www.tomatocrater.com
Issued by RapidSSL SHA256 CA - G3
About this certificate
This digital certificate with serial number 04:08:95 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.tomatocrater.com,OU=GT36121152+OU=See www.rapidssl.com/resources/cps (c)15+OU=Domain Control Validated - RapidSSL(R)
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:08:95Serial Number (int): 264341
Serial Number lenght: 19 bits, 3 octets
SubjectKeyId:
AuthorityKeyId: c3:9c:f3:fc:d3:46:08:34:bb:ce:46:7f:a0:7c:5b:f3:e2:08:cb:59
Fingerprint (sha1): 79:b1:1f:76:88:58:04:71:05:b1:6d:fa:47:0e:0d:1f:7a:d1:d3:d7
Fingerprint (sha256): 97:89:f8:d3:cc:7c:92:62:fb:52:e9:ff:a8:55:92:c3:ec:d0:79:83:ad:22:72:36:22:1d:ea:32:f9:63:3a:ff
Issuing Certificate URL: http://gv.symcb.com/gv.crt
Revocation information
OCSP Server: http://gv.symcd.comCRL Distribution Point: http://gv.symcb.com/gv.crl
Check the revocation status for certificate www.tomatocrater.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.tomatocrater.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.tomatocrater.com
tomatocrater.com
tomatocrater.com
Other certificates including the domain name tomatocrater.com
(limited to 100 certificates)
m.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
tomatocrater.com
www.tomatocrater.com
tomatocrater.com
*.m.tomatocrater.com
tomatocrater.com
tomatocrater.com
tomatocrater.com
m.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
www.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
www.tomatocrater.com
tomatocrater.com
tomatocrater.com
m.tomatocrater.com
www.tomatocrater.com
m.tomatocrater.com
*.m.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
tomatocrater.com
tomatocrater.com
m.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
www.tomatocrater.com
m.tomatocrater.com
tomatocrater.com
tomatocrater.com
tomatocrater.com
m.tomatocrater.com
tomatocrater.com
www.tomatocrater.com
tomatocrater.com
*.m.tomatocrater.com
tomatocrater.com
tomatocrater.com
tomatocrater.com
m.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
www.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
www.tomatocrater.com
tomatocrater.com
tomatocrater.com
m.tomatocrater.com
www.tomatocrater.com
m.tomatocrater.com
*.m.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
tomatocrater.com
tomatocrater.com
m.tomatocrater.com
tomatocrater.com
m.tomatocrater.com
www.tomatocrater.com
m.tomatocrater.com
tomatocrater.com
tomatocrater.com
Certificate
The complete raw certificate details for www.tomatocrater.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEvTCCA6WgAwIBAgIDBAiVMA0GCSqGSIb3DQEBCwUAMEcxCzAJBgNVBAYTAlVT MRYwFAYDVQQKEw1HZW9UcnVzdCBJbmMuMSAwHgYDVQQDExdSYXBpZFNTTCBTSEEy NTYgQ0EgLSBHMzAeFw0xNTA0MjgwNTU3MzJaFw0xNjA2MjkxMzU3MDVaMIGYMRMw EQYDVQQLEwpHVDM2MTIxMTUyMTEwLwYDVQQLEyhTZWUgd3d3LnJhcGlkc3NsLmNv bS9yZXNvdXJjZXMvY3BzIChjKTE1MS8wLQYDVQQLEyZEb21haW4gQ29udHJvbCBW YWxpZGF0ZWQgLSBSYXBpZFNTTChSKTEdMBsGA1UEAxMUd3d3LnRvbWF0b2NyYXRl ci5jb20wggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDaJyb84/GDV5kI qLekY81eGj3eYEZciS68z8jmgsDuaZKmyeJ09wqcJi71q1MydxKKxtHLHF0al80+ nTBBLHEqdsR2CPl3Lq4naPRefraRXsQ9fP6A/Zdu/Rt68xAzHLpz/kBvdEXXH08h okS2xqpnjIJmT+Z4qIHe1lTIrRePvBbQ7yFTjrRHiPtMF3GIiGPqDlHdZ3+7fAmw KmBeq4Esvfe0K998yGxePQjnJ9mKfxEBItr35X+IWeqZNvolMuhij3/MnU9WxLFv IhdQTY5V8y6GZls8sBFtUlzkWSZW59cG4zYIfb3l2lMgk/ZIvg+Q44re4cPpJRPv SufpoCelAgMBAAGjggFeMIIBWjAfBgNVHSMEGDAWgBTDnPP800YINLvORn+gfFvz 4gjLWTBXBggrBgEFBQcBAQRLMEkwHwYIKwYBBQUHMAGGE2h0dHA6Ly9ndi5zeW1j ZC5jb20wJgYIKwYBBQUHMAKGGmh0dHA6Ly9ndi5zeW1jYi5jb20vZ3YuY3J0MA4G A1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwMQYD VR0RBCowKIIUd3d3LnRvbWF0b2NyYXRlci5jb22CEHRvbWF0b2NyYXRlci5jb20w KwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL2d2LnN5bWNiLmNvbS9ndi5jcmwwDAYD VR0TAQH/BAIwADBBBgNVHSAEOjA4MDYGBmeBDAECATAsMCoGCCsGAQUFBwIBFh5o dHRwczovL3d3dy5yYXBpZHNzbC5jb20vbGVnYWwwDQYJKoZIhvcNAQELBQADggEB AA6+4evXcYc024gy/VvNP8ppiAR6Kmo7Eo7q+ZQjCLrftKjAiBJAd/NovTxXuoNU jOXZzdQfbTgem2qpcXeen251xwfTv+6Qfejh9Zm8dR8hNCJy89dY88H+GM4z72zs MhK2bEEAMI+g6ouxq8kASb4VFvcS3xAN57FUeErpDyxKmJK1cGQG6rnHag6rwheX EtRYxq8iMaZS+jvis6uT2aZg0LFe14Ba60uLBa3Nv7NrvjFTGV95+/IkbRawoOb5 bAf8i8Pn4dHZwkUmXXgYKckqZBOhV3MmIyaKoU/9rILFaoaj4kMnS7GWhuPXRRbT ukfrJaxZpmg9SrkuFVuzTpc= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2icm/OPxg1eZCKi3pGPN Xho93mBGXIkuvM/I5oLA7mmSpsnidPcKnCYu9atTMncSisbRyxxdGpfNPp0wQSxx KnbEdgj5dy6uJ2j0Xn62kV7EPXz+gP2Xbv0bevMQMxy6c/5Ab3RF1x9PIaJEtsaq Z4yCZk/meKiB3tZUyK0Xj7wW0O8hU460R4j7TBdxiIhj6g5R3Wd/u3wJsCpgXquB LL33tCvffMhsXj0I5yfZin8RASLa9+V/iFnqmTb6JTLoYo9/zJ1PVsSxbyIXUE2O VfMuhmZbPLARbVJc5FkmVufXBuM2CH295dpTIJP2SL4PkOOK3uHD6SUT70rn6aAn pQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 264341 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-04-28 05:57:32 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-06-29 13:57:05 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT36121152' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)15' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.tomatocrater.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27539257199478157601906209305858152925466347034826432008382286879630977400806585824062470137794679515241285052865837850753725230141445163938324283222393403319788911548943134527202840715922377375157572867939108490954555659198426784887948548630346092671902832983637022449807248230935297857052238563175867285244469132624572070126726747410898619545574993501924661619363257860865622290625300561785436662203649189938668811281211277746147827603867608000540535011801561747658382603103639304879157314656136593159617193436478437430993672211935895761589449330589260695456105377235120118149323807577652696406159183553738303350693 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39cf3fcd3460834bbce467fa07c5bf3e208cb59 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcb.com/gv.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tomatocrater.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tomatocrater.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcb.com/gv.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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