nl.monoqi.ch
Issued by thawte DV SSL SHA256 CA
About this certificate
This digital certificate with serial number 06:b1:c1:49:6b:97:45:80:20:64:c5:75:c6:f4:3e:ba was issued on by thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=nl.monoqi.ch
thawte, Inc.
Organization:
thawte, Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:b1:c1:49:6b:97:45:80:20:64:c5:75:c6:f4:3e:baSerial Number (int): 8898324840677300097811704775959658170
Serial Number lenght: 123 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 7d:29:31:2f:c1:1e:6e:ae:31:05:6a:b3:eb:1c:cd:a9:dd:ae:80:9a
Fingerprint (sha1): 1d:ba:1e:0b:db:7b:35:44:1f:46:e6:16:31:66:70:89:7a:69:89:a9
Fingerprint (sha256): 80:bb:cb:f7:b7:4b:39:9f:ad:a0:82:9c:69:db:70:de:1f:6a:5c:f0:63:d2:d8:f7:6a:e7:cb:7b:62:0c:02:0c
Issuing Certificate URL: http://tm.symcb.com/tm.crt
Revocation information
OCSP Server: http://tm.symcd.comCRL Distribution Point: http://tm.symcb.com/tm.crl
Check the revocation status for certificate nl.monoqi.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for nl.monoqi.ch
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
nl.monoqi.ch
Other certificates including the domain name monoqi.ch
(limited to 100 certificates)
monoqi.ch
lp.monoqi.ch
*.monoqi.ch
*.monoqi.ch
*.monoqi.ch
*.monoqi.ch
staging.monoqi.ch
monoqi.ch
www.monoqi.ch
www.monoqi.ch
*.monoqi.ch
monoqi.ch
monoqi.ch
testio.monoqi.com
lp.monoqi.ch
monoqi.ch
nl.monoqi.ch
*.monoqi.ch
monoqi.ch
monoqi.ch
designerfocus.monoqi.ch
monoqi.ch
www.monoqi.ch
testio.monoqi.ch
*.monoqi.ch
staging.monoqi.ch
testio.monoqi.ch
monoqi.ch
monoqi.de
testio.monoqi.ch
www.monoqi.ch
monoqi.ch
www.monoqi.ch
www.monoqi.ch
nl.monoqi.ch
monoqi.ch
lp.monoqi.ch
*.monoqi.ch
*.monoqi.ch
*.monoqi.ch
*.monoqi.ch
staging.monoqi.ch
monoqi.ch
www.monoqi.ch
www.monoqi.ch
*.monoqi.ch
monoqi.ch
monoqi.ch
testio.monoqi.com
lp.monoqi.ch
monoqi.ch
nl.monoqi.ch
*.monoqi.ch
monoqi.ch
monoqi.ch
designerfocus.monoqi.ch
monoqi.ch
www.monoqi.ch
testio.monoqi.ch
*.monoqi.ch
staging.monoqi.ch
testio.monoqi.ch
monoqi.ch
monoqi.de
testio.monoqi.ch
www.monoqi.ch
monoqi.ch
www.monoqi.ch
www.monoqi.ch
nl.monoqi.ch
monoqi.ch
Certificate
The complete raw certificate details for nl.monoqi.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIQBrHBSWuXRYAgZMV1xvQ+ujANBgkqhkiG9w0BAQsFADBl MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMR0wGwYDVQQLExRE b21haW4gVmFsaWRhdGVkIFNTTDEgMB4GA1UEAxMXdGhhd3RlIERWIFNTTCBTSEEy NTYgQ0EwHhcNMTYwMTEzMDAwMDAwWhcNMTcwMzAyMjM1OTU5WjAXMRUwEwYDVQQD DAxubC5tb25vcWkuY2gwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDA 9ViOMUQ/x7os0C9q+mrKDFkzwKggM+B6ptzRqFuCxMumHn1ooQzdfe2V7qUsr3Wl eAskqmxckVBwey6zKL1bjv+eLZm9/vytRvKQIpc5Ovx6k+dsgFQmEOunTWCCOSyA UC3l3ILt1MQ+2YxSoiZiPAppl5JqgFTkTTFKAwn+053v5kMOlobCVH1usASATYNh xjVQRK/k+2SidETOBJayb0Rnqi10/5xS89DlaA8GtmvjpXjAFAsrIBxZ5KYPiPPL 1f+kU/ihzcm4Y8UuErhlL/3TJGatm9EfhjMyOCEMbOnHJ2zFhLi/r/E4BG9JzgVR clYBAhUW/LVgJvU4I8zXt8a42xFhwPUACkChw31MWJJWclasLqGJTRlXObU/oc0C m5M8iXqIwZTpPuten8GqSSrECE4BH6rgXCliInY/fkC/gXdVqMDg3I8xRACg0ko9 rCLOAhX9ecvmAYlkc3ig8qrT4qWDAtigcOY+Tbtl9NVbtgMh8FkD1kmPV3nxbc19 GUFSJQXtIgfWxg1mTM5HY41UUMZ0lKrTw8ixAP5OyuWhccEZhmMi056L3fLRejRQ OboPeaxkL4hAoKcCdXuMISzUT55CNAlCS13RTqCNkpynfPjYns9wj7FWXX2JP395 KymoNtFbG7d3YvTZioVfWzG0Gyo6+ELbH6XFINxJTwIDAQABo4IBbjCCAWowFwYD VR0RBBAwDoIMbmwubW9ub3FpLmNoMAkGA1UdEwQCMAAwKwYDVR0fBCQwIjAgoB6g HIYaaHR0cDovL3RtLnN5bWNiLmNvbS90bS5jcmwwbgYDVR0gBGcwZTBjBgZngQwB AgEwWTAmBggrBgEFBQcCARYaaHR0cHM6Ly93d3cudGhhd3RlLmNvbS9jcHMwLwYI