*.sharepoint.com

- Microsoft Corporation -

Issued by DigiCert Cloud Services CA-1

About this certificate

This digital certificate with serial number 05:a6:68:20:86:81:ca:60:5c:d4:5a:13:03:64:91:87 was issued on by DigiCert Inc.

With 5 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Microsoft Corporation

Organization: Microsoft Corporation
State / Province: Washington
Locality: Redmond
Country: US

DigiCert Inc

Organization: DigiCert Inc
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 05:a6:68:20:86:81:ca:60:5c:d4:5a:13:03:64:91:87
Serial Number (int): 7510173204969239423434558700960125319
Serial Number lenght: 123 bits, 16 octets

SubjectKeyId: ab:69:cb:bf:75:d1:02:b5:51:cc:c9:fe:f4:a7:7c:b3:c0:23:2e:76
AuthorityKeyId: dd:51:d0:a2:31:73:a9:73:ae:8f:b4:01:7e:5d:8c:57:cb:9f:f0:f7

Fingerprint (sha1): 71:98:50:42:06:0d:9f:91:af:06:09:ed:8c:b4:76:11:2f:9e:2e:28
Fingerprint (sha256): 4c:c0:39:75:db:30:d3:e4:72:74:7e:b3:61:a4:7f:4d:61:08:31:9c:92:36:ce:25:d4:2a:41:6c:ea:6d:35:b2

Issuing Certificate URL: http://cacerts.digicert.com/DigiCertCloudServicesCA-1.crt

Revocation information

OCSP Server: http://ocspx.digicert.com
CRL Distribution Point: http://crl3.digicert.com/DigiCertCloudServicesCA-1-g1.crl
CRL Distribution Point: http://crl4.digicert.com/DigiCertCloudServicesCA-1-g1.crl

Check the revocation status for certificate *.sharepoint.com

5

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.sharepoint.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.sharepoint.com
*.sharepoint.apac.microsoftonline.com
*.sharepoint.emea.microsoftonline.com
*.sharepoint.microsoftonline.com
*.gr.global.aa-rt.sharepoint.com

Other certificates including the domain name sharepoint.com

(limited to 100 certificates)
*.sharepoint.com
*.sharepoint.com
*.sharepoint.com
*.sharepoint.com
*.sharepoint.com
spoprod.cma.sharepoint.com
eopgov.sharepoint.com
csharp.net
csharp.net
svc.ms
*.sharepoint.com
csharp.net
csharp.net
csharp.net
*.sharepoint.com
eopgov.sharepoint.com
*.sharepoint.com
*.sharepoint.com
spoprod.cma.sharepoint.com
*.sharepoint.com
test.sharepoint.com
*.sharepoint.com
csharp.net
*.sharepoint.com
csharp.net
*.sharepointmktgv7.microsoft.com
*.sharepoint.com
csharp.net
hrwebdev.azurewebsites.net
csharp.net
spoauditingcc-prodbubble.yloppe.sharepoint.com
csharp.net
csharp.net
csharp.net
*.sharepoint.com
odsp.cbservice.edog.sharepoint.com
csharp.net
svc.ms
my.microsoft.com
gfedogfood.cma.sharepoint.com
csharp.net
*.sharepoint.com
spaces.aexp.com
hpenterprise-my.sharepoint.com
test.sharepoint.com
csharp.net
csharp.net
csharp.net
my.microsoft.com
*.sharepoint.com
sharepointmktgv5.microsoft.com
my.microsoft.com
csharp.net
csharp.net
csharp.net
csharp.net
*.sharepoint.com
csharp.net
csharp.net
*.sharepoint.com
csharp.net
csharp.net
*.sharepoint.com
*.sharepoint.com
microsoft.sharepoint.com
csctestportal-my.sharepoint.com
cscportal.sharepoint.com
*.sharepoint.com
csharp.net
*.sharepoint.com
*.sharepoint.com
csharp.net
csharp.net
*.sharepoint.com
csharp.net
csharp.net
spoprod.cma.sharepoint.com
csharp.net
*.sharepoint.com
csharp.net
csharp.net
csharp.net
csharp.net
*.sharepoint.com
*.sharepoint.com
csharp.net
csharp.net
csharp.net
csharp.net
*.sharepoint.com
csharp.net
*.spoppe.com
csharp.net
*.sharepoint.com
*.sharepoint.com
csharp.net
*.sharepoint.com
*.svc.ms
*.sharepoint.com
*.sharepoint.com

Certificate

The complete raw certificate details for *.sharepoint.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1KPqNIO4/FyZMtv/FX6a
Uo4q3SRHtHDOyPp+VcTtD6NA5Cv1QginkufgXVg1xEgo9MDEgq30AzmZHXKYurFa
aDq4IVkwpxataxqs7/C6QADHeBf3JdVCx/jmV9Ddfvn4mVrgiwqWoI42JWjbL1vT
DVm1YiZMGxkFwYyEBZHnZzDw131wIKLaH6IGy/fvyWH6vNTfC5J2Y96bPHFiHu3h
+lIHyGmua+NDSoSdTwRnj54fcPQHVkyGNgW34lh/1Lzfwzj/MvxwfrL3KLDO+hQV
Nr9tgpHGL/vXVt+GToDmI9HhaX167D1h8NwPVVIp4+bPP6ELgTaj4DXZHPBg3STi
DQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 7510173204969239423434558700960125319
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Inc'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert Cloud Services CA-1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-10-07 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-10-06 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Washington'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Redmond'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Microsoft Corporation'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.sharepoint.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26843350084702488126201455717275944005477061251844987804728766584393165518655009753683497904946207432058875082108757993946861983460131180595242845200305000108760675442934461304897142143192419995666245150425171604659530673476343941960585128223612220394756550643481109122661870313953341163760628200078432336598538978109503357601702822075361565329019987867306135445782407586391644112885348974529992648703877005663471375840930307232199982300585316698780027482194392225448983405491153646357970968741626743664777686027754184361379177331680213725888725434327316652719210361149641734518392096504265730071377161314673893892621
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName dd51d0a23173a973ae8fb4017e5d8c57cb9ff0f7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ab69cbbf75d102b551ccc9fef4a77cb3c0232e76
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (167 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sharepoint.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sharepoint.apac.microsoftonline.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sharepoint.emea.microsoftonline.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sharepoint.microsoftonline.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.gr.global.aa-rt.sharepoint.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (133 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl3.digicert.com/DigiCertCloudServicesCA-1-g1.crl'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl4.digicert.com/DigiCertCloudServicesCA-1-g1.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (112 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocspx.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/DigiCertCloudServicesCA-1.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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