secure.mazars.co.uk
- Mazars -
Issued by Thawte SSL CA
About this certificate
This digital certificate with serial number 34:58:d3:d7:ae:d0:88:7c:02:66:bf:9b:59:82:fa:80 was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Mazars
Organization:
Mazars
Organization unit: Head Office
Organization unit: Head Office
State / Province:
London
Locality: London
Country: GB
Locality: London
Country: GB
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 34:58:d3:d7:ae:d0:88:7c:02:66:bf:9b:59:82:fa:80Serial Number (int): 69581074580950494100405542841347144320
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId:
Fingerprint (sha1): a5:9d:e7:69:9a:89:17:d1:a3:98:d3:9f:9f:e0:ba:a6:71:f6:d2:cd
Fingerprint (sha256): 53:6a:70:03:0f:f0:1f:93:97:88:cb:f5:af:31:f0:bd:cd:79:fd:d3:6a:0d:93:71:33:c0:43:a2:1c:54:2b:aa
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl
Check the revocation status for certificate secure.mazars.co.uk
0
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for secure.mazars.co.uk
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Extended Key Usages
Server Authentication
Client Authentication
Extensions
4 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
This certificate doesn't contain any subject alternative names.
Other certificates including the domain name mazars.co.uk
(limited to 100 certificates)
mail.mazars.co.uk
forms.mazars.co.uk
*.mazars.co.uk
my.mazars.co.uk
www.mazars.nl
access01.mazars.co.uk
mail.mazars.co.uk
www.mazars.fr
graduates.mazars.co.uk
www.mazars.fr
pavpn.mazars.co.uk
investment.mazars.co.uk
schoolleavers.mazars.co.uk
*.mazars.co.uk
secure.mazars.co.uk
investment.mazars.co.uk
mail.mazars.co.uk
www.mazars.fr
investment.mazars.co.uk
mazars-proposals.co.uk
jobs.mazars.co.uk
www.mazars.fr
investment.mazars.co.uk
investment.mazars.co.uk
Citrix.mazars.co.uk
my.mazars.co.uk
secure.mazars.co.uk
mail.mazars.co.uk
mvd.mazars.co.uk
investment.mazars.co.uk
alumni.mazars.co.uk
access01.mazars.co.uk
Csg.mazars.co.uk
www.mazars.fr
graduates.mazars.co.uk
www.mazars.fr
*.mazars.co.uk
sftp.mazars.co.uk
investment.mazars.co.uk
webmail.mazars.co.uk
lyweb01.mazars.co.uk
*.mazars.co.uk
www.mazars.com
access01.mazars.co.uk
pavpn.mazars.co.uk
my.mazars.co.uk
access02.mazars.co.uk
www.mazars.fr
schoolleavers.mazars.co.uk
www.mazars.fr
mazars.co.uk
www.mazars.fr
*.mazars.co.uk
lyweb01.mazars.co.uk
access01.mazars.co.uk
forms.mazars.co.uk
*.mazars.co.uk
my.mazars.co.uk
www.mazars.nl
access01.mazars.co.uk
mail.mazars.co.uk
www.mazars.fr
graduates.mazars.co.uk
www.mazars.fr
pavpn.mazars.co.uk
investment.mazars.co.uk
schoolleavers.mazars.co.uk
*.mazars.co.uk
secure.mazars.co.uk
investment.mazars.co.uk
mail.mazars.co.uk
www.mazars.fr
investment.mazars.co.uk
mazars-proposals.co.uk
jobs.mazars.co.uk
www.mazars.fr
investment.mazars.co.uk
investment.mazars.co.uk
Citrix.mazars.co.uk
my.mazars.co.uk
secure.mazars.co.uk
mail.mazars.co.uk
mvd.mazars.co.uk
investment.mazars.co.uk
alumni.mazars.co.uk
access01.mazars.co.uk
Csg.mazars.co.uk
www.mazars.fr
graduates.mazars.co.uk
www.mazars.fr
*.mazars.co.uk
sftp.mazars.co.uk
investment.mazars.co.uk
webmail.mazars.co.uk
lyweb01.mazars.co.uk
*.mazars.co.uk
www.mazars.com
access01.mazars.co.uk
pavpn.mazars.co.uk
my.mazars.co.uk
access02.mazars.co.uk
www.mazars.fr
