www.ciac.sh.cn
- 上海市建筑建材业受理服务中心 -
Issued by SHECA
About this certificate
This digital certificate with serial number 01:1d:64:e4 was issued on by SHECA.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
- Subscriber certificate with an RSA key contains invalid key usage(s): KeyUsageKeyAgreement Key usage values digitalSignature, nonRepudiation, keyEncipherment, and dataEncipherment may only be present in an end entity certificate with an RSA key (RFC 3279: 2.3.1)
- X520 Subject fields MUST only contain printable control characters (RFC 5280: Appendix A)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
上海市建筑建材业受理服务中心
Organization:
上海市建筑建材业受理服务中心
Organization unit: 上海市建筑建材业受理服务中心
Organization unit: 上海市建筑建材业受理服务中心
State / Province:
上海
Locality: 上海
Country: CN
Locality: 上海
Country: CN
SHECA
Organization:
SHECA
This certificate has expire since
Certificate Details
Serial Number (hex): 01:1d:64:e4Serial Number (int): 18703588
Serial Number lenght: 25 bits, 4 octets
SubjectKeyId:
AuthorityKeyId:
Fingerprint (sha1): 07:75:0e:29:f9:cd:c1:21:5b:73:56:d2:76:1d:40:a4:2e:1b:52:2a
Fingerprint (sha256): 41:78:24:ee:95:ed:c8:b6:be:5b:e1:72:1f:94:b3:a7:99:f7:8b:17:fb:32:a7:1c:25:57:67:84:6d:86:90:25
Revocation information
CRL Distribution Point: ldap://ldap2.sheca.com:389/RA8888/CRL142.crlCRL Distribution Point: ldap://ldap2.sheca.com:389/ou=RA8888,ou=Sheca CRL,o=sheca.com??SUB?(cn=CRL142.crl)
CRL Distribution Point: http://ldap2.sheca.com/sheca.com/Sheca_CRL/RA8888/CRL142.crl
Check the revocation status for certificate www.ciac.sh.cn
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.ciac.sh.cn
Public Key Algorithm
RSA
Key Size
1024
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Content Commitment
Key Encipherment
Data Encipherment
Key Agreement
Extended Key Usages
Extensions
6 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name ciac.sh.cn
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.ciac.sh.cn in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEmjCCBAOgAwIBAgIEAR1k5DANBgkqhkiG9w0BAQUFADAgMQ4wDAYDVQQKEwVT SEVDQTEOMAwGA1UEAxMFU0hFQ0EwHhcNMDcxMTA3MDAwMDAwWhcNMDkxMTA3MDAw MDAwWjCBkjELMAkGA1UEBhMCQ04xDTALBgNVBAgeBE4KbXcxDTALBgNVBAceBE4K bXcxJTAjBgNVBAoeHE4KbXdeAl76e1Fe+mdQThpT13QGZw1SoU4tX8MxJTAjBgNV BAseHE4KbXdeAl76e1Fe+mdQThpT13QGZw1SoU4tX8MxFzAVBgNVBAMTDnd3dy5j aWFjLnNoLmNuMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDOgdjrJxG451dJ Q+CcPfrsu22qdFAm8uuPEpqm96dsEjnSH6MPtIJE4U+Ah/n5Yo37tRZEsoBzQ//m gZpffCKBMtsEPwsDFRgHDBJl7dj56wGVEmvMbzmeYk9q+y1VL7FmVstxzCkkQJ2e 593st9MZvkXV6hNfYuEiK6sPKJSd1wIDAQABo4ICbDCCAmgwSwYDVR0gBEQwQjBA BggqgRwBxTiBFTA0MDIGCCsGAQUFBwIBFiZodHRwOi8vd3d3LnNoZWNhLmNvbS91 Y2EvdWNhcG9saWN5LmRvYzALBgNVHQ8EBAMCA/gwCQYDVR0TBAIwADARBglghkgB hvhCAQEEBAMCBHAwgd0GA1UdHwSB1TCB0jAyoDCgLoYsbGRhcDovL2xkYXAyLnNo ZWNhLmNvbTozODkvUkE4ODg4L0NSTDE0Mi5jcmwwWKBWoFSGUmxkYXA6Ly9sZGFw Mi5zaGVjYS5jb206Mzg5L291PVJBODg4OCxvdT1TaGVjYSBDUkwsbz1zaGVjYS5j b20/P1NVQj8oY249Q1JMMTQyLmNybCkwQqBAoD6GPGh0dHA6Ly9sZGFwMi5zaGVj YS5jb20vc2hlY2EuY29tL1NoZWNhX0NSTC9SQTg4ODgvQ1JMMTQyLmNybDCCAQwG BiqBHAHFOASCAQAwgf0wHQYIKoEcAcU4gRQEEXd3dy5jaWFjLnNoLmNuOjgwMCsG CCqBHAHFOIERBB9odHRwOi8vd3d3LnNoZWNhLmNvbS9TZXJ2aWNlVXJsMCcGCCqB HAHFOIESBBtvY3NwOi8vb2NzcDIuc2hlY2EuY29tOjkwMTIwJgYIKoEcAcU4gRAE GmxkYXA6Ly9sZGFwMi5zaGVjYS5jb206Mzg5ME0GCCqBHAHFOIEXBEFsZGFwOi8v bGRhcDIuc2hlY2EuY29tOjM4OS9vdT1TaGVjYSBDZXJ0aWZpY2F0ZSBDaGFpbixv PXNoZWNhLmNvbTAPBggqgRwBxTiBEwQDNzY5MA0GCSqGSIb3DQEBBQUAA4GBACla V1h1Zpzk6SUKjW7V32oSzXqk2Z0KdxZIrRpdvK2jcfKd8vKjZe0ZYlbknE79u6Il R4YK3Q2X+hYA7F7HJXc5y9DvVtRqwcugYblVJKorg3EIAInlGwRm/Ws/uY9rTWkJ xICD/cVdvSrfQ2bgKxVkNEKHPjQXI+8gPfMY7UtP -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQDOgdjrJxG451dJQ+CcPfrsu22q dFAm8uuPEpqm96dsEjnSH6MPtIJE4U+Ah/n5Yo37tRZEsoBzQ//mgZpffCKBMtsE PwsDFRgHDBJl7dj56wGVEmvMbzmeYk9q+y1VL7FmVstxzCkkQJ2e593st9MZvkXV 6hNfYuEiK6sPKJSd1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18703588 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SHECA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'SHECA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2007-11-07 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2009-11-07 00:00:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:30|false] BMPString [78 10 109 119] . