*.iaea.org
- International Atomic Energy Agency -
Issued by Thawte Premium Server CA
About this certificate
This digital certificate with serial number 22:39:df:46:b4:8f:93:d6:0e:0b:12:c8:32:e2:c1:32 was issued on by Thawte Consulting cc.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
International Atomic Energy Agency
Organization:
International Atomic Energy Agency
Organization unit: IAEA
Organization unit: IAEA
State / Province:
Vienna
Locality: Vienna
Country: AT
Locality: Vienna
Country: AT
Thawte Consulting cc
Organization:
Thawte Consulting cc
Organization unit: Certification Services Division
Organization unit: Certification Services Division
State / Province:
Western Cape
Locality: Cape Town
Country: ZA
Locality: Cape Town
Country: ZA
This certificate has expire since
Certificate Details
Serial Number (hex): 22:39:df:46:b4:8f:93:d6:0e:0b:12:c8:32:e2:c1:32Serial Number (int): 45494241356817491471098991271875887410
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId:
Fingerprint (sha1): 39:78:60:26:af:39:82:19:e9:c5:39:d6:16:b7:c1:4c:84:b7:66:c6
Fingerprint (sha256): 4b:68:21:5e:9f:df:18:d0:8b:13:ef:e6:62:e6:35:97:c6:f3:b9:1b:f9:55:79:3a:76:d5:de:72:cc:7d:e4:84
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://crl.thawte.com/ThawtePremiumServerCA.crl
Check the revocation status for certificate *.iaea.org
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.iaea.org
Public Key Algorithm
RSA
Key Size
1024
Signature Algorithm
SHA1 with RSA
Key Usage
Extended Key Usages
Server Authentication
Client Authentication
Extensions
4 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name iaea.org
(limited to 100 certificates)
*.iaea.org
iaeachallenge.org
ssl6418.cloudflare.com
imgm.iaea.org
ssl440680.cloudflaressl.com
iaeachallenge.org
vc.iaea.org
www.iaea.org
ssl440681.cloudflaressl.com
cnmdm.nomad.iaea.org
countryfiles.iaea.org
*.iaea.org
imgm.iaea.org
plms-nkm.iaea.org
ivetnet.iaea.org
ssl320268.cloudflaressl.com
iaeachallenge.org
libenc.iaea.org
ssl6418.cloudflare.com
taleo.iaea.org
conferences.iaea.org
lync.iaea.org
www-nds.iaea.org
*.iaea.org
ssl6418.cloudflare.com
*.iaea.org
test.iaea.org
mdm.nomad.iaea.org
sni.cloudflaressl.com
*.iaea.org
auth.iaea.org
*.iaea.org
hybrid.iaea.org
challenge.iaea.org
cnmdm.nomad.iaea.org
ssl748010.cloudflaressl.com
vc.iaea.org
elearning.iaea.org
*.*.iaea.org
test.iaea.org
sbb.iaea.org
libcat.iaea.org
*.iaea.org
segmdm1.nomad.iaea.org
email.iaea.org
taleo.iaea.org
conferences.iaea.org
msg.iaea.org
cnmdm.nomad.iaea.org
ssl440680.cloudflaressl.com
atoms.iaea.org
ssl440681.cloudflaressl.com
auth.iaea.org
cnmdm.nomad.iaea.org
ssl440682.cloudflaressl.com
conferences.iaea.org
ssl440681.cloudflaressl.com
share.iaea.org
lync-web.iaea.org
www-amdis.iaea.org
www.iaea.org
libenc.iaea.org
mdm.nomad.iaea.org
msg.iaea.org
personnel.iaea.org
e501.iaea.org
*.iaea.org
iec-vcse.iaea.org
ssl440681.cloudflaressl.com
