www.wspa.org
Issued by GeoTrust DV SSL CA - G4
About this certificate
This digital certificate with serial number 02:c1:99 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.wspa.org
GeoTrust Inc.
Organization:
GeoTrust Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:c1:99Serial Number (int): 180633
Serial Number lenght: 18 bits, 3 octets
SubjectKeyId:
AuthorityKeyId: 0b:50:ec:77:ef:2a:9b:ff:ec:03:a1:0a:ff:ad:c6:e4:2a:18:c7:3e
Fingerprint (sha1): 2b:1b:2b:8c:47:43:11:a9:30:9f:f0:7b:60:87:34:7b:16:54:65:ec
Fingerprint (sha256): 29:29:a7:1a:02:0c:6d:7c:c2:3a:d6:49:1c:ee:cf:05:bd:42:28:b7:6e:8c:6d:01:57:68:34:fb:84:85:09:4c
Issuing Certificate URL: http://gu.symcb.com/gu.crt
Revocation information
OCSP Server: http://gu.symcd.comCRL Distribution Point: http://gu.symcb.com/gu.crl
Check the revocation status for certificate www.wspa.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.wspa.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.wspa.org
wspa.org
wspa.org
Other certificates including the domain name wspa.org
(limited to 100 certificates)
www.wspa.org
endlcfs.wspa.org
www.wspa.org
wspa.org
wspa.org
wspa.org
members.wspa.org
www.wspa.org
wspa.org
www.wspa.org
endlcfs.wspa.org
wspa.org
members.wspa.org
wspa.org
wspa.org
wspa.org
wspa.org
endlcfs.wspa.org
endlcfs.wspa.org
www.wspa.org
wspa.org
members.wspa.org
members.wspa.org
www.wspa.org
www.wspa.org
endlcfs.wspa.org
www.wspa.org
www.wspa.org
wspa.org
wspa.org
www.wspa.org
www.wspa.org
wspa.org
www.wspa.org
members.wspa.org
www.wspa.org
wspa.org
wspa.org
www.wspa.org
endlcfs.wspa.org
*.wspa.org
www.wspa.org
www.wspa.org
members.wspa.org
wspa.org
www.wspa.org
wspa.org
wspa.org
wspa.org
www.wspa.org
www.wspa.org
endlcfs.wspa.org
wspa.org
www.wspa.org
www.wspa.org
wspa.org
endlcfs.wspa.org
members.wspa.org
endlcfs.wspa.org
wspa.org
wspa.org
endlcfs.wspa.org
www.wspa.org
members.wspa.org
www.wspa.org
wspa.org
endlcfs.wspa.org
endlcfs.wspa.org
www.wspa.org
wspa.org
wspa.org
wspa.org
members.wspa.org
www.wspa.org
wspa.org
www.wspa.org
endlcfs.wspa.org
wspa.org
members.wspa.org
wspa.org
wspa.org
wspa.org
wspa.org
endlcfs.wspa.org
endlcfs.wspa.org
www.wspa.org
wspa.org
members.wspa.org
members.wspa.org
www.wspa.org
www.wspa.org
endlcfs.wspa.org
www.wspa.org
www.wspa.org
wspa.org
wspa.org
www.wspa.org
www.wspa.org
wspa.org
www.wspa.org
members.wspa.org
www.wspa.org
wspa.org
wspa.org
www.wspa.org
endlcfs.wspa.org
*.wspa.org
www.wspa.org
www.wspa.org
members.wspa.org
wspa.org
www.wspa.org
wspa.org
wspa.org
wspa.org
www.wspa.org
www.wspa.org
endlcfs.wspa.org
wspa.org
www.wspa.org
www.wspa.org
wspa.org
endlcfs.wspa.org
members.wspa.org
endlcfs.wspa.org
wspa.org
wspa.org
endlcfs.wspa.org
www.wspa.org
members.wspa.org
www.wspa.org
wspa.org
endlcfs.wspa.org
Certificate
