www.sweetfactory.com
Issued by GeoTrust DV SSL CA - G3
About this certificate
This digital certificate with serial number 10:29:7c:c3:a0:90:51:5f:75:66:a5:88:ee:8c:c8:47 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.sweetfactory.com
GeoTrust Inc.
Organization:
GeoTrust Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 10:29:7c:c3:a0:90:51:5f:75:66:a5:88:ee:8c:c8:47Serial Number (int): 21483062621733196149934211512604084295
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: ad:65:22:85:90:d0:3b:e3:a1:49:8b:37:f9:f1:0b:1d:5f:17:a0:77
Fingerprint (sha1): 4a:7a:f1:68:6b:64:30:56:a6:8e:1d:04:c7:7d:66:a8:51:20:41:61
Fingerprint (sha256): 80:22:c4:f2:e7:ed:3a:1a:0d:92:ae:88:30:19:2c:43:4c:b1:ac:a5:3a:8b:03:54:69:50:7b:8c:6d:b6:b9:9d
Issuing Certificate URL: http://gt.symcb.com/gt.crt
Revocation information
OCSP Server: http://gt.symcd.comCRL Distribution Point: http://gt.symcb.com/gt.crl
Check the revocation status for certificate www.sweetfactory.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.sweetfactory.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
Other certificates including the domain name sweetfactory.com
(limited to 100 certificates)
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
sweetfactory.com
sweetfactory.com
sweetfactory.com
sweetfactory.com
www.sweetfactory.com
sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
sweetfactory.com
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
sweetfactory.com
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
sweetfactory.com
sweetfactory.com
sweetfactory.com
sweetfactory.com
www.sweetfactory.com
sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
sweetfactory.com
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
www.sweetfactory.com
www.sweetfactory.com
sweetfactory.com
sweetfactory.com
sweetfactory.com
www.sweetfactory.com
Certificate
The complete raw certificate details for www.sweetfactory.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgIQECl8w6CQUV91ZqWI7ozIRzANBgkqhkiG9w0BAQsFADBm MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UECxMU RG9tYWluIFZhbGlkYXRlZCBTU0wxIDAeBgNVBAMTF0dlb1RydXN0IERWIFNTTCBD QSAtIEczMB4XDTE2MDgzMDAwMDAwMFoXDTE4MDgzMDIzNTk1OVowHzEdMBsGA1UE AwwUd3d3LnN3ZWV0ZmFjdG9yeS5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQCv+67MtaHARJkl79laHxeCmkvCEDWCKjizG6kesuT46cNcqOXRpQYd 9cGW+JPM0C5iqGudim9xbAUQKlzbODmjnS+6pJ0U8BsNkDY1gspWI+dIFIrq7y4M BFtEFPhTJQERruUCuAmGk6AB2PY2zUbwhlXoa//IzqQQXLZRbVjAOUyq5TenVIvX 9HAytjGwgXzTiSzJnkzIhx1uismu9fhhcmChPw/JYr4O5bF0Qf1TfMtPH3Rhmm6H xhujKdax0x4YXIqf/TEkEfBPqvS4F1o0Qbr90TQmUGmjr3GzVjRMQ1ts5634klkA CU5LZAND4dlATpj8Js1bFryiNqBLXeFDAgMBAAGjggM4MIIDNDAxBgNVHREEKjAo ghR3d3cuc3dlZXRmYWN0b3J5LmNvbYIQc3dlZXRmYWN0b3J5LmNvbTAJBgNVHRME AjAAMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly9ndC5zeW1jYi5jb20vZ3QuY3Js MIGdBgNVHSAEgZUwgZIwgY8GBmeBDAECATCBhDA/BggrBgEFBQcCARYzaHR0cHM6 Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0b3J5L2xlZ2FsMEEG CCsGAQUFBwICMDUMM2h0dHBzOi8vd3d3Lmdlb3RydXN0LmNvbS9yZXNvdXJjZXMv