webmail.casselsbrock.com
- Cassels Brock & Blackwell LLP -
Issued by
About this certificate
This digital certificate with serial number 13:c2:3a was issued on by Equifax.
With 4 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- KeyUsage [ContentCommitment DataEncipherment DigitalSignature KeyEncipherment] (00001111) inconsistent with multiple purpose ExtKeyUsage [clientAuth serverAuth] The certificate MUST only be used for a purpose consistent with both key usage extension and extended key usage extension. (RFC 5280, Section 4.2.1.12.)
Cassels Brock & Blackwell LLP
Company registration number:
NmF33PyyYNMkM2txRjP6g2T0A7VBAdcK
Organization: Cassels Brock & Blackwell LLP
Organization unit: Information Technology
Organization: Cassels Brock & Blackwell LLP
Organization unit: Information Technology
State / Province:
Ontario
Locality: Toronto
Country: CA
Locality: Toronto
Country: CA
Equifax
Organization:
Equifax
Organization unit: Equifax Secure Certificate Authority
Organization unit: Equifax Secure Certificate Authority
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 13:c2:3aSerial Number (int): 1294906
Serial Number lenght: 21 bits, 3 octets
SubjectKeyId: 14:7e:cb:98:0f:c8:43:1f:49:e6:5a:0c:58:92:83:a8:86:90:91:be
AuthorityKeyId: 48:e6:68:f9:2b:d2:b2:95:d7:47:d8:23:20:10:4f:33:98:90:9f:d4
Fingerprint (sha1): 00:57:77:68:2c:25:09:3b:8b:da:df:50:cb:3c:e9:5e:f6:09:46:8c
Fingerprint (sha256): 58:7d:33:89:c0:69:94:72:bc:e0:a9:ac:74:75:77:79:3a:5d:c6:b2:b1:44:3d:64:f9:4e:9d:80:35:66:b2:51
Revocation information
CRL Distribution Point: http://crl.geotrust.com/crls/secureca.crlCheck the revocation status for certificate webmail.casselsbrock.com
4
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for webmail.casselsbrock.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Content Commitment
Key Encipherment
Data Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
6 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
autodiscover.casselsbrock.com
trcas01.casselsbrock.lan
secure.casselsbrock.com
webmail.casselsbrock.com
trcas01.casselsbrock.lan
secure.casselsbrock.com
webmail.casselsbrock.com
Other certificates including the domain name casselsbrock.com
(limited to 100 certificates)
sync.casselsbrock.com
workfolders.casselsbrock.com
*.casselsbrock.com
law.casselsbrock.com
info.casselsbrock.com
webmail.casselsbrock.com
cbbxenapp.casselsbrock.com
citrix.casselsbrock.com
law.casselsbrock.com
adfs.casselsbrock.com
casselsbrock.com
adfs.casselsbrock.com
subscriptions.casselsbrock.com
subscriptions.casselsbrock.com
*.casselsbrock.com
law.casselsbrock.com
webmail.casselsbrock.com
secure.casselsbrock.com
law.casselsbrock.com
info.casselsbrock.com
webmail.casselsbrock.com
vpn.casselsbrock.com
citrix.casselsbrock.com
vpn.casselsbrock.com
law.casselsbrock.com
info.casselsbrock.com
portal.casselsbrock.com
law.casselsbrock.com
cbbxenapp.casselsbrock.com
webmail.casselsbrock.com
citrix.casselsbrock.com
law.casselsbrock.com
webmail.casselsbrock.com
da.casselsbrock.com
cbbxenapp.casselsbrock.com
interaction.casselsbrock.com
da.casselsbrock.com
subscriptions.casselsbrock.com
casselsbrock.com
mobile.casselsbrock.com
casselsbrock.com
