owa.claro.com.br

Issued by GeoTrust DV SSL CA - G4

About this certificate

This digital certificate with serial number 0e:aa was issued on by GeoTrust Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

Certificate Subject

CN=owa.claro.com.br,OU=GT05263236+OU=See www.geotrust.com/resources/cps (c)14+OU=Domain Control Validated - QuickSSL(R) Premium

GeoTrust Inc.

Organization: GeoTrust Inc.
Organization unit: Domain Validated SSL
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 0e:aa
Serial Number (int): 3754
Serial Number lenght: 12 bits, 2 octets

SubjectKeyId:
AuthorityKeyId: 0b:50:ec:77:ef:2a:9b:ff:ec:03:a1:0a:ff:ad:c6:e4:2a:18:c7:3e

Fingerprint (sha1): 42:fd:ac:98:91:02:7c:5b:1e:83:47:60:c7:2b:61:8c:cf:b4:ed:e9
Fingerprint (sha256): 26:7e:53:d8:eb:b1:fa:a1:9d:df:d4:2f:1e:11:59:39:94:8f:ce:15:4f:6c:80:68:68:1a:43:f0:63:2c:e9:65

Issuing Certificate URL: http://gu.symcb.com/gu.crt

Revocation information

OCSP Server: http://gu.symcd.com
CRL Distribution Point: http://gu.symcb.com/gu.crl

Check the revocation status for certificate owa.claro.com.br

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for owa.claro.com.br

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

owa.claro.com.br

Other certificates including the domain name claro.com.br

(limited to 100 certificates)
pdv.claro.com.br
backend.omega.onappcdn.com
logisticasp.claro.com.br
owa.claro.com.br
debitocartao.claro.com.br
backend.omega.onappcdn.com
webvpn.claro.com.br
backend.omega.onappcdn.com
secure07.lithium.com
lojaonline.claro.com.br
oappaut.claro.com.br
logisticasp.claro.com.br
*.claro.com.br
backend.omega.onappcdn.com
secure07.lithium.com
secure07.lithium.com
claro.com.br
golpf.claro.com.br
treinamento.faponline.claro.com.br
backend.omega.onappcdn.com
claro-gestoronline.claro.com.br
caphml.claro.com.br
extranetsafe.claro.com.br
portalcorporativo.claro.com.br
backend.omega.onappcdn.com
*.apigw.claro.com.br
minhaclarotv.claro.com.br
debitocartao.claro.com.br
ipchml.claro.com.br
claro.com.br
claro.com.br
claro-gestoronline.claro.com.br
claro.com.br
caphml.claro.com.br
backend.omega.onappcdn.com
cap.claro.com.br
backend.omega.onappcdn.com
spd2.claro.com.br
ecob.claro.com.br
portaldenotas.claro.com.br
misp.claro.com.br
spd3.claro.com.br
ngc.claro.com.br
pdv.claro.com.br
minhaclarotv.claro.com.br
backend.omega.onappcdn.com
extranet.claro.com.br
chat.claro.com.br
m.lojaonline.claro.com.br
m.lojaonline3.claro.com.br
chat.claro.com.br
*.apigw.claro.com.br
*.net.com.br
contaonline.claro.com.br
webvpn.claro.com.br
spd1.claro.com.br
minhaclaro.claro.com.br
secure07.lithium.com
backend.omega.onappcdn.com
minhaclarotv.claro.com.br
icops.claro.com.br
claro.com.br
backend.omega.onappcdn.com
secure.claro.com.br
backend.omega.onappcdn.com
claro-gestoronline.claro.com.br
hubble.claro.com.br
apps.claro.com.br
minhaclarotv.claro.com.br
mcrecarga.claro.com.br
cwa.claro.com.br
cap.claro.com.br
idmbr.claro.com.br
poc-vlocity.claro.com.br
backend.omega.onappcdn.com
m.lojaonline.claro.com.br
iw.claro.com.br
portallogisticaqas.claro.com.br
claro.com.br
backend.omega.onappcdn.com
lojaonline.claro.com.br
backend.omega.onappcdn.com
configuraraparelhos.claro.com.br
spd1.claro.com.br
backend.omega.onappcdn.com
api.commandcenter.claro.com.br
claro.com.br
golpf.claro.com.br
owa.claro.com.br
contaonlinepf.claro.com.br
owa.claro.com.br
backend.omega.onappcdn.com
spd3.claro.com.br
backend.omega.onappcdn.com
iw.claro.com.br
sgd.claro.com.br
iw.claro.com.br
parceiro.gtw.claro.com.br
pdv.claro.com.br
minhaclaroempresas.claro.com.br

Certificate

The complete raw certificate details for owa.claro.com.br in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAiyUW3bebfIUk5wGAaxE8
58vW94+MABjjbQUlxJYh2XNB1WzU0r7jjR6dI5xyVrg4bcUdNYeoSlWVUjhSz2Vt
k3QabSMLUy4/65Qzy6XiYgWEKuyUG71JylnaQGeRdLPNu9kB6E0D3xy140EOJF+H
pq2V6Sd1tunXdjIyTl9qOL3opMcetMKAtNcaqNwFxhqB3lWRC42Knzqhk4tHkk44
jPKttS0Qxdxtzb4tVA/ji7LErRtly23ev5efjnZ6ESrbjETEv0ofjbH/4QeDEg6l
4qXxx+92FLjYNUNsO0Ojb9swUl2CS3QL1ZPQ+VbG5h4bySmLA8YqOSp5N1kG/2J/
gQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 3754
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust DV SSL CA - G4'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-10-15 09:10:06 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-10-16 18:09:13 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT05263236'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.geotrust.com/resources/cps (c)14'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - QuickSSL(R) Premium'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'owa.claro.com.br'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17565413815944105295765845563436159791632986994930324346339066577740296120852758710271030282229535914092744262463020604929799724889923939855768720345733000485594793240035073328947923876498073943394018920945511865123985187627214325595817717865579337479984618100450066690280920840457686203733748711213727103509691914147188840040798408339671589077949472312217622655534778909237999379478456495326825081693502359870128831795455244220393917277195450157960608931912718511665934558046001762420909076472100037687313948545103811838750777712375339511079984594264168060896903524256947945220498468888989981664817626242894088273793
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0b50ec77ef2a9bffec03a10affadc6e42a18c73e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gu.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gu.symcb.com/gu.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'owa.claro.com.br'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gu.symcb.com/gu.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (83 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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