schoolleavers.mazars.co.uk
www.mazars.fr
mazars.co.uk
www.mazars.fr
*.mazars.co.uk
lyweb01.mazars.co.uk
access01.mazars.co.uk
Certificate
The complete raw certificate details for secure.mazars.co.uk in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIID2zCCAsOgAwIBAgIQNFjT167QiHwCZr+bWYL6gDANBgkqhkiG9w0BAQUFADA8 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRYwFAYDVQQDEw1U aGF3dGUgU1NMIENBMB4XDTEyMDExNzAwMDAwMFoXDTEzMDQxNzIzNTk1OVowdDEL MAkGA1UEBhMCR0IxDzANBgNVBAgTBkxvbmRvbjEPMA0GA1UEBxQGTG9uZG9uMQ8w DQYDVQQKFAZNYXphcnMxFDASBgNVBAsUC0hlYWQgT2ZmaWNlMRwwGgYDVQQDFBNz ZWN1cmUubWF6YXJzLmNvLnVrMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKC AQEA3waTktJlSuO1HiwQmW3RxZ5ToifzIInO1+2+P6CwWZjFgS49fdBbixUe2jo4 6eg+7WqEPpT93B+3bogHVC8b6t2CUWkZZwmQ6IIDZCIhDMTO3ztTJmcbEaTDG6fi +cbi3pjAgsYysp0J9Q5Wc2tunXzKStsC4WgblOHilVa5eZuQNDRJdwM8dVeGGk5H rSPc/LrodkmUuhcDLlt08vpLKUP90vOaEeNqWZR7QEKFEi120aDkognOEoegqz9Q LWBKS5Bj/crTsJRm0fjNAODP5N1ZnsyK4+RPs0+M6DbeMxrGWHIZl9FeThMoAU37 J2FntzXNESMEU3ujCLVlGrpP5QIDAQABo4GgMIGdMAwGA1UdEwEB/wQCMAAwOgYD VR0fBDMwMTAvoC2gK4YpaHR0cDovL3N2ci1vdi1jcmwudGhhd3RlLmNvbS9UaGF3 dGVPVi5jcmwwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMDIGCCsGAQUF BwEBBCYwJDAiBggrBgEFBQcwAYYWaHR0cDovL29jc3AudGhhd3RlLmNvbTANBgkq hkiG9w0BAQUFAAOCAQEALiSFBcDE6KAj0qXuH2+iLu8ERyxZiViVhmpDIG9iluuX Vlzt6Y5u1SSEa3vUHziVP3fI2RE2sv4eQJ5Iq3+E8vTMtoDH3pZ/LWKuhpZkq8RC R13GbGPX3B9MWlf3ABTRx9qGxS3wri/HRC7/u1wDcQnxEdve8vGXTnr6KEEwj/ky TMdgWEY+Hw5DKYtWnmj5caB7SmWr6lRzNqak4WLho0ORpY6za2jZE/mRbtBcZ0h2 e7ha8n3g6HJRRi9DB7+88GEhXMxfN2PorRld+gHN3IqtMN2FM2rT6oQryOOcLIKd cOFJlqwZHG5EL3Iwn1a8WzwfiJmR/m6YAX5ea7Km7w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3waTktJlSuO1HiwQmW3R xZ5ToifzIInO1+2+P6CwWZjFgS49fdBbixUe2jo46eg+7WqEPpT93B+3bogHVC8b 6t2CUWkZZwmQ6IIDZCIhDMTO3ztTJmcbEaTDG6fi+cbi3pjAgsYysp0J9Q5Wc2tu nXzKStsC4WgblOHilVa5eZuQNDRJdwM8dVeGGk5HrSPc/LrodkmUuhcDLlt08vpL KUP90vOaEeNqWZR7QEKFEi120aDkognOEoegqz9QLWBKS5Bj/crTsJRm0fjNAODP 5N1ZnsyK4+RPs0+M6DbeMxrGWHIZl9FeThMoAU37J2FntzXNESMEU3ujCLVlGrpP 5QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 69581074580950494100405542841347144320 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-01-17 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-04-17 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'London' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Mazars' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Head Office' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'secure.mazars.co.uk' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28154384980267597915221170298239432549518063198631525380249589523770003643827820695834812424971044690746530186077593045198307756413969507743332423248283341515747736734800677904656440114307055287114200412873918820187759419804764623070789025771197572185021110767779523176099485469079832694798600734077792107255235096497384367805429621038173870128444851055745912050010577247361396371704255453948232087822307590287208770051131564199543298595883262096802802108787088701114131362558696685903921140032072290973536896957662457654664060600487968852962699484382069151839369542285510855071657465517048381534578653979781325541349 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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