*.worcesterma.gov
Issued by RapidSSL SHA256 CA
About this certificate
This digital certificate with serial number 65:76:7d:0f:24:c3:0b:47:c3:01:e2:52:28:c1:12:16 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=*.worcesterma.gov
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 65:76:7d:0f:24:c3:0b:47:c3:01:e2:52:28:c1:12:16Serial Number (int): 134867255104583761154414346082239713814
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 97:c2:27:50:9e:c2:c9:ec:0c:88:32:c8:7c:ad:e2:a6:01:4f:da:6f
Fingerprint (sha1): 63:c7:aa:c5:4e:c5:3f:7b:e8:32:27:ae:69:25:0b:ff:aa:32:01:16
Fingerprint (sha256): 9f:0c:92:bb:d5:98:92:06:10:3b:d9:e3:5d:04:f4:24:69:81:db:08:2a:3c:d4:75:62:9f:aa:48:b6:e3:fc:f3
Issuing Certificate URL: http://gp.symcb.com/gp.crt
Revocation information
OCSP Server: http://gp.symcd.comCRL Distribution Point: http://gp.symcb.com/gp.crl
Check the revocation status for certificate *.worcesterma.gov
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.worcesterma.gov
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.worcesterma.gov
worcesterma.gov
worcesterma.gov
Other certificates including the domain name worcesterma.gov
(limited to 100 certificates)
cag.worcesterma.gov
sustainabilitydashboard.cambridgema.gov
opendata.worcesterma.gov
*.worcesterma.gov
*.worcesterma.gov
now-next.worcesterma.gov
opendata.worcesterma.gov
*.worcesterma.gov
worcesterma.gov
gisdata.worcesterma.gov
worcesterma.gov
green.worcesterma.gov
opendata.worcesterma.gov
now-next.worcesterma.gov
gisdata.worcesterma.gov
remote.worcesterma.gov
opendata.worcesterma.gov
remote.worcesterma.gov
*.worcesterma.gov
*.worcesterma.gov
*.worcesterma.gov
sustainabilitydashboard.cambridgema.gov
worcesterwifi.worcesterma.gov
cowcex2.worcesterma.gov
worcesterma.gov
opendata.worcesterma.gov
sustainabilitydashboard.cambridgema.gov
*.worcesterma.gov
*.worcesterma.gov
now-next.worcesterma.gov
cowcex1.worcesterma.gov
sustainabilitydashboard.cambridgema.gov
opendata.worcesterma.gov
*.worcesterma.gov
*.worcesterma.gov
now-next.worcesterma.gov
opendata.worcesterma.gov
*.worcesterma.gov
worcesterma.gov
gisdata.worcesterma.gov
worcesterma.gov
green.worcesterma.gov
opendata.worcesterma.gov
now-next.worcesterma.gov
gisdata.worcesterma.gov
remote.worcesterma.gov
opendata.worcesterma.gov
remote.worcesterma.gov
*.worcesterma.gov
*.worcesterma.gov
*.worcesterma.gov
sustainabilitydashboard.cambridgema.gov
worcesterwifi.worcesterma.gov
cowcex2.worcesterma.gov
worcesterma.gov
opendata.worcesterma.gov
sustainabilitydashboard.cambridgema.gov
*.worcesterma.gov
*.worcesterma.gov
now-next.worcesterma.gov
cowcex1.worcesterma.gov
Certificate
