vote2017.itma.org.tw

Issued by cPanel, Inc. Certification Authority

About this certificate

This digital certificate with serial number b7:75:75:8d:8b:4b:99:cb:53:61:c6:7b:98:13:38:7b was issued on by cPanel, Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=vote2017.itma.org.tw

cPanel, Inc.

Organization: cPanel, Inc.
State / Province: TX
Locality: Houston
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): b7:75:75:8d:8b:4b:99:cb:53:61:c6:7b:98:13:38:7b
Serial Number (int): 243858606217292533405053251991547099259
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 6f:0a:3b:ff:11:96:75:e9:bc:a9:44:f1:bd:f9:a5:7d:4e:97:d8:f3
AuthorityKeyId: 7e:03:5a:65:41:6b:a7:7e:0a:e1:b8:9d:08:ea:1d:8e:1d:6a:c7:65

Fingerprint (sha1): 1d:20:e9:c4:58:cc:ac:e4:8e:2c:09:1e:31:1c:08:09:7e:4a:5b:32
Fingerprint (sha256): 59:88:d5:b9:c4:84:4a:f0:e5:1e:a0:d2:28:2a:c9:3c:69:b5:86:95:a4:7b:aa:73:45:50:91:d1:28:b0:33:15

Issuing Certificate URL: http://crt.comodoca.com/cPanelIncCertificationAuthority.crt

Revocation information

OCSP Server: http://ocsp.comodoca.com
CRL Distribution Point: http://crl.comodoca.com/cPanelIncCertificationAuthority.crl

Check the revocation status for certificate vote2017.itma.org.tw

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for vote2017.itma.org.tw

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

vote2017.itma.org.tw
www.vote2017.itma.org.tw

Other certificates including the domain name itma.org.tw

(limited to 100 certificates)
itma.org.tw
photo.itma.org.tw
vote2017.itma.org.tw
vote2017.itma.org.tw
itma.org.tw
test.itma.org.tw
itma.org.tw
vote2019.itma.org.tw
vote2015.itma.org.tw
itma.org.tw
vote2019.itma.org.tw
vote2015.itma.org.tw
itma.org.tw
vote2015.itma.org.tw
itma.org.tw
vote2019.itma.org.tw
vote2013.itma.org.tw
photo.itma.org.tw
itma.org.tw
vote2013.itma.org.tw
vote2017.itma.org.tw
test.itma.org.tw
itmaorg.mico.com.tw
vote2017.itma.org.tw
itma.org.tw
vote2015.itma.org.tw
photo.itma.org.tw
vote2017.itma.org.tw
itma.org.tw
vote2019.itma.org.tw
vote2013.itma.org.tw
itma.org.tw
vote2015.itma.org.tw
itma.org.tw
vote2019.itma.org.tw
itma.org.tw
itma.org.tw
vote2013.itma.org.tw
test.itma.org.tw
itma.org.tw
photo.itma.org.tw
itma.org.tw
photo.itma.org.tw
itma.org.tw
vote2013.itma.org.tw
test.itma.org.tw
vote2019.itma.org.tw
itma.org.tw
itma.org.tw
photo.itma.org.tw
vote2013.itma.org.tw
itma.org.tw
vote2017.itma.org.tw
vote2015.itma.org.tw
itma.org.tw
itma.org.tw

Certificate

The complete raw certificate details for vote2017.itma.org.tw in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDq7ZDOAby+kWum3z5FB
EWsrJSKNLAJDADBZ7QABrQj2gp3L0ZTfJCcF7G0do5Y1L8m1s5X9oFjvvDVzy4Wy
e2hHTZQAmwpdhRs8USZ8huZfUJwLS5Ne1WCv7lgVLB2O2X+sEvaEjDPd6HuphuVW
g64uZJaHNUDnQ5MyFvx0LCJ9Ce6JgFLgctFfb4oRWYHCSE7aIL/glMXNs+bE6eug
SbHSARrBP41KEzhX1Mb8DsG/MHF+TqBi2yBsjD+KjrQ/5FaP8SIqfTXK+xTVvuek
N7w2+qO44xjPHsAlWYVPhifz4pUXxsMSBcjPiruoMY62On4XRqtK2xrY8p8l9RXV
8QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 243858606217292533405053251991547099259
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TX'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Houston'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cPanel, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cPanel, Inc. Certification Authority'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-10-22 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-01-20 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vote2017.itma.org.tw'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23256809941242081809971566377078447639399606086932750291602919993830682263754167987408678435010420310307541915518844556877480577310328814138731181211575743947394077823135394100990791292775828475600334642254037773037716792604089146093512328553167872063218302289718552598258026441327352963651612837909365948153914476344032500364512945368540357722131018847941067148161978837112293132129854526399049774873471658992706483951143576953301113212431152455477496442454646599562794504762214428551935849858934337467582591168750052973312162857366186143943846923093835815654180684230535616605094552324485912297001090086874308269553
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7e035a65416ba77e0ae1b89d08ea1d8e1d6ac765
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6f0a3bff119675e9bca944f1bdf9a57d4e97d8f3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (72 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.52
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://secure.comodo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.comodoca.com/cPanelIncCertificationAuthority.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.comodoca.com/cPanelIncCertificationAuthority.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.comodoca.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vote2017.itma.org.tw'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.vote2017.itma.org.tw'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600ee4bbdb775ce60bae142691fabe19e66a30f7e5fb072d88300c47b897aa8fdcb000001669cded5cc0000040300473045022100a75affad681824bd1954df45ba960e0a3abef98c548d70190febdb434de16f0502207d6c3733105f869a7da493d9e6ac810cb00e887615ff1cd76b2242afe636d3c9007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc56000001669cded620000004030046304402205b482442f1cd38e8309180f3fb9c346a725c35f773609c869134dd70ef8e0ac702206d1ba29dba739b31fdc28d1171657f5daad8c101c418a14ca23d398bfb9a611a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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