sgmdm.iaea.org
iaeachallenge.org
conferences.iaea.org
cnmdm.nomad.iaea.org
guest2.iaea.org
conferences.iaea.org
www-nds.iaea.org
libenc-ext.iaea.org
ssl6418.cloudflare.com
countryprofiles.iaea.org
hybrid.iaea.org
www-amdis.iaea.org
email.iaea.org
lync-web.iaea.org
usie-connect.iaea.org
test.iaea.org
imgm.iaea.org
data.iaea.org
iaeachallenge.org
www-nds.iaea.org
*.iaea.org
sni.cloudflaressl.com
www-nds.iaea.org
data.iaea.org
lync-web.iaea.org
*.iaea.org
sni.cloudflaressl.com
libenc.iaea.org
segmdm1.nomad.iaea.org
ssl320270.cloudflaressl.com
libcat.iaea.org
iaeachallenge.org
ssl6418.cloudflare.com
imgm.iaea.org
ssl440680.cloudflaressl.com
iaeachallenge.org
vc.iaea.org
www.iaea.org
ssl440681.cloudflaressl.com
cnmdm.nomad.iaea.org
countryfiles.iaea.org
*.iaea.org
imgm.iaea.org
plms-nkm.iaea.org
ivetnet.iaea.org
ssl320268.cloudflaressl.com
iaeachallenge.org
libenc.iaea.org
ssl6418.cloudflare.com
taleo.iaea.org
conferences.iaea.org
lync.iaea.org
www-nds.iaea.org
*.iaea.org
ssl6418.cloudflare.com
*.iaea.org
test.iaea.org
mdm.nomad.iaea.org
sni.cloudflaressl.com
*.iaea.org
auth.iaea.org
*.iaea.org
hybrid.iaea.org
challenge.iaea.org
cnmdm.nomad.iaea.org
ssl748010.cloudflaressl.com
vc.iaea.org
elearning.iaea.org
*.*.iaea.org
test.iaea.org
sbb.iaea.org
libcat.iaea.org
*.iaea.org
segmdm1.nomad.iaea.org
email.iaea.org
taleo.iaea.org
conferences.iaea.org
msg.iaea.org
cnmdm.nomad.iaea.org
ssl440680.cloudflaressl.com
atoms.iaea.org
ssl440681.cloudflaressl.com
auth.iaea.org
cnmdm.nomad.iaea.org
ssl440682.cloudflaressl.com
conferences.iaea.org
ssl440681.cloudflaressl.com
share.iaea.org
lync-web.iaea.org
www-amdis.iaea.org
www.iaea.org
libenc.iaea.org
mdm.nomad.iaea.org
msg.iaea.org
personnel.iaea.org
e501.iaea.org
*.iaea.org
iec-vcse.iaea.org
ssl440681.cloudflaressl.com
sgmdm.iaea.org
iaeachallenge.org
conferences.iaea.org
cnmdm.nomad.iaea.org
guest2.iaea.org
conferences.iaea.org
www-nds.iaea.org
libenc-ext.iaea.org
ssl6418.cloudflare.com
countryprofiles.iaea.org
hybrid.iaea.org
www-amdis.iaea.org
email.iaea.org
lync-web.iaea.org
usie-connect.iaea.org
test.iaea.org
imgm.iaea.org
data.iaea.org
iaeachallenge.org
www-nds.iaea.org
*.iaea.org
sni.cloudflaressl.com
www-nds.iaea.org
data.iaea.org
lync-web.iaea.org
*.iaea.org
sni.cloudflaressl.com
libenc.iaea.org
segmdm1.nomad.iaea.org
ssl320270.cloudflaressl.com
libcat.iaea.org
Certificate
The complete raw certificate details for *.iaea.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIDfDCCAuWgAwIBAgIQIjnfRrSPk9YOCxLIMuLBMjANBgkqhkiG9w0BAQUFADCB zjELMAkGA1UEBhMCWkExFTATBgNVBAgTDFdlc3Rlcm4gQ2FwZTESMBAGA1UEBxMJ Q2FwZSBUb3duMR0wGwYDVQQKExRUaGF3dGUgQ29uc3VsdGluZyBjYzEoMCYGA1UE CxMfQ2VydGlmaWNhdGlvbiBTZXJ2aWNlcyBEaXZpc2lvbjEhMB8GA1UEAxMYVGhh d3RlIFByZW1pdW0gU2VydmVyIENBMSgwJgYJKoZIhvcNAQkBFhlwcmVtaXVtLXNl cnZlckB0aGF3dGUuY29tMB4XDTA4MDEwOTEyNDI1OFoXDTA5MDEwMTA5NDUyMVow gYAxCzAJBgNVBAYTAkFUMQ8wDQYDVQQIEwZWaWVubmExDzANBgNVBAcTBlZpZW5u