app-broker.fglife.com.tw

- Farglory Life Insurance Co. -

Issued by TWCA Secure SSL Certification Authority

About this certificate

This digital certificate with serial number 47:e4:00:00:00:02:0d:9d:7d:2a:4d:8f:77:9c:d7:d4 was issued on by TAIWAN-CA.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Farglory Life Insurance Co.

Organization: Farglory Life Insurance Co.
Organization unit: IT
State / Province: Taiwan
Locality: Taipei
Country: TW

TAIWAN-CA

Organization: TAIWAN-CA
Organization unit: Secure SSL Sub-CA
Country: TW

This certificate has expire since

Certificate Details

Serial Number (hex): 47:e4:00:00:00:02:0d:9d:7d:2a:4d:8f:77:9c:d7:d4
Serial Number (int): 95559031384477449823036687061448710100
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 36:b6:25:2f:f5:37:59:a2:e6:3b:e0:8d:bb:ce:d5:51:17:62:27:90:80:5c:b2:4a:63:0b:83:35:9f:dd:b8:90
AuthorityKeyId: f8:07:c2:68:24:ff:85:95:cb:db:1e:e3:33:9c:2a:4f:97:20:56:7b

Fingerprint (sha1): 08:b0:0d:05:64:fe:a0:b9:35:f7:df:3c:a1:84:c9:50:9b:c0:96:0b
Fingerprint (sha256): 60:0c:7b:6e:af:c8:b0:2f:fe:86:cf:76:87:72:44:cf:60:b1:71:b8:02:4f:cf:b0:a7:4a:48:11:3e:19:3e:cc

Issuing Certificate URL: http://sslserver.twca.com.tw/cacert/secure_sha2_2014.crt

Revocation information

OCSP Server: http://twcasslocsp.twca.com.tw/
CRL Distribution Point: http://sslserver.twca.com.tw/sslserver/Securessl_revoke_sha2_2014.crl

Check the revocation status for certificate app-broker.fglife.com.tw

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for app-broker.fglife.com.tw

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

app-broker.fglife.com.tw

Other certificates including the domain name fglife.com.tw

(limited to 100 certificates)
ex.fglife.com.tw
mdm.fglife.com.tw
app-customer.fglife.com.tw
ex3.fglife.com.tw
fgweb.fglife.com.tw
member.fglife.com.tw
uat.lia-share.fglife.com.tw
app-bank.fglife.com.tw
hr.fglife.com.tw
bw.fglife.com.tw
proposal.fglife.com.tw
hr.fglife.com.tw
member.fglife.com.tw
member.fglife.com.tw
uat.lia-share.fglife.com.tw
slm.fglife.com.tw
webmail.fglife.com.tw
app-customer.fglife.com.tw
test.fglife.com.tw
bw.fglife.com.tw
gip.fglife.com.tw
ex3.fglife.com.tw
ex.fglife.com.tw
accessibility.fglife.com.tw
sslvpn.fglife.com.tw
app2-ins.fglife.com.tw
app-broker.fglife.com.tw
fgweb.fglife.com.tw
luckygo.fglife.com.tw
webmail.fglife.com.tw
fgweb.fglife.com.tw
member.fglife.com.tw
app-broker.fglife.com.tw
www.fglife.com.tw
jcm.fglife.com.tw
app-bank.fglife.com.tw
www2.fglife.com.tw
bw.fglife.com.tw
online-ins.fglife.com.tw
member.fglife.com.tw
e-recruit.fglife.com.tw
app-broker.fglife.com.tw
bw.fglife.com.tw
realty.fglife.com.tw
slm.fglife.com.tw
www.fglife.com.tw
online-ins.fglife.com.tw
member.fglife.com.tw
lip.fglife.com.tw
lip.fglife.com.tw
lia-share.fglife.com.tw
mdm.fglife.com.tw
hr.fglife.com.tw
webmail.fglife.com.tw
fgweb.fglife.com.tw
lia-share.fglife.com.tw
slm.fglife.com.tw
member.fglife.com.tw
sslvpn.fglife.com.tw
jcm.fglife.com.tw
online-ins.fglife.com.tw
app-agent.fglife.com.tw
app-agent.fglife.com.tw
ex.fglife.com.tw
app-ins-test.fglife.com.tw
app-ins-nbpr.fglife.com.tw
ex.fglife.com.tw
lip.fglife.com.tw
lia-share.fglife.com.tw
uat.lia-share.fglife.com.tw
accessibility.fglife.com.tw
www.fglife.com.tw
cas.fglife.com.tw
fatca.fglife.com.tw
cas.fglife.com.tw
member.fglife.com.tw
member.fglife.com.tw
fg-ao5.fglife.com.tw
sslvpn.fglife.com.tw
realty.fglife.com.tw
www.fglife.com.tw
lip.fglife.com.tw
jira.fglife.com.tw
fg-ao5.fglife.com.tw
www2.fglife.com.tw
e-recruit.fglife.com.tw
member.fglife.com.tw
app2-ins-test.fglife.com.tw
cas.fglife.com.tw
sslvpn.fglife.com.tw
app-bank.fglife.com.tw
hr.fglife.com.tw
www.fglife.com.tw

Certificate

The complete raw certificate details for app-broker.fglife.com.tw in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnBeGrLqkjkmgGyc+v1n5
CAASZqbEGH3T4EYUIN/sgMqUwDjzAMbOhr9BA2ilqRYEgFNy6sN6+e3UcuV5o0K1
zKaCvodREVoezbCUSGUVitg8Yeglo6f+S3kP7pXFrfsG33AVkYNRdhE+6N0JYoG5
jW8NAqMv8Ab67GkV7XXfwpO8BrV3lLbmwE2/FPByg0kVU/fZQw4L3w6RxYSIQ4u8
3/nkx/OCATLAT48KoiX9N+hBOYSl03CW3JWch//aPfS0ri0QHjiAiccynJ4VyQuc
bGnPyWaeKN3b9cCS75vODB3t+/Ef87dGvmcKk6BQIGL1kDRIJG0i6vkdlsnXm9TY
QQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 95559031384477449823036687061448710100
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TW'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TAIWAN-CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Secure SSL Sub-CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TWCA Secure SSL Certification Authority'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-21 10:20:33 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-06-30 15:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TW'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Taiwan'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Taipei'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Farglory Life Insurance Co.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'app-broker.fglife.com.tw'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19704776713749124843141448864500136896981354163967145906099368385775533049831420484475874238401999218179786277761882962298826375850181744126565957953833626001852729446803937006957530438948989060799607637976213861880196543374908271237668026298085560596085649038556313753851805846838966508750921496968645310769757792743625299726299030731551151198707986091022058874882630765699405626229905776555426104795279975179657273435346608742441833162881754233211977866767266549045324064528029720984067242198358991684697489771576694907555383039349623137457487048961021561330856491051364155508241153196746194537372018378084778825793
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f807c26824ff8595cbdb1ee3339c2a4f9720567b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes)
							36b6252ff53759a2e63be08dbbced55117622790805cb24a630b83359fddb890
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sslserver.twca.com.tw/sslserver/Securessl_revoke_sha2_2014.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'app-broker.fglife.com.tw'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (117 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sslserver.twca.com.tw/cacert/secure_sha2_2014.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://twcasslocsp.twca.com.tw/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.40869.1.1.25
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'www.twca.com.tw'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (367 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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