cmVwb3NpdG9yeS9sZWdhbDAfBgNVHSMEGDAWgBStZSKFkNA746FJizf58QsdXxeg dzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMC MFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDovL2d0LnN5bWNkLmNv bTAmBggrBgEFBQcwAoYaaHR0cDovL2d0LnN5bWNiLmNvbS9ndC5jcnQwggF8Bgor BgEEAdZ5AgQCBIIBbASCAWgBZgB1AN3rHSt6DU+mIIuBrYFocH4ujp0B1VyIjT0R xM227L7MAAABVtt2mU0AAAQDAEYwRAIgNaZrSY8qQI4FWMod8sLcXRXtECR3bANF IpwT/lXdGmYCICVuxRLDs3W1xxZ/7CZr4sCbyq59zLsANMVzeo4hCL87AHYApLkJ kLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFW23aaegAABAMARzBFAiEA hBOfOZN5siQ/BrfQ70OKeQ46heFQ1uihDYcc5VX7UYsCIGu9TGSOa8KJ0HXMThMp pQwKElUs/yti2aNN0eVvwx9gAHUAaPaY+B9kgr46jO65KB1M/HFRXWeT1ETRCmes u09P+8QAAAFW23aagAAABAMARjBEAiB4xJAPqL9p1rN8ULRtYZVoCdB7UmPXHm/K 9rDBPbEDJwIgY4MDRQy4AtOj3vfTwGgIKTrogEMdWetiysug/Yo9gOwwDQYJKoZI hvcNAQELBQADggEBAJdqIVs4bq+FyfOtiY5QugUZdEQcT6KBj9CuOoQWxfDIZa9W vrj6xqigcQ7jNqsP5j5d1mEVq/DEWGv0wriH6fiylM49nLRW2cjPlj/JIZzPvdF/ OfZ7H17GRuMTtetZswmFdX/Ck7pxuyPDIJZwp/VxdAjA1MJlBRXHp3MwraRAhMX1 pvKjeBR9o5TuLS9S4A9QdsQ2ZAT0jTbaRh4XaNVHVD2ZYXDZGlE0BjbKe4F7SZ0r qcEZGeBb6YuHRHkvQZUZbkE3gAiGMFir/l0JE+vWaC7tITBiqzoU1fh1WqlABgpF qjOscz5HZbwFaqh5pC3LnXQT9uHXBfOb8Jr9NiY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAr/uuzLWhwESZJe/ZWh8X gppLwhA1gio4sxupHrLk+OnDXKjl0aUGHfXBlviTzNAuYqhrnYpvcWwFECpc2zg5 o50vuqSdFPAbDZA2NYLKViPnSBSK6u8uDARbRBT4UyUBEa7lArgJhpOgAdj2Ns1G 8IZV6Gv/yM6kEFy2UW1YwDlMquU3p1SL1/RwMrYxsIF804ksyZ5MyIcdborJrvX4 YXJgoT8PyWK+DuWxdEH9U3zLTx90YZpuh8YboynWsdMeGFyKn/0xJBHwT6r0uBda NEG6/dE0JlBpo69xs1Y0TENbbOet+JJZAAlOS2QDQ+HZQE6Y/CbNWxa8ojagS13h QwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 21483062621733196149934211512604084295 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust DV SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-30 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.sweetfactory.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22215812788844493645084898663468843488780224194185399752035945190640794752607321840613826829272007252325796226066668913558187340544927046853329733466383982159935618036334689173713269342526132186032283742900576093743113745583097654964793485616077401214456264897157711509995685152475292099912387886606652116115900181611224012250576996040197612019553338108453819784277904879743682706654191657376314051797629954991982083407071070147423275925313584739850556049960817487930335380690635019024676679298435353921338053864639287412532893300801758895271906110004068158797951010494363391030875871869733820970184020152215079346499 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sweetfactory.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sweetfactory.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcb.com/gt.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ad65228590d03be3a1498b37f9f10b1d5f17a077 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcb.com/gt.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (364 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (360 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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