www.mnnewbornscreening.com

Issued by thawte DV SSL CA - G2

About this certificate


This digital certificate with serial number 2d:01:aa:cf:f1:31:02:4c:0e:e8:2a:fb:6d:de:58:fa was issued on by thawte, Inc. .

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

www.mnnewbornscreening.com

thawte, Inc.

Organization: thawte, Inc.
Organization unit: Domain Validated SSL

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 2d:01:aa:cf:f1:31:02:4c:0e:e8:2a:fb:6d:de:58:fa
Serial Number (int): 59823916591687145924854750609206565114
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId:
AuthorityKeyId: 9f:b8:c1:a9:6c:f2:f5:c0:22:2a:94:ed:5c:99:ac:d4:ec:d7:c6:07

Fingerprint (sha1): 1e:85:23:43:ec:94:3c:77:d9:24:70:e9:b7:c9:6d:c8:bb:c5:68:93
Fingerprint (sha256): e5:1c:e3:33:5a:0a:31:77:a5:63:3d:3e:2b:b5:d4:f6:cd:a4:92:dd:22:61:04:39:dc:30:f8:39:75:54:eb:07

Issuing Certificate URL: http://tn.symcb.com/tn.crt

Revocation information

OCSP Server: http://tn.symcd.com
CRL Distribution Point: http://tn.symcb.com/tn.crl

