www.gemnova.at

Issued by thawte DV SSL SHA256 CA

About this certificate

This digital certificate with serial number 62:7b:85:95:dc:a6:74:88:15:73:bb:68:e0:50:2c:ed was issued on by thawte, Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

Certificate Subject

CN=www.gemnova.at

thawte, Inc.

Organization: thawte, Inc.
Organization unit: Domain Validated SSL
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 62:7b:85:95:dc:a6:74:88:15:73:bb:68:e0:50:2c:ed
Serial Number (int): 130905705534282973792001965000466902253
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: 7d:29:31:2f:c1:1e:6e:ae:31:05:6a:b3:eb:1c:cd:a9:dd:ae:80:9a

Fingerprint (sha1): a2:1c:55:7d:a4:a2:64:31:14:18:89:70:9c:d3:64:d8:8f:9e:66:a2
Fingerprint (sha256): 58:b0:ef:1a:32:40:f6:98:d5:1c:7e:ef:24:66:48:16:8b:56:16:c7:09:2f:29:88:0a:48:1a:89:52:09:9d:90

Issuing Certificate URL: http://tm.symcb.com/tm.crt

Revocation information

OCSP Server: http://tm.symcd.com
CRL Distribution Point: http://tm.symcb.com/tm.crl

Check the revocation status for certificate www.gemnova.at

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.gemnova.at

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.gemnova.at
gemnova.at

Other certificates including the domain name gemnova.at

(limited to 100 certificates)
www.gemnova.at
www.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
www.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
gemnova.at
seminare.gemnova.at
cliq.profitroom.com
seminare.gemnova.at
www.gemnova.at
www.gemnova.at
ferienbetreuung.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
gemnova.at
gemnova.at
www.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
chat.ethos.ltd
cliq.profitroom.com
cliq.profitroom.com
chat.bamero.de
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
nextcloud.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
www.gemnova.at
www.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
ferienbetreuung.gemnova.at
ferienbetreuung.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
chat.podmanagement.co.uk
cliq.profitroom.com
chat.zukunft-digitale-bildung.de
wiki.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
wiki.gemnova.at
www.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
cliq.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
www.gemnova.at
chat.ethos.ltd
cliq.profitroom.com
akademie.gemnova.at
cliq.profitroom.com
server.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
www.gemnova.at
chat.podmanagement.co.uk
www.gemnova.at
cliq.profitroom.com
server.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
wiki.gemnova.at
cliq.profitroom.com
cliq.gemnova.at
ferienbetreuung.gemnova.at
cliq.profitroom.com
www.gemnova.at
seminare.gemnova.at
cliq.profitroom.com
chat.bamero.de
meine.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
chat.mobility-bi.com
www.gemnova.at
chat.mobility-bi.com
chat.zukunft-digitale-bildung.de
cliq.profitroom.com
collabora.gemnova.at
cliq.profitroom.com
cliq.profitroom.com
cliq.profitroom.com
www.gemnova.at

Certificate

The complete raw certificate details for www.gemnova.at in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzpl1y6wek+irObTuQjKe
TgV63K+/TLYb+mL5e6yAQPU+++LjZfNg0F0nYhtNk1apa0F3DlxrHaCtfB/SlmkE
1ps6Es9GShLS+1G7bg29rJnxW9OKmN9KADAcUDxtkdTjNCc2dMk9UFwSRd4uX8Vl
3hQUzpdqMZUq6y6i3ZYvOERP4Qx/tVAZKSVLP9r7DxmWyv0RvVUNjhKvbNCGylQ0
TbQfLnrEJxaGMqAhiQbWtZsCLg+BJojNGaJHHsllIlKJCSJxwfxc0lrhcCn1+dUn
Wvp7+cUjRAAqnARhhW5MkJpOLNByhA8uq07XICgpxhcIYTwOuw9n7buVWnrKol7F
XwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 130905705534282973792001965000466902253
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte DV SSL SHA256 CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-14 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-08-13 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.gemnova.at'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26080764837979488751491753031173301292556207176903155083439218221661320023278255792700318005345262538691053678878168844536987097815377189416670732795029540628258011068207460034688634051449563389028771146866076314426436341164851350032710547998305121587485267507783387143724823704351254710544185301745826717986537687951031392097095597820142758842840909766164655644617267077028036014649985646370207150530677513893256905582630355577199665351863277628657632136276788119511089424293186063562542397969077641273456937510234861363071727396590959313532701118244862069041175352473871648118529414967171536072979034400210145953119
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gemnova.at'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gemnova.at'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tm.symcb.com/tm.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7d29312fc11e6eae31056ab3eb1ccda9ddae809a
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tm.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tm.symcb.com/tm.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (487 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (483 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00a1884c828996e49320108bf3a5ef532f0d4a4f5a087392361d660f84eebb13e817eeab8188c9c6521e92cc99cd7dc80f4cfff550d2f65a704dcfc6be1fc5108c1a391dc0797a10f2279d972b51a155ccf808be41bd71e68e10ac15bd5a67b1d6f81be4ea884804d2d4a0a290c53af145b487eb5f9aea12a6331873bd9abc33ff9d0b39f08f6ca018358371c494051dfbad84c42adb3de637774a60a0242b9f2ef3657ed079253ae90fa104f391afc186e44bfbf65f37456fbae7846e8dadd9d6549927dbcea3c58f87bf96bf8168abc8d57edaacb34ca9c2a84f8d90d8fc9cd10fe0b77e464c972b62e2d2859de458394096058d4ac00e8a54fdb4b8f5288e4e