secure.mazars.co.uk

- Mazars -

Issued by Thawte SSL CA

About this certificate

This digital certificate with serial number 34:58:d3:d7:ae:d0:88:7c:02:66:bf:9b:59:82:fa:80 was issued on by Thawte, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

Mazars

Organization: Mazars
Organization unit: Head Office
State / Province: London
Locality: London
Country: GB

Thawte, Inc.

Organization: Thawte, Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 34:58:d3:d7:ae:d0:88:7c:02:66:bf:9b:59:82:fa:80
Serial Number (int): 69581074580950494100405542841347144320
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId:
AuthorityKeyId:

Fingerprint (sha1): a5:9d:e7:69:9a:89:17:d1:a3:98:d3:9f:9f:e0:ba:a6:71:f6:d2:cd
Fingerprint (sha256): 53:6a:70:03:0f:f0:1f:93:97:88:cb:f5:af:31:f0:bd:cd:79:fd:d3:6a:0d:93:71:33:c0:43:a2:1c:54:2b:aa


Revocation information

OCSP Server: http://ocsp.thawte.com
CRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl

Check the revocation status for certificate secure.mazars.co.uk

0

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for secure.mazars.co.uk

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Extended Key Usages

Server Authentication
Client Authentication

Extensions

4 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names.

Other certificates including the domain name mazars.co.uk

(limited to 100 certificates)
mail.mazars.co.uk
forms.mazars.co.uk
*.mazars.co.uk
my.mazars.co.uk
www.mazars.nl
access01.mazars.co.uk
mail.mazars.co.uk
www.mazars.fr
graduates.mazars.co.uk
www.mazars.fr
pavpn.mazars.co.uk
investment.mazars.co.uk
schoolleavers.mazars.co.uk
*.mazars.co.uk
secure.mazars.co.uk
investment.mazars.co.uk
mail.mazars.co.uk
www.mazars.fr
investment.mazars.co.uk
mazars-proposals.co.uk
jobs.mazars.co.uk
www.mazars.fr
investment.mazars.co.uk
investment.mazars.co.uk
Citrix.mazars.co.uk
my.mazars.co.uk
secure.mazars.co.uk
mail.mazars.co.uk
mvd.mazars.co.uk
investment.mazars.co.uk
alumni.mazars.co.uk
access01.mazars.co.uk
Csg.mazars.co.uk
www.mazars.fr
graduates.mazars.co.uk
www.mazars.fr
*.mazars.co.uk
sftp.mazars.co.uk
investment.mazars.co.uk
webmail.mazars.co.uk
lyweb01.mazars.co.uk
*.mazars.co.uk
www.mazars.com
access01.mazars.co.uk
pavpn.mazars.co.uk
my.mazars.co.uk
access02.mazars.co.uk
www.mazars.fr
schoolleavers.mazars.co.uk
www.mazars.fr
mazars.co.uk
www.mazars.fr
*.mazars.co.uk
lyweb01.mazars.co.uk
access01.mazars.co.uk

Certificate

The complete raw certificate details for secure.mazars.co.uk in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3waTktJlSuO1HiwQmW3R
xZ5ToifzIInO1+2+P6CwWZjFgS49fdBbixUe2jo46eg+7WqEPpT93B+3bogHVC8b
6t2CUWkZZwmQ6IIDZCIhDMTO3ztTJmcbEaTDG6fi+cbi3pjAgsYysp0J9Q5Wc2tu
nXzKStsC4WgblOHilVa5eZuQNDRJdwM8dVeGGk5HrSPc/LrodkmUuhcDLlt08vpL
KUP90vOaEeNqWZR7QEKFEi120aDkognOEoegqz9QLWBKS5Bj/crTsJRm0fjNAODP
5N1ZnsyK4+RPs0+M6DbeMxrGWHIZl9FeThMoAU37J2FntzXNESMEU3ujCLVlGrpP
5QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 69581074580950494100405542841347144320
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-01-17 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-04-17 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'London'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Mazars'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Head Office'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'secure.mazars.co.uk'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28154384980267597915221170298239432549518063198631525380249589523770003643827820695834812424971044690746530186077593045198307756413969507743332423248283341515747736734800677904656440114307055287114200412873918820187759419804764623070789025771197572185021110767779523176099485469079832694798600734077792107255235096497384367805429621038173870128444851055745912050010577247361396371704255453948232087822307590287208770051131564199543298595883262096802802108787088701114131362558696685903921140032072290973536896957662457654664060600487968852962699484382069151839369542285510855071657465517048381534578653979781325541349
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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