vpn.lax.truecarcorp.com
- TrueCar, Inc. -
Issued by Thawte SSL CA
About this certificate
This digital certificate with serial number 24:25:08:6d:84:5a:31:b5:7e:94:a8:f4:57:32:d3:b2 was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Compliant certificates must not encode explicitTest as an IA5String (RFC 6818: 3)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Compliant certificates should use the utf8string encoding for explicitText (RFC 6818: 3)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
TrueCar, Inc.
Organization:
TrueCar, Inc.
Organization unit: Production Engineering
Organization unit: Production Engineering
State / Province:
California
Locality: Santa Monica
Country: US
Locality: Santa Monica
Country: US
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 24:25:08:6d:84:5a:31:b5:7e:94:a8:f4:57:32:d3:b2Serial Number (int): 48044493768130362679091176372733924274
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: a7:a2:83:bb:34:45:40:3d:fc:d5:30:4f:12:b9:3e:a1:01:9f:f6:db
Fingerprint (sha1): 32:b5:7f:3f:33:87:10:c6:7d:70:7d:86:7c:e8:ed:a2:7c:bc:2d:3e
Fingerprint (sha256): 61:5c:ea:2c:06:22:a4:fe:50:fc:f3:41:df:ba:a0:b9:9d:08:92:e6:ab:3e:58:57:46:a0:22:be:ca:78:68:42
Issuing Certificate URL: http://tb.symcb.com/tb.crt
Revocation information
OCSP Server: http://tb.symcd.comCRL Distribution Point: http://tb.symcb.com/tb.crl
Check the revocation status for certificate vpn.lax.truecarcorp.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vpn.lax.truecarcorp.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vpn.lax.truecarcorp.com
Other certificates including the domain name truecarcorp.com
(limited to 100 certificates)
*.truecarcorp.com
vpn.chi.truecarcorp.com
*.corp.tc
vpn.west.truecarcorp.com
*.truecarcorp.com
ise.corp.truecarcorp.com
*.corp.tc
ise.corp.truecarcorp.com
*.corp.tc
*.truecarcorp.com
vpn.lax.truecarcorp.com
vpn2.lax.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
*.corp.tc
vpn.lax.truecarcorp.com
vpn.lax.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
vpn.lax.truecarcorp.com
vpn.lax.truecarcorp.com
vpn.chi.truecarcorp.com
vpn.lax.truecarcorp.com
*.truecarcorp.com
*.corp.tc
*.truecarcorp.com
*.truecarcorp.com
vpn.chi.truecarcorp.com
*.corp.tc
vpn.west.truecarcorp.com
*.truecarcorp.com
ise.corp.truecarcorp.com
*.corp.tc
ise.corp.truecarcorp.com
*.corp.tc
*.truecarcorp.com
vpn.lax.truecarcorp.com
vpn2.lax.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
*.corp.tc
vpn.lax.truecarcorp.com
vpn.lax.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
*.truecarcorp.com
vpn.lax.truecarcorp.com
vpn.lax.truecarcorp.com
vpn.chi.truecarcorp.com
vpn.lax.truecarcorp.com
*.truecarcorp.com
*.corp.tc
*.truecarcorp.com
*.truecarcorp.com
Certificate
The complete raw certificate details for vpn.lax.truecarcorp.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEzTCCA7WgAwIBAgIQJCUIbYRaMbV+lKj0VzLTsjANBgkqhkiG9w0BAQUFADA8 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRYwFAYDVQQDEw1U aGF3dGUgU1NMIENBMB4XDTE0MDUxMjAwMDAwMFoXDTE3MDgwNzIzNTk1OVowgZQx CzAJBgNVBAYTAlVTMRMwEQYDVQQIEwpDYWxpZm9ybmlhMRUwEwYDVQQHFAxTYW50 YSBNb25pY2ExFjAUBgNVBAoUDVRydWVDYXIsIEluYy4xHzAdBgNVBAsUFlByb2R1 Y3Rpb24gRW5naW5lZXJpbmcxIDAeBgNVBAMUF3Zwbi5sYXgudHJ1ZWNhcmNvcnAu Y29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXkMljN8x3po0SpG