sso.hwl.com
Issued by Thawte DV SSL CA
About this certificate
This digital certificate with serial number 69:21:c8:fc:52:fb:7b:05:3e:d0:9c:59:8c:bb:ed:36 was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=sso.hwl.com,OU=Go to https://www.thawte.com/repository/index.html+OU=Thawte SSL123 certificate+OU=Domain Validated
Thawte, Inc.
Organization:
Thawte, Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 69:21:c8:fc:52:fb:7b:05:3e:d0:9c:59:8c:bb:ed:36Serial Number (int): 139744361826847292029250081158759968054
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: ab:44:e4:5d:ec:83:c7:d9:c0:85:9f:f7:e1:c6:97:90:b0:8c:3f:98
Fingerprint (sha1): ce:23:e1:bc:09:25:2a:f9:78:2f:82:41:ab:14:bb:82:5f:82:c1:0e
Fingerprint (sha256): a4:2c:14:b3:10:f5:68:04:11:2e:8b:c5:96:44:2f:e8:09:81:43:4f:e4:47:55:1c:63:14:44:1c:94:ae:e4:0b
Issuing Certificate URL: http://svr-dv-aia.thawte.com/ThawteDV.cer
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-dv-crl.thawte.com/ThawteDV.crl
Check the revocation status for certificate sso.hwl.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sso.hwl.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sso.hwl.com
Other certificates including the domain name hwl.com
(limited to 100 certificates)
lsweb.hwl.com
*.suapps01.hwl.com
lsweb.hwl.com
servicedesk.hwl.com
lsweb.hwl.com
directory.hwl.com
*.hwl.com
oma.hwl.com
*.hwl.com
lsweb.hwl.com
sip.hwl.com
servicedesk.hwl.com
servicedesk.hwl.com
*.hwl.com
hotelbooking.hwl.com
oma.hwl.com
gisd.hwl.com
oma.hwl.com
*.hwl.com
*.hwl.com
lsweb.hwl.com
*.hwl.com
oma.hwl.com
mail.hwl.com
servicedesk.hwl.com
*.hwl.com
mail.hwl.com
*.hwl.com
sso.hwl.com
hotelbooking.hwl.com
hotelbooking.hwl.com
*.hwl.com
sip.hwl.com
mail.hwl.com
mail.hwl.com
*.hwl.com
lsweb.hwl.com
servicedesk.hwl.com
sip.hwl.com
gisd.hwl.com
lsweb.hwl.com
*.hwl.com
*.hwl.com
*.suapps01.hwl.com
lsweb.hwl.com
servicedesk.hwl.com
lsweb.hwl.com
directory.hwl.com
*.hwl.com
oma.hwl.com
*.hwl.com
lsweb.hwl.com
sip.hwl.com
servicedesk.hwl.com
servicedesk.hwl.com
*.hwl.com
hotelbooking.hwl.com
oma.hwl.com
gisd.hwl.com
oma.hwl.com
*.hwl.com
*.hwl.com
lsweb.hwl.com
*.hwl.com
oma.hwl.com
mail.hwl.com
servicedesk.hwl.com
*.hwl.com
mail.hwl.com
*.hwl.com
sso.hwl.com
hotelbooking.hwl.com
hotelbooking.hwl.com
*.hwl.com
sip.hwl.com
mail.hwl.com
mail.hwl.com
*.hwl.com
lsweb.hwl.com
servicedesk.hwl.com
sip.hwl.com
gisd.hwl.com
lsweb.hwl.com
*.hwl.com
*.hwl.com
Certificate
