVmFsaWRh dGVkIFNTTDE0MDIGA1UEAxMrR2VvVHJ1c3QgU2VjdXJlIFNpdGUgU3RhcnRlciBE ViBTU0wgQ0EgLSBHMTAeFw0xNTEwMDYxMzE0MTVaFw0xNjEwMDcxNTQxMzhaMIGP MRMwEQYDVQQLEwpHVDg0MDEwMDUxMTEwLwYDVQQLEyhTZWUgd3d3LnJhcGlkc3Ns LmNvbS9yZXNvdXJjZXMvY3BzIChjKTE1MS8wLQYDVQQLEyZEb21haW4gQ29udHJv bCBWYWxpZGF0ZWQgLSBSYXBpZFNTTChSKTEUMBIGA1UEAxMLd3d3LmJvbnouY2gw ggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCtdB3MfAZ6L55+9+nARnGr LDZgyiwSi158Oq4NCocL/tgLHaknZdyuft/4mkyDMWoXreDUMdtJUGXtRg/3QliF jvNyWjJm1at61+bFB75+ow/rCnx6NDZSRrmY8ihVqo1grFfMwHktSRL9DGYN0YlC i/KbuyRyek+6d0xcYt1QssaVZBBo7UyTCyTFupYW/VXE8YTBxGTfMeC37xe9GdoX YPxuBPrSAeIRtJULaJKoW2klB+sAhxt7FnT+E8ooq7omsJuoNV1o6WRxWt/29toA 6my4rnPi8t5WmdI3LHAvDCRh4eyNsQTI0McrpUkAb2pOPAoJ9q+QafJtRDZZ1/1f AgMBAAGjggFhMIIBXTAfBgNVHSMEGDAWgBQlmXJBgKhO0Qf6gbOhQriKIAg8BTBX BggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9mYS5zeW1jZC5jb20w JgYIKwYBBQUHMAKGGmh0dHA6Ly9mYS5zeW1jYi5jb20vZmEuY3J0MA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwHwYDVR0RBBgw FoILd3d3LmJvbnouY2iCB2JvbnouY2gwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDov L2ZhLnN5bWNiLmNvbS9mYS5jcmwwDAYDVR0TAQH/BAIwADBWBgNVHSAETzBNMEsG BmeBDAECATBBMD8GCCsGAQUFBwIBFjNodHRwczovL3d3dy5nZW90cnVzdC5jb20v cmVzb3VyY2VzL3JlcG9zaXRvcnkvbGVnYWwwDQYJKoZIhvcNAQELBQADggEBAAdS WybaM2lJ4jDsikM3kiwZBMFPZSRivgUf9AxSma64epP3x3SrlFhUyKMUsPVFFO9a Sin2WoPpxA4sLRxeze3ev/04TV7tOcIufkg3eN5xv49/czRPI0N3pdPcM+OOZ1Hy KtH8Eik4AemOGJCHT+jj9GmgOweGVA0GbGpd4hdPBEj38RE4pvctlnJkkzfecx55 kaauH2DuAQVQhqZ0csO4bIwmhgY/kFroxFrFaiOV9/nBixMV/fJmfxV9PBtSlr7j cV3On+NMY3S+4J88PKPXp0o+Ix6fDXN3I7DPKUxX0sQM6fegEDe//4OZBx0qOK2+ GDWiZ7Wj6XyvX9wxUiM= -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArXQdzHwGei+efvfpwEZx qyw2YMosEotefDquDQqHC/7YCx2pJ2Xcrn7f+JpMgzFqF63g1DHbSVBl7UYP90JY hY7zcloyZtWretfmxQe+fqMP6wp8ejQ2Uka5mPIoVaqNYKxXzMB5LUkS/QxmDdGJ Qovym7skcnpPundMXGLdULLGlWQQaO1MkwskxbqWFv1VxPGEwcRk3zHgt+8XvRna F2D8bgT60gHiEbSVC2iSqFtpJQfrAIcbexZ0/hPKKKu6JrCbqDVdaOlkcVrf9vba AOpsuK5z4vLeVpnSNyxwLwwkYeHsjbEEyNDHK6VJAG9qTjwKCfavkGnybUQ2Wdf9 XwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3441 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Secure Site Starter DV SSL CA - G1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-10-06 13:14:15 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-10-07 15:41:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT84010051' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)15' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bonz.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21896485890753024384650896747431948915068998580159920938595943388646626075322623996068625738473986157412637283281150677714469689697388371827441136893061411252039492316069070511152293711041387669004036981197230298761861688188538994995108429057835309950561440976396628060723626064195239746207414117252281344352662969795726836719748142366591237289093873472374797656370927964714374170634566798720752994954459280764765286527299215367349860282616173799599228808478259344071821976216660522226924464525024415106530019038844629605567203210211069053130246999409342818830192874686147997225549881670548545984217488285193406512479 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 2599724180a84ed107fa81b3a142b88a20083c05 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://fa.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://fa.symcb.com/fa.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bonz.ch' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bonz.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://fa.symcb.com/fa.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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