The complete raw certificate details for www.wspa.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEXzCCA0egAwIBAgIDAsGZMA0GCSqGSIb3DQEBCwUAMGYxCzAJBgNVBAYTAlVT MRYwFAYDVQQKEw1HZW9UcnVzdCBJbmMuMR0wGwYDVQQLExREb21haW4gVmFsaWRh dGVkIFNTTDEgMB4GA1UEAxMXR2VvVHJ1c3QgRFYgU1NMIENBIC0gRzQwHhcNMTUx MjA3MDg1MDA3WhcNMTcwMTA3MDMxMzU0WjAXMRUwEwYDVQQDEwx3d3cud3NwYS5v cmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCiQhNQG/DXUYK+EhQ2 QV2fYk9vpbK5eA2hHOyXjM6dmp9NjIgdV7GjYOhVIUDj0YVceZXublZN6Jc3zzKW 25aDI+zwDDbnW2hD8qpvGCrCb712r9557kHlnzI9yhAU/wF82Whzl+jrEwtxpLVJ +UlM72/xyZcLZlh94tHJx2Rpp9yJCorFt2B4JM62kXNiatyz9iWoE6iMuabR2+hJ fHd5YH/SJaBcwRcWy5pxqDmOzEDYE9n4AKGqXweh7K50OEXslKsjmcQ7Rp4Te7+X syJUrD2I+h/h2296GNeAjFxSBtf9NQOaxKyPSIeiwxVoMDPFLJKPFEmZTytHntm/ XouZAgMBAAGjggFjMIIBXzAfBgNVHSMEGDAWgBQLUOx37yqb/+wDoQr/rcbkKhjH PjBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9ndS5zeW1jZC5j b20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9ndS5zeW1jYi5jb20vZ3UuY3J0MA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwIQYDVR0R BBowGIIMd3d3LndzcGEub3Jnggh3c3BhLm9yZzArBgNVHR8EJDAiMCCgHqAchhpo dHRwOi8vZ3Uuc3ltY2IuY29tL2d1LmNybDAMBgNVHRMBAf8EAjAAMFYGA1UdIARP ME0wSwYGZ4EMAQIBMEEwPwYIKwYBBQUHAgEWM2h0dHBzOi8vd3d3Lmdlb3RydXN0 LmNvbS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdhbDANBgkqhkiG9w0BAQsFAAOC AQEAoKAr1gndVCmQ7HJEz0p0F8aB4yOQJEqSMoCbWsaL+7oXPJHMGC+Vb+qDQ7IQ bt3KTQLh2gYjt4kkHwsTLoZantnFLEkQFpgU1GaCM85DV6uoxv3nygcCSqPEW8MP dIprAAHAA9FOWqrCn4jz1uCSMvU4ZrWcnk6mH1chkt20oQFTwogo7k4L2QhBIUPf ZC5JNQ41OUOXWxBLER5cO8Snf1Uf0YCn+G6DCrn/O0dykjLk1fAFPjlg15q9+Yyt canMwASSvgZ/mCtp6ssW3JLZQjHeVCH7hlqS0QyTXwzO51PpsYsAOh/MkQJfF6GP hQq3WL7Head4r16q3bvxa2VfjQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAokITUBvw11GCvhIUNkFd n2JPb6WyuXgNoRzsl4zOnZqfTYyIHVexo2DoVSFA49GFXHmV7m5WTeiXN88yltuW gyPs8Aw251toQ/Kqbxgqwm+9dq/eee5B5Z8yPcoQFP8BfNloc5fo6xMLcaS1SflJ TO9v8cmXC2ZYfeLRycdkaafciQqKxbdgeCTOtpFzYmrcs/YlqBOojLmm0dvoSXx3 eWB/0iWgXMEXFsuacag5jsxA2BPZ+AChql8HoeyudDhF7JSrI5nEO0aeE3u/l7Mi VKw9iPof4dtvehjXgIxcUgbX/TUDmsSsj0iHosMVaDAzxSySjxRJmU8rR57Zv16L mQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 180633 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust DV SSL CA - G4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-12-07 08:50:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-07 03:13:54 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.wspa.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20483188418902619009143921037904597041056619571439474131374892936444231137038823570244942211286593310540229547842320051883776008523239565182311788249525927389134561906645015733253416643707972993618408286425711347876981055767105487695840032124434487772549592014395653362583989022084082747325301352501530995677714163620192230862369627760209785500790741977197720429124104497883413092802157312273016533800135230623065340577140332739516772887056293379973960005613247751551774827381941038200121135351524865126171284107262623767296936369240029173115433518122016882675316462638068491081255011158759071000613649851765879638937 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0b50ec77ef2a9bffec03a10affadc6e42a18c73e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gu.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gu.symcb.com/gu.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.wspa.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wspa.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gu.symcb.com/gu.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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