Check the revocation status for the current certificate on www.mnnewbornscreening.com
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any other subject alternative names besides the common name of the subject: www.mnnewbornscreening.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFlDCCBHygAwIBAgIQLQGqz/ExAkwO6Cr7bd5Y+jANBgkqhkiG9w0BAQsFADBj MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMR0wGwYDVQQLExRE b21haW4gVmFsaWRhdGVkIFNTTDEeMBwGA1UEAxMVdGhhd3RlIERWIFNTTCBDQSAt IEcyMB4XDTE0MTEyNDAwMDAwMFoXDTE4MDcxMjIzNTk1OVowJTEjMCEGA1UEAwwa d3d3Lm1ubmV3Ym9ybnNjcmVlbmluZy5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4IC DwAwggIKAoICAQC9Lrs4qi84p50A2wyVggGCGq2wWYDbD6/os8Y/xvM3UKmpU2mN kI4CeHZlfjFGhEuRF5o61sMhlk8FfsybZC6ORvvRtQz5Bs5PG0gepARUQMW1j6P6 1EB7rGTqCrmpDHyX+HPp+3C8gPPEmiF6r5Xz5cEiIIpBwWJbKcE2Jo1P4PhrP+ad 9PcIYWq7smJ9bRsiz+iE6A0semu4QoLLifHsCPiXccCFf5KW6tNcRYoAlIPM4KUD 3gUS46KSZEKf9mQTKMYSxmeXgwQRei5OmT6c45J1SdzpJKvfo158OfOvhgt3JNZ+ AquCpOUpRXsm3sNyNweq9QQDBhY+BR9s2UdN6PLzpDyOIN9ZB4IrVoCjH4ZeuaKH 7cJHy4IyNrnqzc+Hn6yh83H4CNoNSfAIdHutI6FxG1OUGQun0oiNaPHT7USoFq8n nCsAiKgqgDlSkoBKPVjjVZXMEzzUil6P+5Xr86Du3XPn+nUUBbVvcpHOW+pkj87P 7cd2Sdi6IeXtuLHzcu5v5r66lq+IeFXDwlyVsuNEo+KKPE91HQrGSfIfFEYgOh2d cJruJMGJ0x3p8L4D367aQ0/PHwpmKvPCiVQIJmQWx9AERMEQy5X8jB9BKcqaSL5m 9DUf7B26WptALDQ5p/4150Sgf/Fi8N+79pU1a/gjzmL4qkoXfa9BG8jjcwIDAQAB o4IBgDCCAXwwJQYDVR0RBB4wHIIad3d3Lm1ubmV3Ym9ybnNjcmVlbmluZy5jb20w CQYDVR0TBAIwADArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vdG4uc3ltY2IuY29t L3RuLmNybDByBgNVHSAEazBpMGcGCmCGSAGG+EUBBzYwWTAmBggrBgEFBQcCARYa aHR0cHM6Ly93d3cudGhhd3RlLmNvbS9jcHMwLwYIKwYBBQUHAgIwIwwhaHR0cHM6 Ly93d3cudGhhd3RlLmNvbS9yZXBvc2l0b3J5MB8GA1UdIwQYMBaAFJ+4wals8vXA IiqU7VyZrNTs18YHMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcD AQYIKwYBBQUHAwIwVwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8v dG4uc3ltY2QuY29tMCYGCCsGAQUFBzAChhpodHRwOi8vdG4uc3ltY2IuY29tL3Ru LmNydDANBgkqhkiG9w0BAQsFAAOCAQEAvzYE+Ej60S7e/i0SABY0sXvRbLRW64uB IXdGgOnLV2u8S0iRAlvS1bo+e0fTXVoAzE7RCBZcPLwv7f5hw+7DpQ859PrpL+DB eLoMLtrKPbEUzZ9/tVMZt/Iuv8+d/3i05jnS9CZQ6uJmUmsQi/Mu7CUHOOQIrCoW KRD0AsQnw0EqS7Z5QuLjEimSWsOV6dqMKFq3TkjGQAXmhiWYdboSEuwcODB5kgbh 2sbWnJ4lLhP3+ICPvUFA5/4Z6US1Hmy65aWWQUz0G7xf1jp474xJJOanXQ5TissS Qq07leJb42gk1V/TeLtezVT9/V6vXW/krd2/Q4Kz1Mc+fCSh/soe3A== -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvS67OKovOKedANsMlYIB ghqtsFmA2w+v6LPGP8bzN1CpqVNpjZCOAnh2ZX4xRoRLkReaOtbDIZZPBX7Mm2Qu jkb70bUM+QbOTxtIHqQEVEDFtY+j+tRAe6xk6gq5qQx8l/hz6ftwvIDzxJoheq+V 8+XBIiCKQcFiWynBNiaNT+D4az/mnfT3CGFqu7JifW0bIs/ohOgNLHpruEKCy4nx 7Aj4l3HAhX+SlurTXEWKAJSDzOClA94FEuOikmRCn/ZkEyjGEsZnl4MEEXouTpk+ nOOSdUnc6SSr36NefDnzr4YLdyTWfgKrgqTlKUV7Jt7DcjcHqvUEAwYWPgUfbNlH Tejy86Q8jiDfWQeCK1aAox+GXrmih+3CR8uCMja56s3Ph5+sofNx+AjaDUnwCHR7 rSOhcRtTlBkLp9KIjWjx0+1EqBavJ5wrAIioKoA5UpKASj1Y41WVzBM81Ipej/uV 6/Og7t1z5/p1FAW1b3KRzlvqZI/Oz+3HdknYuiHl7bix83Lub+a+upaviHhVw8Jc lbLjRKPiijxPdR0KxknyHxRGIDodnXCa7iTBidMd6fC+A9+u2kNPzx8KZirzwolU CCZkFsfQBETBEMuV/IwfQSnKmki+ZvQ1H+wdulqbQCw0Oaf+NedEoH/xYvDfu/aV NWv4I85i+KpKF32vQRvI43MCAwEAAQ== -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 59823916591687145924854750609206565114 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte DV SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-11-24 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-12 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.mnnewbornscreening.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 771797444508299117347663255518076066170898538477839524499367896272994912882016150933013812407520834393802804800046555483881488988990382318363511126641143481880174932697328402086168792002854581775427013833795622284991692467156458486194158057193703762533286118903491657826807463319587374010150521786778137433872727937061520248208768707833111743835854398826119125039347056227298247575061215059973662834714304233828522814960621050817943859150706064942892901062468357376467860250016773757438214888916484985891078667833783896213416555518265808459449111588683952755452227925239325123799646273176279167159135664254833808639187602652711169743425630602983469702287848468493850286285090602107957195735087784156112800707624905939579106887461781093704562656873118529678807645324544496853510097799710723941615679568032047806125748151390498563088711715053003446012811493072491600497802172588374495702416853386317309648773557448344925584936060564385574491849224670686814566546876311548243396969502987745872741367515430214804993782561620492059327774459634211447954976173827170046948693351275236411980581832352752022462103284845007943911604567097128031234499165022869357579707020320724180027910521374366586995796813162939869135109590514942567141401459 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mnnewbornscreening.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tn.symcb.com/tn.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (107 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9fb8c1a96cf2f5c0222a94ed5c99acd4ecd7c607 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tn.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tn.symcb.com/tn.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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