subscriptions.casselsbrock.com
adfs.casselsbrock.com
webmail.casselsbrock.com
mobile.casselsbrock.com
casselsbrock.com
citrix.casselsbrock.com
subscriptions.casselsbrock.com
webmail.casselsbrock.com
workfolders.casselsbrock.com
citrix.casselsbrock.com
law.casselsbrock.com
webmail.casselsbrock.com
law.casselsbrock.com
citrix.casselsbrock.com
webmail.casselsbrock.com
law.casselsbrock.com
cbbxenapp.casselsbrock.com
cbbxenapp.casselsbrock.com
workfolders.casselsbrock.com
*.casselsbrock.com
law.casselsbrock.com
info.casselsbrock.com
webmail.casselsbrock.com
cbbxenapp.casselsbrock.com
citrix.casselsbrock.com
law.casselsbrock.com
adfs.casselsbrock.com
casselsbrock.com
adfs.casselsbrock.com
subscriptions.casselsbrock.com
subscriptions.casselsbrock.com
*.casselsbrock.com
law.casselsbrock.com
webmail.casselsbrock.com
secure.casselsbrock.com
law.casselsbrock.com
info.casselsbrock.com
webmail.casselsbrock.com
vpn.casselsbrock.com
citrix.casselsbrock.com
vpn.casselsbrock.com
law.casselsbrock.com
info.casselsbrock.com
portal.casselsbrock.com
law.casselsbrock.com
cbbxenapp.casselsbrock.com
webmail.casselsbrock.com
citrix.casselsbrock.com
law.casselsbrock.com
webmail.casselsbrock.com
da.casselsbrock.com
cbbxenapp.casselsbrock.com
interaction.casselsbrock.com
da.casselsbrock.com
subscriptions.casselsbrock.com
casselsbrock.com
mobile.casselsbrock.com
casselsbrock.com
subscriptions.casselsbrock.com
adfs.casselsbrock.com
webmail.casselsbrock.com
mobile.casselsbrock.com
casselsbrock.com
citrix.casselsbrock.com
subscriptions.casselsbrock.com
webmail.casselsbrock.com
workfolders.casselsbrock.com
citrix.casselsbrock.com
law.casselsbrock.com
webmail.casselsbrock.com
law.casselsbrock.com
citrix.casselsbrock.com
webmail.casselsbrock.com
law.casselsbrock.com
cbbxenapp.casselsbrock.com
cbbxenapp.casselsbrock.com
Certificate
The complete raw certificate details for webmail.casselsbrock.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEOzCCA6SgAwIBAgIDE8I6MA0GCSqGSIb3DQEBBQUAME4xCzAJBgNVBAYTAlVT MRAwDgYDVQQKEwdFcXVpZmF4MS0wKwYDVQQLEyRFcXVpZmF4IFNlY3VyZSBDZXJ0 aWZpY2F0ZSBBdXRob3JpdHkwHhcNMTAwNzA1MjE1OTM0WhcNMTIwNzA4MTIzODMz WjCByDEpMCcGA1UEBRMgTm1GMzNQeXlZTk1rTTJ0eFJqUDZnMlQwQTdWQkFkY0sx CzAJBgNVBAYTAkNBMRAwDgYDVQQIEwdPbnRhcmlvMRAwDgYDVQQHEwdUb3JvbnRv MSYwJAYDVQQKDB1DYXNzZWxzIEJyb2NrICYgQmxhY2t3ZWxsIExMUDEfMB0GA1UE CxMWSW5mb3JtYXRpb24gVGVjaG5vbG9neTEhMB8GA1UEAxMYd2VibWFpbC5jYXNz ZWxzYnJvY2suY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xkN eCyi9Z2b7RFkBDVE0yktR2QOUVXIos+feyAKe7Zz6inAPX4xGi/9+Q+rcQ+j1boC xN6JQolS/0Dj08wav1B+e6cKS/ZMoQaiAeJpNCZ0AMW/fB/Zj11ANuFw7HA2MTAL V5EMJH78dAZV/vmQSPIG1QqBfls2gWaR7oNdre82bolXr9ODD5ZG5Y4gkIdwJTBI lvya5Rcu83hGtFq97+BNZwu14lmY16D1VeXP3rVhmgj5/WwO51fqQgPP6CJp7nCG av//5/b/zka7cvJWuXYyDuJtbcBGMDH+ESOFiUY2xSiQT3wkQacU0CFbtAn9nJ60 JSS7CjgtTIkiQv7NTwIDAQABo4IBJjCCASIwHwYDVR0jBBgwFoAUSOZo+SvSspXX R9gjIBBPM5iQn9QwDgYDVR0PAQH/BAQDAgTwMB0GA1UdJQQWMBQGCCsGAQUFBwMB BggrBgEFBQcDAjB1BgNVHREEbjBsgh1hdXRvZGlzY292ZXIuY2Fzc2Vsc2Jyb2Nr LmNvbYIYdHJjYXMwMS5jYXNzZWxzYnJvY2subGFughdzZWN1cmUuY2Fzc2Vsc2Jy b2NrLmNvbYIYd2VibWFpbC5jYXNzZWxzYnJvY2suY29tMDoGA1UdHwQzMDEwL6At oCuGKWh0dHA6Ly9jcmwuZ2VvdHJ1c3QuY29tL2NybHMvc2VjdXJlY2EuY3JsMB0G