*.townebankmortgage.com
Issued by RapidSSL SHA256 CA - G2
About this certificate
This digital certificate with serial number 6a:81:7f:94:7c:dc:09:24:51:2f:01:1f:25:5f:1e:93 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=*.townebankmortgage.com
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 6a:81:7f:94:7c:dc:09:24:51:2f:01:1f:25:5f:1e:93Serial Number (int): 141570561478381939234542822656523050643
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 4c:f4:bf:e8:3b:be:c2:24:f3:1b:47:3b:b5:6e:48:8e:16:ab:af:12
Fingerprint (sha1): 84:ca:40:21:12:c7:f9:72:7f:74:19:bf:a8:1a:b9:f3:36:50:ee:44
Fingerprint (sha256): 89:30:f5:9b:db:ad:0d:0e:d8:d1:c0:b7:87:c1:fa:e6:7e:36:95:ed:2a:aa:93:71:6b:8f:b6:2f:fd:8f:0d:dc
Issuing Certificate URL: http://gs.symcb.com/gs.crt
Revocation information
OCSP Server: http://gs.symcd.comCRL Distribution Point: http://gs.symcb.com/gs.crl
Check the revocation status for certificate *.townebankmortgage.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.townebankmortgage.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.townebankmortgage.com
townebankmortgage.com
townebankmortgage.com
Other certificates including the domain name townebankmortgage.com
(limited to 100 certificates)
www.townebankmortgage.com
*.townebankmortgage.com
www.townebankmortgage.com
www.townebankmortgage.com
townebankmortgage.com
*.townebankmortgage.com
*.townebankmortgage.com
www.townebankmortgage.com
www.townebankmortgage.com
townebankmortgage.com
townebankmortgage.com
townebankmortgage.com
*.townebankmortgage.com
apply.townebankmortgage.com
www.townebankmortgage.com
*.townebankmortgage.com
*.townebankmortgage.com
*.townebankmortgage.com
a.townebank.net
townebankmortgage.com
www.townebankmortgage.com
*.townebankmortgage.com
www.townebankmortgage.com
www.townebankmortgage.com
*.townebankmortgage.com
www.townebankmortgage.com
www.townebankmortgage.com
townebankmortgage.com
*.townebankmortgage.com
*.townebankmortgage.com
www.townebankmortgage.com
www.townebankmortgage.com
townebankmortgage.com
townebankmortgage.com
townebankmortgage.com
*.townebankmortgage.com
apply.townebankmortgage.com
www.townebankmortgage.com
*.townebankmortgage.com
*.townebankmortgage.com
*.townebankmortgage.com
a.townebank.net
townebankmortgage.com
www.townebankmortgage.com
*.townebankmortgage.com
www.townebankmortgage.com
www.townebankmortgage.com
Certificate
The complete raw certificate details for *.townebankmortgage.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEmzCCA4OgAwIBAgIQaoF/lHzcCSRRLwEfJV8ekzANBgkqhkiG9w0BAQsFADBH MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEgMB4GA1UEAxMX UmFwaWRTU0wgU0hBMjU2IENBIC0gRzIwHhcNMTcwMjEzMDAwMDAwWhcNMTgwNDE0 MjM1OTU5WjAiMSAwHgYDVQQDDBcqLnRvd25lYmFua21vcnRnYWdlLmNvbTCCASIw DQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMCMt6roP65xb//dy5RC7zK1fYXr c26XUJ1Ji2q/F972E5wVaSX01DJqlrVfS2D8urgOMFDR4QMKB0mUkeKWwGKkyIFX MLrAz2ITQlVpYruSfCmF37klwezRAzz74gMzhsvWEJlq/iaZaR7udSNdRSBRFLO6 3zN7znf/0ukCAUVTtpvPn9SmM3ZAJYZuK7C7KEAGrpwSnqDldgWZvbp87xOBJhD5 