service-int.geico.com

Issued by Trustwave Organization Validation CA, Level 2

About this certificate


This digital certificate with serial number 47:d8:d1:3d:8f:b0:b0:cc:63:a7:45:8b:b1:b6:d6:01 was issued on by Trustwave Holdings, Inc. .

While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

Cerificate errors/warnings *beta

  • ERROR: Certificate contains no Authority Info Access Issuers
  • ERROR: KeyUsage extension SHOULD be marked as critical when present

GEICO

Organization: GEICO
State / Province: Maryland
Locality: Chevy chase
Country: US

Trustwave Holdings, Inc.

Organization: Trustwave Holdings, Inc.
State / Province: Maryland
Locality: Chevy chase
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 47:d8:d1:3d:8f:b0:b0:cc:63:a7:45:8b:b1:b6:d6:01
Serial Number (int): 95500967723167588568698166922563737089
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 21:e4:29:e9:9f:45:a5:c8:44:69:c5:9c:69:6b:87:57:a5:1a:e7:e2
AuthorityKeyId: 5d:d9:96:9a:40:c7:27:cb:2c:9b:a2:ec:cf:19:ab:c8:af:cc:86:48

Fingerprint (sha1): 91:01:d3:b5:55:4a:80:a8:70:c4:e1:34:f5:40:6b:a9:47:46:5f:fd
Fingerprint (sha256): aa:ad:e0:31:9f:f2:4f:64:57:44:b9:16:7b:12:a7:e2:2d:6e:51:cc:05:16:f7:94:34:3a:d1:93:3c:52:a4:a9


Revocation information

OCSP Server: http://ocsp.trustwave.com/
CRL Distribution Point: http://crl.trustwave.com/OVCA_L2.crl

