AffirmTrust Validation Authority
- AffirmTrust -
Issued by AffirmTrust Extended Validation CA - EV2
About this certificate
This digital certificate with serial number 52:59:dd:4a:bf:fd:a4:82:ae:ac:bb:a3:9d:84:aa:14 was issued on by AffirmTrust.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Certificate had 0 embedded SCTs. Browser policy may require 4 for this certificate. Check if certificate has enough embedded SCTs to meet Apple CT Policy (https://support.apple.com/en-us/HT205280)
AffirmTrust
Organization:
AffirmTrust
Country:
CA
AffirmTrust
Organization:
AffirmTrust
Organization unit: See www.affirmtrust.com/repository
Organization unit: See www.affirmtrust.com/repository
Country:
CA
This certificate will expire on
Certificate Details
Serial Number (hex): 52:59:dd:4a:bf:fd:a4:82:ae:ac:bb:a3:9d:84:aa:14Serial Number (int): 109463298409597406298782038262756452884
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 00:cc:a1:fb:66:c3:40:96:35:55:de:01:86:04:c4:05:85:77:41:90
AuthorityKeyId: 73:7c:9a:38:68:3c:51:7c:41:08:fe:a1:1f:2a:1e:b4:61:db:cd:3c
Fingerprint (sha1): ee:1b:9f:53:d6:94:1c:6f:a2:eb:42:e1:92:55:1e:ac:fe:4b:e9:ef
Fingerprint (sha256): 43:36:df:bc:7e:ed:42:2a:8b:31:33:8e:2c:b2:08:73:2c:b1:6f:76:ea:f5:ab:26:30:98:9f:4d:f4:a4:93:ce
Revocation information
Check the revocation status for certificate AffirmTrust Validation Authority
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for AffirmTrust Validation Authority
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Extended Key Usages
OCSP Signing
Extensions
6 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name
(limited to 100 certificates)
Certificate
The complete raw certificate details for AffirmTrust Validation Authority in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIID5DCCAsygAwIBAgIQUlndSr/9pIKurLujnYSqFDANBgkqhkiG9w0BAQsFADCB gzELMAkGA1UEBhMCQ0ExFDASBgNVBAoTC0FmZmlybVRydXN0MSswKQYDVQQLEyJT ZWUgd3d3LmFmZmlybXRydXN0LmNvbS9yZXBvc2l0b3J5MTEwLwYDVQQDEyhBZmZp cm1UcnVzdCBFeHRlbmRlZCBWYWxpZGF0aW9uIENBIC0gRVYyMB4XDTIyMTAyODE1 NDgzMFoXDTI1MTAyNzE1NDgyOVowTjELMAkGA1UEBhMCQ0ExFDASBgNVBAoTC0Fm ZmlybVRydXN0MSkwJwYDVQQDEyBBZmZpcm1UcnVzdCBWYWxpZGF0aW9uIEF1dGhv cml0eTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMJ1IX7AzSDqAQI0 b23SksIhl8pX6nMFsStqMum9P+4FHbV0jjkDKc+w462H2kxcTpKpXRi1Hq52G1pk W0OSWhW1dMHWW9Aijr6taGpe/80IgjO17djzJOsobI7jPbHPE+JtG1hpaAT7+lbN BDIAbsUQ3c4/DKZ9UpF5DKg4y2SqrCdz7YuRRechpVkr2nkdzdBaH7rlF5C95iij Zq14eWKsGj9zpNs9rXqWStMsZ1FAsdEKVcvKjdev80IqPrYIO91cL1IraiSfuHLB xWkK3yarOjZDGKpvin4yLhSfN9GlovBL4UTd5UPA4JexiuK0yH38RH/tzeiyTva6 OmWj9zsCAwEAAaOBhzCBhDAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQAzKH7ZsNA ljVV3gGGBMQFhXdBkDAfBgNVHSMEGDAWgBRzfJo4aDxRfEEI/qEfKh60YdvNPDAO BgNVHQ8BAf8EBAMCB4AwEwYDVR0lBAwwCgYIKwYBBQUHAwkwDwYJKwYBBQUHMAEF BAIFADANBgkqhkiG9w0BAQsFAAOCAQEAB6G+pkS/fCgX41U4ksmkEcmH/Ny+VG/t LfvHszci8KgsCVsjVi8/yCgVSgQj3GNP9FOIDnsYvkpMwt6eP/+gvKonMObnjhCO Llhvc8tvysyub+0WJXyoeLOHMug5UX+1EzwWnyk1rlV55+KwUoEwyi1OHuI6YDPF 0osBJauEgzc0ccKNdxoSonAW+tkpjUNGEs8UWOOiBHILqUpGC5aUgdR6MDoV6qsf bPfjkN0i2L1siVW7VkRORxlauZiYI0tBLJFxWz7DgQAp+RF/UmMhdzBa5fbyY8DU mEvgVjaeMvu3kWu7DlNEG+ZxGUOHHRTTcxihArBo1WE8kC/c6bQbGw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwnUhfsDNIOoBAjRvbdKS wiGXylfqcwWxK2oy6b0/7gUdtXSOOQMpz7DjrYfaTFxOkqldGLUernYbWmRbQ5Ja FbV0wdZb0CKOvq1oal7/zQiCM7Xt2PMk6yhsjuM9sc8T4m0bWGloBPv6Vs0EMgBu xRDdzj8Mpn1SkXkMqDjLZKqsJ3Pti5FF5yGlWSvaeR3N0FofuuUXkL3mKKNmrXh5 YqwaP3Ok2z2tepZK0yxnUUCx0QpVy8qN16/zQio+tgg73VwvUitqJJ+4csHFaQrf Jqs6NkMYqm+KfjIuFJ830aWi8EvhRN3lQ8Dgl7GK4rTIffxEf+3N6LJO9ro6ZaP3 OwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 109463298409597406298782038262756452884 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AffirmTrust' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.affirmtrust.com/repository' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AffirmTrust Extended Validation CA - EV2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-28 15:48:30 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-10-27 15:48:29 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AffirmTrust' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AffirmTrust Validation Authority' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24547990533512803820198958722433153989812715420418492746524147889681932559031103484451588598643857444343839563691821076271666631181979101319628354898102008570741710312651343557296179302122876982465885228173549224293686635540664607100293246312963235578199913920700168283296240903758247648511485690029891825227177005268789579697105651864682383116405894399107724665410324193143893646698670781947733674221004658867078725325655633277383780499738033792741346760910636684142710763304467300528050604402328959779936471037911548549164444405232607991928431222447902181322329668841009217771329181773817483675194581977204556822331 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 00cca1fb66c340963555de018604c40585774190 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 737c9a38683c517c4108fea11f2a1eb461dbcd3c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits) 0780 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.9 (ocspSigning) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1.5 (ocspNoCheck) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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