YTErMCkGA1UEChMiSW50ZXJuYXRpb25hbCBBdG9taWMgRW5lcmd5IEFnZW5jeTEN MAsGA1UECxMESUFFQTETMBEGA1UEAwwKKi5pYWVhLm9yZzCBnzANBgkqhkiG9w0B AQEFAAOBjQAwgYkCgYEApeeOk9DyUOplyAwSKzUO7FpMymqZpKPyuQ8waEu7Lulk CEcuzfhR17Rasa+TPwzX/qf6rHBV1JymmIQ+SNYCFjtBDnOahcbd7NJBZZNY+WbI 6eMj+VRXg1PHo5yAfEZDBQwpU463AS9QA7FGljbK4BoTiBg8E+gExHrM/g0z3jEC AwEAAaOBpjCBozAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwQAYDVR0f BDkwNzA1oDOgMYYvaHR0cDovL2NybC50aGF3dGUuY29tL1RoYXd0ZVByZW1pdW1T ZXJ2ZXJDQS5jcmwwMgYIKwYBBQUHAQEEJjAkMCIGCCsGAQUFBzABhhZodHRwOi8v b2NzcC50aGF3dGUuY29tMAwGA1UdEwEB/wQCMAAwDQYJKoZIhvcNAQEFBQADgYEA XC5edoQo2LA36Ehnnsg/4lWjE1j4VipXcAiUM/sADC5D4anCIQMaZnNqExrf++51 R6IgbZCGIfC7zBv8yuxFFuJKZdwfr64L40h7yM9L3pVCysexrFhcfsiarQMURGBX r9hFMKzLJFQxdmd2FrYeg0dz0oS91aURyIrAMJ4cJsY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCl546T0PJQ6mXIDBIrNQ7sWkzK apmko/K5DzBoS7su6WQIRy7N+FHXtFqxr5M/DNf+p/qscFXUnKaYhD5I1gIWO0EO c5qFxt3s0kFlk1j5Zsjp4yP5VFeDU8ejnIB8RkMFDClTjrcBL1ADsUaWNsrgGhOI GDwT6ATEesz+DTPeMQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 45494241356817491471098991271875887410 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Western Cape' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Cape Town' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte Consulting cc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Certification Services Division' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte Premium Server CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2008-01-09 12:42:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2009-01-01 09:45:21 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'AT' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Vienna' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Vienna' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'International Atomic Energy Agency' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IAEA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.iaea.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1120 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 116502115392056512138824465514277428592394411387107093188243248747473800175252848598468077797869885162842993705014201994826021182129216383705962071170202484464499904678654030387391421795832779390907266506530393372394598698820531325962630314077753403480948853837439944332520211217571751373545619622039563525681 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (57 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.thawte.com/ThawtePremiumServerCA.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (1024 bits) 005c2e5e768428d8b037e848679ec83fe255a31358f8562a5770089433fb000c2e43e1a9c221031a66736a131adffbee7547a2206d908621f0bbcc1bfccaec4516e24a65dc1fafae0be3487bc8cf4bde9542cac7b1ac585c7ec89aad0314446057afd84530accb24543176677616b61e834773d284bdd5a511c88ac0309e1c26c6