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:30|false] BMPString [78 10 109 119] . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:30|false] BMPString [78 10 109 119 94 2 94 250 123 81 94 250 103 80 78 26 83 215 116 6 103 13 82 161 78 45 95 195] . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:30|false] BMPString [78 10 109 119 94 2 94 250 123 81 94 250 103 80 78 26 83 215 116 6 103 13 82 161 78 45 95 195] . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ciac.sh.cn' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1120 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 145014298749482654944935744162610850121830466245837755322481538990928164529101317916143096252079860498846392016597186717353434081087427955922121945117440941308159218958808640852916281396787886833543013997956278905745271203835750311344563652442624038086280514464314033518682893456013433105408683789352091033047 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (68 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.156.1.8888.149 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.sheca.com/uca/ucapolicy.doc' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 03f8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113730.1.1 (netscape-cert-type) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 0470 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (213 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://ldap2.sheca.com:389/RA8888/CRL142.crl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'ldap://ldap2.sheca.com:389/ou=RA8888,ou=Sheca CRL,o=sheca.com??SUB?(cn=CRL142.crl)' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ldap2.sheca.com/sheca.com/Sheca_CRL/RA8888/CRL142.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.156.1.8888 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (256 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.156.1.8888.148 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) 7777772e636961632e73682e636e3a3830 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.156.1.8888.145 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (31 bytes) 687474703a2f2f7777772e73686563612e636f6d2f5365727669636555726c . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.156.1.8888.146 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) 6f6373703a2f2f6f637370322e73686563612e636f6d3a39303132 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.156.1.8888.144 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) 6c6461703a2f2f6c646170322e73686563612e636f6d3a333839 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.156.1.8888.151 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) 6c6461703a2f2f6c646170322e73686563612e636f6d3a3338392f6f753d536865636120436572746966696361746520436861696e2c6f3d73686563612e636f6d . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.156.1.8888.147 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (3 bytes) 373639 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (1024 bits) 00295a575875669ce4e9250a8d6ed5df6a12cd7aa4d99d0a771648ad1a5dbcada371f29df2f2a365ed196256e49c4efdbba22547860add0d97fa1600ec5ec7257739cbd0ef56d46ac1cba061b95524aa2b8371080089e51b0466fd6b3fb98f6b4d6909c48083fdc55dbd2adf4366e02b15643442873e341723ef203df318ed4b4f