KwYBBQUHAgIwIwwhaHR0cHM6Ly93d3cudGhhd3RlLmNvbS9yZXBvc2l0b3J5MB8G A1UdIwQYMBaAFH0pMS/BHm6uMQVqs+sczandroCaMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwVwYIKwYBBQUHAQEESzBJMB8G CCsGAQUFBzABhhNodHRwOi8vdG0uc3ltY2QuY29tMCYGCCsGAQUFBzAChhpodHRw Oi8vdG0uc3ltY2IuY29tL3RtLmNydDANBgkqhkiG9w0BAQsFAAOCAQEAIEevCtz5 ZMR5v9Z/BBH6fS8+rWlv0/e7g+I1clo+29N9L/O+nE5vtHtQAZjsDUdCOSxKaoj1 hwvVpzM11Lx0E4RkkmVV3Y6ay1JHHUc9AT7L5HdRWmLCCDu1pQuImkQLlfCXvR/o maM+Y4LDckFQZTeKWDfpxQHn5RBVASEoKK4k2icNavPRa/xpxAYzguT6zBz74bcY ybFss+qvBAcqtgskKiA0zHcKP9aLNLrS0vchB6DDKfyiWHS79vWwNwH2rMQLBvlq WRpVO0NaghacWvKyYjtid2w27WN5tE+BL+I8fkcTFBAxVb6VJyRvdr+f2oCLQqF/ oo4I6iaFipdZSg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwPVYjjFEP8e6LNAvavpq ygxZM8CoIDPgeqbc0ahbgsTLph59aKEM3X3tle6lLK91pXgLJKpsXJFQcHsusyi9 W47/ni2Zvf78rUbykCKXOTr8epPnbIBUJhDrp01ggjksgFAt5dyC7dTEPtmMUqIm YjwKaZeSaoBU5E0xSgMJ/tOd7+ZDDpaGwlR9brAEgE2DYcY1UESv5PtkonREzgSW sm9EZ6otdP+cUvPQ5WgPBrZr46V4wBQLKyAcWeSmD4jzy9X/pFP4oc3JuGPFLhK4 ZS/90yRmrZvRH4YzMjghDGzpxydsxYS4v6/xOARvSc4FUXJWAQIVFvy1YCb1OCPM 17fGuNsRYcD1AApAocN9TFiSVnJWrC6hiU0ZVzm1P6HNApuTPIl6iMGU6T7rXp/B qkkqxAhOAR+q4FwpYiJ2P35Av4F3VajA4NyPMUQAoNJKPawizgIV/XnL5gGJZHN4 oPKq0+KlgwLYoHDmPk27ZfTVW7YDIfBZA9ZJj1d58W3NfRlBUiUF7SIH1sYNZkzO R2ONVFDGdJSq08PIsQD+TsrloXHBGYZjItOei93y0Xo0UDm6D3msZC+IQKCnAnV7 jCEs1E+eQjQJQktd0U6gjZKcp3z42J7PcI+xVl19iT9/eSspqDbRWxu3d2L02YqF X1sxtBsqOvhC2x+lxSDcSU8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8898324840677300097811704775959658170 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte DV SSL SHA256 CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-01-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-03-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'nl.monoqi.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 787201520535856871989568371987490614320484118111071946314269549988668904675939559760503246084839522474715347410147979559645716612021178243029555958647453845138562579521472162219815159257259354879873287779033221745519273446627100884902781580386261631380266286249447323089615823159488129564901158713906716329122956706238168267489320000495300974911531586162708487469652667941383067054133038714758185426947393532787284501022576774345605635391967699491395926560701594641059689618201079052588260598847305043988001081294758281685727770769891047578731340460474676871609370071119468022672260898600640966308972150136853908506260575892965155002851179631718166287052307933546360626943108734205029002984550478409476223676315659733213040727315394051231761802166696708870352396415258399675118366830011010698214454920292528368837823367509061260043216517510791763015172746460270373419728730783469402809751249596854496216152852548965294339046086498066216757704020050211005735443187787874695237586007779630040212403492384562570622150265000728671194298543596155058530641998614154247667339386582484043156591817274039415716712415660371690781826206153800516819708895341428294779847817006307550352886421604812942937348739530291128326604629977484837233903951 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'nl.monoqi.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tm.symcb.com/tm.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 7d29312fc11e6eae31056ab3eb1ccda9ddae809a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tm.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tm.symcb.com/tm.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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