www.communitylivingcorp.org
Issued by thawte DV SSL CA - G2
About this certificate
This digital certificate with serial number 35:b5:4f:2f:1b:dd:2d:39:d5:05:0c:5e:58:2a:93:97 was issued on by thawte, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.communitylivingcorp.org
thawte, Inc.
Organization:
thawte, Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 35:b5:4f:2f:1b:dd:2d:39:d5:05:0c:5e:58:2a:93:97Serial Number (int): 71390495550701153161670132502830420887
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 9f:b8:c1:a9:6c:f2:f5:c0:22:2a:94:ed:5c:99:ac:d4:ec:d7:c6:07
Fingerprint (sha1): 41:7d:0f:32:08:7d:24:47:01:44:0c:27:c3:6d:31:ab:82:59:3b:77
Fingerprint (sha256): 5e:e8:b0:54:6d:5e:45:69:d9:c3:83:62:76:9b:83:88:9c:5d:24:66:19:aa:3f:c6:e5:b5:8c:92:cf:8a:8c:cb
Issuing Certificate URL: http://tn.symcb.com/tn.crt
Revocation information
OCSP Server: http://tn.symcd.comCRL Distribution Point: http://tn.symcb.com/tn.crl
Check the revocation status for certificate www.communitylivingcorp.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.communitylivingcorp.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.communitylivingcorp.org
communitylivingcorp.org
communitylivingcorp.org
Other certificates including the domain name communitylivingcorp.org
(limited to 100 certificates)
www.communitylivingcorp.org
www.communitylivingcorp.org
www.communitylivingcorp.org
communitylivingcorp.org
communitylivingcorp.org
www.communitylivingcorp.org
www.communitylivingcorp.org
communitylivingcorp.org
communitylivingcorp.org
communitylivingcorp.org
momsdayboxes.com
www.communitylivingcorp.org
communitylivingcorp.org
communitylivingcorp.org
saasynerd.com
communitylivingcorp.org
communitylivingcorp.org
nynerds.com
communitylivingcorp.org
www.communitylivingcorp.org
communitylivingcorp.org
www.communitylivingcorp.org
www.communitylivingcorp.org
communitylivingcorp.org
communitylivingcorp.org
www.communitylivingcorp.org
www.communitylivingcorp.org
communitylivingcorp.org
communitylivingcorp.org
communitylivingcorp.org
momsdayboxes.com
www.communitylivingcorp.org
communitylivingcorp.org
communitylivingcorp.org
saasynerd.com
communitylivingcorp.org
communitylivingcorp.org
nynerds.com
communitylivingcorp.org
www.communitylivingcorp.org
communitylivingcorp.org
Certificate
The complete raw certificate details for www.communitylivingcorp.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFszCCBJugAwIBAgIQNbVPLxvdLTnVBQxeWCqTlzANBgkqhkiG9w0BAQsFADBj MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMR0wGwYDVQQLExRE b21haW4gVmFsaWRhdGVkIFNTTDEeMBwGA1UEAxMVdGhhd3RlIERWIFNTTCBDQSAt IEcyMB4XDTE2MDgxMjAwMDAwMFoXDTE3MDYyODIzNTk1OVowJjEkMCIGA1UEAwwb d3d3LmNvbW11bml0eWxpdmluZ2NvcnAub3JnMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAw1WN4gzpB9kPtwirfsAzz23cx57IPbmpuGjo37QKti0UMRew tZPQTGXjn1a7Tn9zw61AQRUIkMLwi7z5HSzYA3xnPmxkQodD1pQj7Jm7JZcIjHi3 SLFEcukShpDYw1V0pvZ6ztQpuOqCXDmbuUsT/s+vtfol0jBd0uEGEIOvRG279v3f 8NDsEc2JQ3KKp7Vy4MX2qMIly2eS0HM+3AUi5Xl4N5Ozj9Ww0FoDtvlKEk6zwhBk kszuOsC/LslSzNVg2lh6IpJ1sXcNTS5qh8767jDoe0gn4gyj6hI+q/FazRreoftf 7flPdLdwyC1eeJNcRNr+iakCTXrDj2wZte1qAwIDAQABo4ICnjCCApowPwYDVR0R BDgwNoIbd3d3LmNvbW11bml0eWxpdmluZ2NvcnAub3Jnghdjb21tdW5pdHlsaXZp bmdjb3JwLm9yZzAJBgNVHRMEAjAAMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly90 bi5zeW1jYi5jb20vdG4uY3JsMG4GA1UdIARnMGUwYwYGZ4EMAQIBMFkwJgYIKwYB BQUHAgEWGmh0dHBzOi8vd3d3LnRoYXd0ZS5jb20vY3BzMC8GCCsGAQUFBwICMCMM