web2.fassma.net
Issued by RapidSSL SHA256 CA
About this certificate
This digital certificate with serial number 05:4a:b4:de:72:c3:ad:b9:6b:be:af:60:3a:d7:51:f1 was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=web2.fassma.net
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 05:4a:b4:de:72:c3:ad:b9:6b:be:af:60:3a:d7:51:f1Serial Number (int): 7034038404354744120660764545806455281
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 97:c2:27:50:9e:c2:c9:ec:0c:88:32:c8:7c:ad:e2:a6:01:4f:da:6f
Fingerprint (sha1): 51:d7:f8:a5:b8:aa:6c:6a:56:d5:34:4c:8c:fd:83:7b:a9:9a:b0:ab
Fingerprint (sha256): 64:f1:53:a1:8d:b3:c3:49:b9:5b:ed:b8:30:c1:dd:47:0f:41:8d:27:b8:a5:d1:59:be:aa:e6:77:cf:f6:f4:fe
Issuing Certificate URL: http://gp.symcb.com/gp.crt
Revocation information
OCSP Server: http://gp.symcd.comCRL Distribution Point: http://gp.symcb.com/gp.crl
Check the revocation status for certificate web2.fassma.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for web2.fassma.net
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
web2.fassma.net
Other certificates including the domain name fassma.net
(limited to 100 certificates)
radius.fassma.net
fassma.net
web2.fassma.net
web2.fassma.net
fassma.net
web.fassma.net
cloud.fassma.net
fassma.net
web2.fassma.net
web.fassma.net
web2.fassma.net
mail.fassma.net
fassma.net
web.fassma.net
web.fassma.net
web.fassma.net
mail.fassma.net
webmail.fassma.net
prit-ovpn.fassma.net
mail.fassma.net
web.fassma.net
web.fassma.net
web.fassma.net
web.fassma.net
prit-ovpn.fassma.net
fassma.net
fassma.net
web.fassma.net
prit-ovpn.fassma.net
billing.fassma.net
fassma.net
radius.fassma.net
prit-ovpn.fassma.net
fassma.net
web2.fassma.net
web2.fassma.net
fassma.net
web.fassma.net
cloud.fassma.net
fassma.net
web2.fassma.net
web.fassma.net
web2.fassma.net
mail.fassma.net
fassma.net
web.fassma.net
web.fassma.net
web.fassma.net
mail.fassma.net
webmail.fassma.net
prit-ovpn.fassma.net
mail.fassma.net
web.fassma.net
web.fassma.net
web.fassma.net
web.fassma.net
prit-ovpn.fassma.net
fassma.net
fassma.net
web.fassma.net
prit-ovpn.fassma.net
billing.fassma.net
fassma.net
radius.fassma.net
prit-ovpn.fassma.net
Certificate
The complete raw certificate details for web2.fassma.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYzCCBEugAwIBAgIQBUq03nLDrblrvq9gOtdR8TANBgkqhkiG9w0BAQsFADBC MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEbMBkGA1UEAxMS UmFwaWRTU0wgU0hBMjU2IENBMB4XDTE3MDIwODAwMDAwMFoXDTE4MDMwNDIzNTk1 OVowGjEYMBYGA1UEAwwPd2ViMi5mYXNzbWEubmV0MIIBIjANBgkqhkiG9w0BAQEF AAOCAQ8AMIIBCgKCAQEAwz+caye8v3c2/gSYQyTM/pnOdSqfSvXaqfc1NuG4rEvv ZwVKa4i6ll+otb+5+Acsc0ImGMSqF1tBvW0opQy04wgI37OPc+E7QsyoPqFRoca0 SFbxxp53XJDfiN72jMLBghRTGC9c0oytykZqtGpzccpasW6oZDke/Mh7IWeTCX1F n6VSz2PWenOPoDxFezRg74TJPChw7NB1fryJSQUOcAwIQqNM/hYrhfn74T671Z6r eHhVM9+5whiUGwdGRnthcbo39egF33Vf1cVTk/3uxxpgdiabOHeR/SLZkQKIBNj8 8Dp9+dIm5+ApAk2IwLR/Nu/BNGPghX3FkiImxxJD3QIDAQABo4ICezCCAncwGgYD VR0RBBMwEYIPd2ViMi5mYXNzbWEubmV0MAkGA1UdEwQCMAAwKwYDVR0fBCQwIjAg oB6gHIYaaHR0cDovL2dwLnN5bWNiLmNvbS9ncC5jcmwwbwYDVR0gBGgwZjBkBgZn gQwBAgEwWjAqBggrBgEFBQcCARYeaHR0cHM6Ly93d3cucmFwaWRzc2wuY29tL2xl Z2FsMCwGCCsGAQUFBwICMCAMHmh0dHBzOi8vd3d3LnJhcGlkc3NsLmNvbS9sZWdh bDAfBgNVHSMEGDAWgBSXwidQnsLJ7AyIMsh8reKmAU/abzAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEsw STAfBggrBgEFBQcwAYYTaHR0cDovL2dwLnN5bWNkLmNvbTAmBggrBgEFBQcwAoYa aHR0cDovL2dwLnN5bWNiLmNvbS9ncC5jcnQwggEFBgorBgEEAdZ5AgQCBIH2BIHz APEAdwDd6x0reg1PpiCLga2BaHB+Lo6dAdVciI09EcTNtuy+zAAAAVod3fPdAAAE AwBIMEYCIQDrocPcWzwtHQ577Y6QVHFgp7O9BG1e0atg+3MJzmcbFgIhAPs818bd eVWtCNPnNG7JUpniqKSVC+kaMke13raq4Zo1AHYApLkJkLQYWBSHuxOizGdwCjw1 mAT5G9+443fNDsgN3BAAAAFaHd3z/gAABAMARzBFAiEA0bYX4hd6tljZUDUkS97c TrWDgB5pBAcuuEqpkBRuDN4CIHWQcAKxO8xtf1QIhvH61V3YReeqVXEvrPbGbcnf FKzVMA0GCSqGSIb3DQEBCwUAA4IBAQA+aAZE0h+fKNeh6lKSQjfS/PWmZqtbZry8 Qx7ZVhUfWW5AV7XGCmKam92NlJOtG25DoIhQSbOcxxKydISXpDXzWupEBySVM1pP msDrpfvroldgbvzesN0FHSlPgYcgfnmSKXFbqZ42PlgonqY1XZFQGkPnHOVgoOUq NTtqNEw84w0msZBIIIQGn7uUX0dzMcqI/Ml1dxOqUOon5bWoOeI4b+TlHCvmas2h dYkwqf+dDNIdHdVDc+YiBS8co5g6I9Ejpsl1m70bfq3vmLJJ+uLAA9rWS3TC39wX VfcItfHbEa/Mt4yZ7XnSr4BTP4JWu+lHrptp2VX4NtGaSBHCxQsG -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwz+caye8v3c2/gSYQyTM /pnOdSqfSvXaqfc1NuG4rEvvZwVKa4i6ll+otb+5+Acsc0ImGMSqF1tBvW0opQy0 4wgI37OPc+E7QsyoPqFRoca0SFbxxp53XJDfiN72jMLBghRTGC9c0oytykZqtGpz ccpasW6oZDke/Mh7IWeTCX1Fn6VSz2PWenOPoDxFezRg74TJPChw7NB1fryJSQUO cAwIQqNM/hYrhfn74T671Z6reHhVM9+5whiUGwdGRnthcbo39egF33Vf1cVTk/3u xxpgdiabOHeR/SLZkQKIBNj88Dp9+dIm5+ApAk2IwLR/Nu/BNGPghX3FkiImxxJD 3QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 7034038404354744120660764545806455281 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-08 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-04 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'web2.fassma.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24647837226533859674615518938717308954687869135663122602601059663987730144186555536108408461162205508783188330960325509593548645346253393572280739946215237371177815007949535147453601774730559117162727602862325832438560061771425962724634398093935444948592052459596708590375339187586749724576785466271965133670388071430952661354863283118198632088241875231472083368744989428478265781505376559148747811377680187042792612188079104801236019126452056350166552959263148166991049575487747858448368800072999673539723669255593348553837213343860550226222111457574166183978814979685097370200030857004822981313519694217156274308061 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'web2.fassma.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 97c227509ec2c9ec0c8832c87cade2a6014fda6f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015a1dddf3dd0000040300483046022100eba1c3dc5b3c2d1d0e7bed8e90547160a7b3bd046d5ed1ab60fb7309ce671b16022100fb3cd7c6dd7955ad08d3e7346ec95299e2a8a4950be91a3247b5deb6aae19a35007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015a1dddf3fe0000040300473045022100d1b617e2177ab658d95035244bdedc4eb583801e6904072eb84aa990146e0cde022075907002b13bcc6d7f540886f1fad55dd845e7aa55712facf6c66dc9df14acd5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 003e680644d21f9f28d7a1ea52924237d2fcf5a666ab5b66bcbc431ed956151f596e4057b5c60a629a9bdd8d9493ad1b6e43a0885049b39cc712b2748497a435f35aea44072495335a4f9ac0eba5fbeba257606efcdeb0dd051d294f8187207e799229715ba99e363e58289ea6355d91501a43e71ce560a0e52a353b6a344c3ce30d26b190482084069fbb945f477331ca88fcc9757713aa50ea27e5b5a839e2386fe4e51c2be66acda1758930a9ff9d0cd21d1dd54373e622052f1ca3983a23d123a6c9759bbd1b7eadef98b249fae2c003dad64b74c2dfdc1755f708b5f1db11afccb78c99ed79d2af80533f8256bbe947ae9b69d955f836d19a4811c2c50b06