mmIF0pmGh8joDzsXh+3H6ja+mCVYAQf/fQfB+N6I41i9RFBL8+03fCOGs2SymIdI 5LmmOF+D4DhApWAuWbwfI4XTFbmUhSRFPvpwyVXMu9yWZ9q12S0tbE1S0ykpRDgF EQh9XOyy8YcyjBzQTmhsvynUwWugQ9D7zBwMQkOwTpK6s2JpGQCa9TEphA/iaUfz 8XBNLJpDxoxU4YthFptA8Pkj3iW0ipOI4gD6SDR8hXgnJPWQ4JoyFzAS+7/j40b5 qwa0ctW98keCs0K3v/jGw5O0J0ayJLpDxE2OKSnci/Esw04x/NI02VaFJbwuBD6g 5bOBbwIDAQABo4IBcDCCAWwwIgYDVR0RBBswGYIXdnBuLmxheC50cnVlY2FyY29y cC5jb20wCQYDVR0TBAIwADBlBgNVHSAEXjBcMFoGCmCGSAGG+EUBBzYwTDAjBggr BgEFBQcCARYXaHR0cHM6Ly9kLnN5bWNiLmNvbS9jcHMwJQYIKwYBBQUHAgIwGRYX aHR0cHM6Ly9kLnN5bWNiLmNvbS9ycGEwDgYDVR0PAQH/BAQDAgWgMB8GA1UdIwQY MBaAFKeig7s0RUA9/NUwTxK5PqEBn/bbMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6 Ly90Yi5zeW1jYi5jb20vdGIuY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly90Yi5zeW1j ZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly90Yi5zeW1jYi5jb20vdGIuY3J0MA0G CSqGSIb3DQEBBQUAA4IBAQAsiV0GW+DW520F74JKF/ZD4zD0yp0Fw6/pDvbXQYkz SVYXZUvSY1P9t3RIQWwuvxRqJ2S1zMtsXnTqsihog8ZFZoFjXFNg2zHS228ujiOq X/Qhw2lOE614/dlMfyB8gEtl/bp9OoTR1+kVdGXg9QD3MTBMw6GYxXdR+9LzLcsH celmkyu0sbuYTLR4JKmXpZIOkIB+3LlSH7Su9C/1tMzhqRsIbzGBHYFt3d0Iu6Or vnOo5gzoWkSIezyWiR5cuUOQGk1NIlVKQ4efIy+riU1KPqK9FWV0Au32BBUrlDUd kA8kCJpmlvP59W72WjyK3PCyrLZbOikZXGcDCbbAfWzG -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAmXkMljN8x3po0SpGmmIF 0pmGh8joDzsXh+3H6ja+mCVYAQf/fQfB+N6I41i9RFBL8+03fCOGs2SymIdI5Lmm OF+D4DhApWAuWbwfI4XTFbmUhSRFPvpwyVXMu9yWZ9q12S0tbE1S0ykpRDgFEQh9 XOyy8YcyjBzQTmhsvynUwWugQ9D7zBwMQkOwTpK6s2JpGQCa9TEphA/iaUfz8XBN LJpDxoxU4YthFptA8Pkj3iW0ipOI4gD6SDR8hXgnJPWQ4JoyFzAS+7/j40b5qwa0 ctW98keCs0K3v/jGw5O0J0ayJLpDxE2OKSnci/Esw04x/NI02VaFJbwuBD6g5bOB bwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 48044493768130362679091176372733924274 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-05-12 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-07 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Santa Monica' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'TrueCar, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Production Engineering' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'vpn.lax.truecarcorp.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19374152228734312270813083243623804622059338881080540282725305795099122358955024054444277385083625007956005701740801970551135242647630882399661170777052519178188789203005315320648563973621744033948245596066021427424287250872629445979622329763154577067851759652660796728133603883940295516705758154693437595690171453100579044879914028226328666666158017643633406194204416654754055611133484836804389088566602547916832873645111100737449658918582619869699647000390831770374038626743152010180775938422824902318960816054137731825366620359840554655381890936659965604744133132370986078596566328799653286686735659778948889543023 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vpn.lax.truecarcorp.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (94 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a7a283bb3445403dfcd5304f12b93ea1019ff6db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tb.symcb.com/tb.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tb.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tb.symcb.com/tb.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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