The complete raw certificate details for *.worcesterma.gov in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEhDCCA2ygAwIBAgIQZXZ9DyTDC0fDAeJSKMESFjANBgkqhkiG9w0BAQsFADBC MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEbMBkGA1UEAxMS UmFwaWRTU0wgU0hBMjU2IENBMB4XDTE2MDMyODAwMDAwMFoXDTE5MDMyODIzNTk1 OVowHDEaMBgGA1UEAwwRKi53b3JjZXN0ZXJtYS5nb3YwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQC4Jhi5Q9dVNnyez6yCcJ+XVo+3SgWn6zYkdZJRxTAq Ydz9wrkplLbR0UzbdLoiCeaFpa3DweipK1wo1SweRvLjLfjdtAgcFUqzbL9+76Qg wGlr+tY1P9yDOm4cep8qkc/DZiwalDH7Nt0Od94Z/J2ZgSMIhPKIFoScT6d4j/SU ZY5i1QYBcH7HvgKuC9DEg/BWB7Jst+UTZonc9m79bkydAZ+YYOmTLcXfBw5LrMRD TDcm83m48wrMChzC0Pgoiu9zSQZbS8Wa80T159PZ4nv/w6KKpRcvMaLEmp7T4UPP WCObJ2VX99vbitYUOoHtBWKcZV8LgAJcKw7uGmYIcJrZAgMBAAGjggGaMIIBljAt BgNVHREEJjAkghEqLndvcmNlc3Rlcm1hLmdvdoIPd29yY2VzdGVybWEuZ292MAkG A1UdEwQCMAAwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL2dwLnN5bWNiLmNvbS9n cC5jcmwwbwYDVR0gBGgwZjBkBgZngQwBAgEwWjAqBggrBgEFBQcCARYeaHR0cHM6 Ly93d3cucmFwaWRzc2wuY29tL2xlZ2FsMCwGCCsGAQUFBwICMCAMHmh0dHBzOi8v d3d3LnJhcGlkc3NsLmNvbS9sZWdhbDAfBgNVHSMEGDAWgBSXwidQnsLJ7AyIMsh8 reKmAU/abzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsG AQUFBwMCMFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcwAYYTaHR0cDovL2dwLnN5 bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL2dwLnN5bWNiLmNvbS9ncC5jcnQw EwYKKwYBBAHWeQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAJH27VRy8gUV /6hGqwUeH4lCnKYqDzjD2RrxRINzqRheifRo+KxyU3IuX3DuNH95/B33/fAjJQ5R iYPnSnT+g8vR3KX5QHouggCwQJccE4EybPnjuJ7RW2qvIflUqRD6AyXzxGA7wSPN wR5q/yBJK5+u6GN4Rzh8CtGAwecXbVBzk13Uy+1J+ZRZZKUDKnegSCivFQYnfW4Y 02YaAbTIFniQ+5dS0LUA/u1OJag9+/wLXX/0+mm1wmS2X7EaVN23CmJPCS9Vfq8t +lhqITfwScueVGeNyqpu1ZkU8nFkfMi4O+nASknA0FjbypxQ2CAB2ZMADdhLleFD seM3EdhlLKY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuCYYuUPXVTZ8ns+sgnCf l1aPt0oFp+s2JHWSUcUwKmHc/cK5KZS20dFM23S6IgnmhaWtw8HoqStcKNUsHkby 4y343bQIHBVKs2y/fu+kIMBpa/rWNT/cgzpuHHqfKpHPw2YsGpQx+zbdDnfeGfyd mYEjCITyiBaEnE+neI/0lGWOYtUGAXB+x74CrgvQxIPwVgeybLflE2aJ3PZu/W5M nQGfmGDpky3F3wcOS6zEQ0w3JvN5uPMKzAocwtD4KIrvc0kGW0vFmvNE9efT2eJ7 /8OiiqUXLzGixJqe0+FDz1gjmydlV/fb24rWFDqB7QVinGVfC4ACXCsO7hpmCHCa 2QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 134867255104583761154414346082239713814 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-03-28 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-28 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.worcesterma.gov' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23246634236002217692461769421462933409243309707345339011683167563719625894459585966608503980525796741056302261434550025214086595001348688922856262179711345427687469591927507853123858388237325751553658151089555131827234747543975814810062888993023186487375805294831277876758323506899459608484374245226466089195662281183842015349634341736656147824222485179367468903560400121393926900756024899716200135113293722359002614160884582610286087903893389177704043928317974071346424673654685678579045975700230834415184287094692140987127202923109652309819545598772874277510111901604992146923458482244199004346754140340067576617689 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.worcesterma.gov' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'worcesterma.gov' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 97c227509ec2c9ec0c8832c87cade2a6014fda6f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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