IWh0dHBzOi8vd3d3LnRoYXd0ZS5jb20vcmVwb3NpdG9yeTAfBgNVHSMEGDAWgBSf uMGpbPL1wCIqlO1cmazU7NfGBzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcwAYYT aHR0cDovL3RuLnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL3RuLnN5bWNi LmNvbS90bi5jcnQwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgDd6x0reg1PpiCL ga2BaHB+Lo6dAdVciI09EcTNtuy+zAAAAVZ/fxDpAAAEAwBHMEUCIA9t4/8aCbQf DIBdigtTx0YLpDEG1/DHeCHWbJXHglY6AiEAifyXykPKbdexgBC2koUNqkQDpB2F NZ9tH+sqDQksbaYAdgCkuQmQtBhYFIe7E6LMZ3AKPDWYBPkb37jjd80OyA3cEAAA AVZ/fxD/AAAEAwBHMEUCIQCPPATq1JLWvmfxpQhWCAcRTslryd9kdmUdpMCjKVMg eQIgTaEYGjdInBp8xAUWm7oZz2mXT50pY6PVUXHgBZ50ouswDQYJKoZIhvcNAQEL BQADggEBAD/dYIYSWKp/fjzjaV9gcp0fZwKX6wIDQWt6adbK1rXmYc0XJ7+43L8G Cg3qv06EMivQMqve8TiZNI2Y/yBbTHK2k52mNQIj5ZD0gFsSJ2mE/MDOtYcL/KX5 lh8Rc1UiyqR4xPD84SCbht/eizSEHqxTJIz3OaDYDa2YCEUD2I7ioaNidH1iiswt 7DLJqXYPvjrNiKU1QgLOAeIJLuvVbYl4DCBR3BW6smo8bj69m7N0M7yPpgmFEMck wIfXw6KwPM6auZroUQGqasVlxu/EVTrDe/eY+EMJXa4imwdflYtQEw7sFzaw4Obu guY2xzs7YJmmJbvmRVZHhd5NLVPOjsY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw1WN4gzpB9kPtwirfsAz z23cx57IPbmpuGjo37QKti0UMRewtZPQTGXjn1a7Tn9zw61AQRUIkMLwi7z5HSzY A3xnPmxkQodD1pQj7Jm7JZcIjHi3SLFEcukShpDYw1V0pvZ6ztQpuOqCXDmbuUsT /s+vtfol0jBd0uEGEIOvRG279v3f8NDsEc2JQ3KKp7Vy4MX2qMIly2eS0HM+3AUi 5Xl4N5Ozj9Ww0FoDtvlKEk6zwhBkkszuOsC/LslSzNVg2lh6IpJ1sXcNTS5qh876 7jDoe0gn4gyj6hI+q/FazRreoftf7flPdLdwyC1eeJNcRNr+iakCTXrDj2wZte1q AwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 71390495550701153161670132502830420887 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte DV SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-06-28 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.communitylivingcorp.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24658657831825699990398483443268857856604468849892025401594431565032900322774684674142096196642454740636481862012106502760554896986571954904625472295174854849983607588089330406516955049098914181387354100739579383370540536888097050293201583075178596735637336349173299734766805932039328224395093315299141395369067624723107729832307708282955961699403731404318236264021674040356522956298949168922572839316346888185292678928069256161234480808441919075759059275057793404353190183787960615196120483665875364006339112667088039776087872383675467207575494981420851917571489381583906227471736017274248447638163117206590624459267 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (56 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.communitylivingcorp.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'communitylivingcorp.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tn.symcb.com/tn.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9fb8c1a96cf2f5c0222a94ed5c99acd4ecd7c607 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tn.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tn.symcb.com/tn.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc000001567f7f10e9000004030047304502200f6de3ff1a09b41f0c805d8a0b53c7460ba43106d7f0c77821d66c95c782563a02210089fc97ca43ca6dd7b18010b692850daa4403a41d85359f6d1feb2a0d092c6da6007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc10000001567f7f10ff00000403004730450221008f3c04ead492d6be67f1a508560807114ec96bc9df6476651da4c0a32953207902204da1181a37489c1a7cc405169bba19cf69974f9d2963a3d55171e0059e74a2eb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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