Check the revocation status for the current certificate on service-int.geico.com
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any other subject alternative names besides the common name of the subject: service-int.geico.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFCjCCA/KgAwIBAgIQR9jRPY+wsMxjp0WLsbbWATANBgkqhkiG9w0BAQUFADCB rjELMAkGA1UEBhMCVVMxETAPBgNVBAgTCElsbGlub2lzMRAwDgYDVQQHEwdDaGlj YWdvMSEwHwYDVQQKExhUcnVzdHdhdmUgSG9sZGluZ3MsIEluYy4xNjA0BgNVBAMT LVRydXN0d2F2ZSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBDQSwgTGV2ZWwgMjEf MB0GCSqGSIb3DQEJARYQY2FAdHJ1c3R3YXZlLmNvbTAeFw0xMzA0MDExMzA1MjZa Fw0xNTA0MDExNDEzMjJaMGYxHjAcBgNVBAMTFXNlcnZpY2UtaW50LmdlaWNvLmNv bTEUMBIGA1UEBxMLQ2hldnkgY2hhc2UxETAPBgNVBAgTCE1hcnlsYW5kMQswCQYD VQQGEwJVUzEOMAwGA1UEChMFR0VJQ08wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQC4OcmgGBSErJCrqRug6gQ0c5VmJLFOOtaTIIflZ+IB/DTtZ9Y/t60m fVkTPe5zziEG/KbWfdiuR4PpDCWaMutVjtxofKkYZYEUa+oiQM2pbGc5YYn+RA+g M8dkWKz0kt6ET0LJu4Y5WTS3/8BIh8OCFlk70DbfmSJ+K3bh3hmdTYbIwA09+F6J RlS34SFsxSl1kJFbzPsGPjY622Injjznr3RDz3+cRPPh1wZFBBE6WJKP888/syZH 1eagXDUn0DnIodkMVG5M1PEn9gHwjHhZppzhAf14MHjeXkgJafRSwUAMHUwVAym1 ZKI6ifGIh6ViZQa6wHblmf+vryO/OR8tAgMBAAGjggFpMIIBZTAJBgNVHRMEAjAA MB0GA1UdDgQWBBQh5Cnpn0WlyERpxZxpa4dXpRrn4jAfBgNVHSMEGDAWgBRd2Zaa QMcnyyybouzPGavIr8yGSDALBgNVHQ8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUH AwEGCCsGAQUFBwMCMDUGA1UdHwQuMCwwKqAooCaGJGh0dHA6Ly9jcmwudHJ1c3R3 YXZlLmNvbS9PVkNBX0wyLmNybDA2BggrBgEFBQcBAQQqMCgwJgYIKwYBBQUHMAGG Gmh0dHA6Ly9vY3NwLnRydXN0d2F2ZS5jb20vMFsGA1UdIARUMFIwEgYQKwYBBAGB 7RgDAwMDBAQDADA8Bg8rBgEEAYHtGAMDAwMEBAMwKTAnBggrBgEFBQcCARYbaHR0 cDovL3NzbC50cnVzdHdhdmUuY29tL0NBMCAGA1UdEQQZMBeCFXNlcnZpY2UtaW50 LmdlaWNvLmNvbTANBgkqhkiG9w0BAQUFAAOCAQEAIuLcc0q0iHIuHomp1BAOYSmH 5T+C1BHnSF4avCFvYCRuwRWC/+8uT47RlQDp98QfrKV8PlPTw9hLd0TRNH4+Ev3Y jrRORewbdeOWfjdF8t4C11pMr74LEOHL4DRorpVyrCfwv2r8oFAVcdvcynpfiqIX /jY950ffgWtctfA2NV4ToCBUKTuKvjKJqiUB1yhO8FLprcIbFx9J9g6YlkuoZXRL 9lxGsJ0NImvAumekBp8TIkE5Nk7cuC18HoPljRgcV9FoUyWlmnTrYmOefFR3VOt8 tGH4NBCXXebHmGuKrL1PvrHk/9A5ZFPphetlPj6Ykn1wvgxKACDbxK5ggcPyFQ== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuDnJoBgUhKyQq6kboOoE NHOVZiSxTjrWkyCH5WfiAfw07WfWP7etJn1ZEz3uc84hBvym1n3YrkeD6QwlmjLr VY7caHypGGWBFGvqIkDNqWxnOWGJ/kQPoDPHZFis9JLehE9CybuGOVk0t//ASIfD ghZZO9A235kifit24d4ZnU2GyMANPfheiUZUt+EhbMUpdZCRW8z7Bj42OttiJ448 5690Q89/nETz4dcGRQQROliSj/PPP7MmR9XmoFw1J9A5yKHZDFRuTNTxJ/YB8Ix4 Waac4QH9eDB43l5ICWn0UsFADB1MFQMptWSiOonxiIelYmUGusB25Zn/r68jvzkf LQIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 95500967723167588568698166922563737089 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustwave Holdings, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustwave Organization Validation CA, Level 2' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-04-01 13:05:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-04-01 14:13:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'service-int.geico.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chevy chase' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GEICO' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23256344240932028690356871104693536873832593101359388286365041071109092957038159805080812907690909519020068114058186830291268687684165613012047668969794011681388653005253871852775171734730827299858109754157660604301388844813711698478756932379311985119011554161453965829834793949608511473513701727774787710619327710183598420595416162044865847203922994443309161081284428730011079153540479176749835464700819828311907836385080732322857380866026342394199271423059072303190524776232377037697798579776084830899293942520479105072237045966131413151278920611647762741896461552485004873062715000229961782826807043523750313664301 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 21e429e99f45a5c84469c59c696b8757a51ae7e2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 5dd9969a40c727cb2c9ba2eccf19abc8afcc8648 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.trustwave.com/OVCA_L2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.trustwave.com/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (84 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.30360.3.3.3.3.4.4.3.0 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.30360.3.3.3.3.4.4.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://ssl.trustwave.com/CA' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'service-int.geico.com' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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