AffirmTrust Validation Authority

- AffirmTrust -

Issued by AffirmTrust Extended Validation CA - EV2

About this certificate

This digital certificate with serial number 52:59:dd:4a:bf:fd:a4:82:ae:ac:bb:a3:9d:84:aa:14 was issued on by AffirmTrust.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Certificate had 0 embedded SCTs. Browser policy may require 4 for this certificate. Check if certificate has enough embedded SCTs to meet Apple CT Policy (https://support.apple.com/en-us/HT205280)

AffirmTrust

Organization: AffirmTrust
Country: CA

AffirmTrust

Organization: AffirmTrust
Organization unit: See www.affirmtrust.com/repository
Country: CA

This certificate will expire on

Certificate Details

Serial Number (hex): 52:59:dd:4a:bf:fd:a4:82:ae:ac:bb:a3:9d:84:aa:14
Serial Number (int): 109463298409597406298782038262756452884
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 00:cc:a1:fb:66:c3:40:96:35:55:de:01:86:04:c4:05:85:77:41:90
AuthorityKeyId: 73:7c:9a:38:68:3c:51:7c:41:08:fe:a1:1f:2a:1e:b4:61:db:cd:3c

Fingerprint (sha1): ee:1b:9f:53:d6:94:1c:6f:a2:eb:42:e1:92:55:1e:ac:fe:4b:e9:ef
Fingerprint (sha256): 43:36:df:bc:7e:ed:42:2a:8b:31:33:8e:2c:b2:08:73:2c:b1:6f:76:ea:f5:ab:26:30:98:9f:4d:f4:a4:93:ce


Revocation information


Check the revocation status for certificate AffirmTrust Validation Authority

0

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for AffirmTrust Validation Authority

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature

Extended Key Usages

OCSP Signing

Extensions

6 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names.

Other certificates including the domain name

(limited to 100 certificates)

Certificate

The complete raw certificate details for AffirmTrust Validation Authority in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIID5DCCAsygAwIBAgIQUlndSr/9pIKurLujnYSqFDANBgkqhkiG9w0BAQsFADCB
gzELMAkGA1UEBhMCQ0ExFDASBgNVBAoTC0FmZmlybVRydXN0MSswKQYDVQQLEyJT
ZWUgd3d3LmFmZmlybXRydXN0LmNvbS9yZXBvc2l0b3J5MTEwLwYDVQQDEyhBZmZp
cm1UcnVzdCBFeHRlbmRlZCBWYWxpZGF0aW9uIENBIC0gRVYyMB4XDTIyMTAyODE1
NDgzMFoXDTI1MTAyNzE1NDgyOVowTjELMAkGA1UEBhMCQ0ExFDASBgNVBAoTC0Fm
ZmlybVRydXN0MSkwJwYDVQQDEyBBZmZpcm1UcnVzdCBWYWxpZGF0aW9uIEF1dGhv
cml0eTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMJ1IX7AzSDqAQI0
b23SksIhl8pX6nMFsStqMum9P+4FHbV0jjkDKc+w462H2kxcTpKpXRi1Hq52G1pk
W0OSWhW1dMHWW9Aijr6taGpe/80IgjO17djzJOsobI7jPbHPE+JtG1hpaAT7+lbN
BDIAbsUQ3c4/DKZ9UpF5DKg4y2SqrCdz7YuRRechpVkr2nkdzdBaH7rlF5C95iij
Zq14eWKsGj9zpNs9rXqWStMsZ1FAsdEKVcvKjdev80IqPrYIO91cL1IraiSfuHLB
xWkK3yarOjZDGKpvin4yLhSfN9GlovBL4UTd5UPA4JexiuK0yH38RH/tzeiyTva6
OmWj9zsCAwEAAaOBhzCBhDAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQAzKH7ZsNA
ljVV3gGGBMQFhXdBkDAfBgNVHSMEGDAWgBRzfJo4aDxRfEEI/qEfKh60YdvNPDAO
BgNVHQ8BAf8EBAMCB4AwEwYDVR0lBAwwCgYIKwYBBQUHAwkwDwYJKwYBBQUHMAEF
BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB6G+pkS/fCgX41U4ksmkEcmH/Ny+VG/t
LfvHszci8KgsCVsjVi8/yCgVSgQj3GNP9FOIDnsYvkpMwt6eP/+gvKonMObnjhCO
Llhvc8tvysyub+0WJXyoeLOHMug5UX+1EzwWnyk1rlV55+KwUoEwyi1OHuI6YDPF
0osBJauEgzc0ccKNdxoSonAW+tkpjUNGEs8UWOOiBHILqUpGC5aUgdR6MDoV6qsf
bPfjkN0i2L1siVW7VkRORxlauZiYI0tBLJFxWz7DgQAp+RF/UmMhdzBa5fbyY8DU
mEvgVjaeMvu3kWu7DlNEG+ZxGUOHHRTTcxihArBo1WE8kC/c6bQbGw==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwnUhfsDNIOoBAjRvbdKS
wiGXylfqcwWxK2oy6b0/7gUdtXSOOQMpz7DjrYfaTFxOkqldGLUernYbWmRbQ5Ja
FbV0wdZb0CKOvq1oal7/zQiCM7Xt2PMk6yhsjuM9sc8T4m0bWGloBPv6Vs0EMgBu
xRDdzj8Mpn1SkXkMqDjLZKqsJ3Pti5FF5yGlWSvaeR3N0FofuuUXkL3mKKNmrXh5
YqwaP3Ok2z2tepZK0yxnUUCx0QpVy8qN16/zQio+tgg73VwvUitqJJ+4csHFaQrf
Jqs6NkMYqm+KfjIuFJ830aWi8EvhRN3lQ8Dgl7GK4rTIffxEf+3N6LJO9ro6ZaP3
OwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 109463298409597406298782038262756452884
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AffirmTrust'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.affirmtrust.com/repository'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AffirmTrust Extended Validation CA - EV2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-28 15:48:30 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-10-27 15:48:29 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AffirmTrust'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AffirmTrust Validation Authority'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24547990533512803820198958722433153989812715420418492746524147889681932559031103484451588598643857444343839563691821076271666631181979101319628354898102008570741710312651343557296179302122876982465885228173549224293686635540664607100293246312963235578199913920700168283296240903758247648511485690029891825227177005268789579697105651864682383116405894399107724665410324193143893646698670781947733674221004658867078725325655633277383780499738033792741346760910636684142710763304467300528050604402328959779936471037911548549164444405232607991928431222447902181322329668841009217771329181773817483675194581977204556822331
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							00cca1fb66c340963555de018604c40585774190
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 737c9a38683c517c4108fea11f2a1eb461dbcd3c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits)
							0780
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.9 (ocspSigning)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1.5 (ocspNoCheck)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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