A1UdDgQWBBQUfsuYD8hDH0nmWgxYkoOohpCRvjANBgkqhkiG9w0BAQUFAAOBgQAg DAVsZ9xpLoLbmlgaGHQmm5w7MiZW7wa64XkJSwHlaf4rhDkj1EVvCCrEUYMHKXuU KmvXlTOFhNr0OnolUsQRdsuBQrn47KONSuYMD3QT0QKOIv9dyT3ThWbukYxaiN+i EwGmlwlT3jZ4u2o5vG1GHiLLLldc5vN64Talog8+3g== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0xkNeCyi9Z2b7RFkBDVE 0yktR2QOUVXIos+feyAKe7Zz6inAPX4xGi/9+Q+rcQ+j1boCxN6JQolS/0Dj08wa v1B+e6cKS/ZMoQaiAeJpNCZ0AMW/fB/Zj11ANuFw7HA2MTALV5EMJH78dAZV/vmQ SPIG1QqBfls2gWaR7oNdre82bolXr9ODD5ZG5Y4gkIdwJTBIlvya5Rcu83hGtFq9 7+BNZwu14lmY16D1VeXP3rVhmgj5/WwO51fqQgPP6CJp7nCGav//5/b/zka7cvJW uXYyDuJtbcBGMDH+ESOFiUY2xSiQT3wkQacU0CFbtAn9nJ60JSS7CjgtTIkiQv7N TwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 1294906 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Equifax' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Equifax Secure Certificate Authority' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-07-05 21:59:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-07-08 12:38:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.5 (serialNumber) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'NmF33PyyYNMkM2txRjP6g2T0A7VBAdcK' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Ontario' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Toronto' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Cassels Brock & Blackwell LLP' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Information Technology' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'webmail.casselsbrock.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26648636252714066295373626338977894519456545128485108604567349531030025084653723738027340148323954209444651318684508704400819318496202354778033616384383551168573077516919701793741800075003135536696815331786406666075014321674302845561920078240918478380098926851222250524595195855422065310669625304031236752522061565777219394151813285581098274429032038520891124451984680226035120176804435481185305449734278238664310395291044049311557554406961442716492413513552730797013361185194043027221885394517789262673185647675428372753038252080572731518620858464219128422068858656246793819879704455646214785523882519270709845216591 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 48e668f92bd2b295d747d82320104f3398909fd4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4 bits) 04f0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (110 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'autodiscover.casselsbrock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trcas01.casselsbrock.lan' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'secure.casselsbrock.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.casselsbrock.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.geotrust.com/crls/secureca.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 147ecb980fc8431f49e65a0c589283a8869091be . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (1024 bits) 00200c056c67dc692e82db9a581a1874269b9c3b322656ef06bae179094b01e569fe2b843923d4456f082ac4518307297b942a6bd795338584daf43a7a2552c41176cb8142b9f8eca38d4ae60c0f7413d1028e22ff5dc93dd38566ee918c5a88dfa21301a6970953de3678bb6a39bc6d461e22cb2e575ce6f37ae136a5a20f3ede