cSCLdkpVyOWiaSZS9cOK/Cs9vccx6ancQMUrlzHraOcV9rqnG3pdV2UBvYMfLoOq UPCl5WqHMTcvaLu7TA7M1VxTwZToP4ysGQkugBZZu2wf4LdFOBIvnnLOIdMCAwEA AaOCAaYwggGiMDkGA1UdEQQyMDCCFyoudG93bmViYW5rbW9ydGdhZ2UuY29tghV0 b3duZWJhbmttb3J0Z2FnZS5jb20wCQYDVR0TBAIwADArBgNVHR8EJDAiMCCgHqAc hhpodHRwOi8vZ3Muc3ltY2IuY29tL2dzLmNybDBvBgNVHSAEaDBmMGQGBmeBDAEC ATBaMCoGCCsGAQUFBwIBFh5odHRwczovL3d3dy5yYXBpZHNzbC5jb20vbGVnYWww LAYIKwYBBQUHAgIwIAweaHR0cHM6Ly93d3cucmFwaWRzc2wuY29tL2xlZ2FsMB8G A1UdIwQYMBaAFEz0v+g7vsIk8xtHO7VuSI4Wq68SMA4GA1UdDwEB/wQEAwIFoDAd BgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwVwYIKwYBBQUHAQEESzBJMB8G CCsGAQUFBzABhhNodHRwOi8vZ3Muc3ltY2QuY29tMCYGCCsGAQUFBzAChhpodHRw Oi8vZ3Muc3ltY2IuY29tL2dzLmNydDATBgorBgEEAdZ5AgQDAQH/BAIFADANBgkq hkiG9w0BAQsFAAOCAQEADtUozGLqwBK1xp5gz6O9Rfj5ZNWtIfuzZC5CBk7lnNNx K0tFuF3ZG/9Oq4xrnwZPavnxYx9v7cYDuowWBcRALagSpfgj9q/868ev8qQRx9Gh OZFK9pHtRfv6Al20sjBNuAThcZHYu2XjAiG0xMGs4oLR6YyxwIe2Nemqpn9Ce3c7 OfvBPZ4IsWvbGIG9ZFzejE1m1HETGv62oufA5ZUKhW9Yaiyy458wc0VfcTF3rgFU lVL+JjGrKds7ixQuUZJlpy9Y4D+lMp6p4oP8kPAssHjvivp49NwfLGCVPbTY6Ksq 9tT6DxzLHvSw8/AhUYGwBDfIYoi+YPCs43xEVCx2/Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwIy3qug/rnFv/93LlELv MrV9hetzbpdQnUmLar8X3vYTnBVpJfTUMmqWtV9LYPy6uA4wUNHhAwoHSZSR4pbA YqTIgVcwusDPYhNCVWliu5J8KYXfuSXB7NEDPPviAzOGy9YQmWr+JplpHu51I11F IFEUs7rfM3vOd//S6QIBRVO2m8+f1KYzdkAlhm4rsLsoQAaunBKeoOV2BZm9unzv E4EmEPlxIIt2SlXI5aJpJlL1w4r8Kz29xzHpqdxAxSuXMeto5xX2uqcbel1XZQG9 gx8ug6pQ8KXlaocxNy9ou7tMDszVXFPBlOg/jKwZCS6AFlm7bB/gt0U4Ei+ecs4h 0wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 141570561478381939234542822656523050643 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-13 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-14 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.townebankmortgage.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24307144915075119730630110338814518520152574253491418217890466710829419019375515003587809230107374647290082216329479570382001834943397919502739062368810293765140456738259798563202420130823788469423626807153222297460457162938299190311387146388996298564729254806338835325850061672284974169793982290891588684949357196578095921550259636258445198554582884741110105942831135685057941827576185728202288290420185984391068346619777163064130249972046156562345395507957473925752345823881837123246740216781728434949101858438825175634121535345700823412480737960651962092634663078988804946986744493516685895170328575555169143366099 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.townebankmortgage.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'townebankmortgage.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gs.symcb.com/gs.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 4cf4bfe83bbec224f31b473bb56e488e16abaf12 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gs.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gs.symcb.com/gs.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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