The complete raw certificate details for sso.hwl.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIQaSHI/FL7ewU+0JxZjLvtNjANBgkqhkiG9w0BAQUFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMR0wGwYDVQQLExRE b21haW4gVmFsaWRhdGVkIFNTTDEZMBcGA1UEAxMQVGhhd3RlIERWIFNTTCBDQTAe Fw0xMzA1MzAwMDAwMDBaFw0xNTA2MTUyMzU5NTlaMIGSMTswOQYDVQQLEzJHbyB0 byBodHRwczovL3d3dy50aGF3dGUuY29tL3JlcG9zaXRvcnkvaW5kZXguaHRtbDEi MCAGA1UECxMZVGhhd3RlIFNTTDEyMyBjZXJ0aWZpY2F0ZTEZMBcGA1UECxMQRG9t YWluIFZhbGlkYXRlZDEUMBIGA1UEAxMLc3NvLmh3bC5jb20wggEiMA0GCSqGSIb3 DQEBAQUAA4IBDwAwggEKAoIBAQC7KyKpryjTAtoJLYC7s8yVFXhaAba52kD9tL0g SsnKasjvvh8pVW2DKn4UvhfjmNfu2d+fQvRX0Q8IzTR7kU85HM48vMz1Jv26qb3O Y2/LdYItikdAcT7+gbNKhK1rBhoH6r5cfMLvXiU9BpbSIhAgVlZwq9OfJxpN/nJW uQYoFiOkDAdN5ODGqCxmM6Shh3UIt+v16pTTSQGjJ6A+sel2yQXLdM1/RB2E/D/4 wiVwm+Iax3nhy2NA6vrWXCUvSPPY4WFxbrVzvRIaqgsDIo2qLhb2GJDa3ObtF+5C RO4TRUUK2UlzMGPUZYyf0JL5PDlHMoeRvZ77+f9WgQQDgvt/AgMBAAGjggFhMIIB XTAWBgNVHREEDzANggtzc28uaHdsLmNvbTAJBgNVHRMEAjAAMDoGA1UdHwQzMDEw L6AtoCuGKWh0dHA6Ly9zdnItZHYtY3JsLnRoYXd0ZS5jb20vVGhhd3RlRFYuY3Js MEEGA1UdIAQ6MDgwNgYKYIZIAYb4RQEHNjAoMCYGCCsGAQUFBwIBFhpodHRwczov L3d3dy50aGF3dGUuY29tL2NwczAfBgNVHSMEGDAWgBSrRORd7IPH2cCFn/fhxpeQ sIw/mDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUF BwMCMGkGCCsGAQUFBwEBBF0wWzAiBggrBgEFBQcwAYYWaHR0cDovL29jc3AudGhh d3RlLmNvbTA1BggrBgEFBQcwAoYpaHR0cDovL3N2ci1kdi1haWEudGhhd3RlLmNv bS9UaGF3dGVEVi5jZXIwDQYJKoZIhvcNAQEFBQADggEBAH1oZnwOxV3raZyoNW2F 77SXxBHd37IQ+W6LCK2SozQEgpuuSym06ZxGXMJQcFXbBEZRo+NinYWGSJMQYTJa rmXVznZ62l0ctDZge6go4dcHUivTwBwS3H95/V2MWRes+OhnqHyH7JzHtglLuym/ Oneg8BJHnaWXf2iKsUv/enA1eEWKMuRarRpjScN46xiAkIBSiMX9lahJXwndbGeG U3Xyo8PFnchWaFi4CgujpBuRc62jTVXnsXbQ1vu18/Z8eCfSFmh1+KFACIChiKOn DlBtvdcQ0BU7iHKn4DILr6/OhSokE+O3RWFpGRWxUMKxvB/6AWrAxTLxvRhfEA/w 0vk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAuysiqa8o0wLaCS2Au7PM lRV4WgG2udpA/bS9IErJymrI774fKVVtgyp+FL4X45jX7tnfn0L0V9EPCM00e5FP ORzOPLzM9Sb9uqm9zmNvy3WCLYpHQHE+/oGzSoStawYaB+q+XHzC714lPQaW0iIQ IFZWcKvTnycaTf5yVrkGKBYjpAwHTeTgxqgsZjOkoYd1CLfr9eqU00kBoyegPrHp dskFy3TNf0QdhPw/+MIlcJviGsd54ctjQOr61lwlL0jz2OFhcW61c70SGqoLAyKN qi4W9hiQ2tzm7RfuQkTuE0VFCtlJczBj1GWMn9CS+Tw5RzKHkb2e+/n/VoEEA4L7 fwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 139744361826847292029250081158759968054 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte DV SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-05-30 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-06-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go to https://www.thawte.com/repository/index.html' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL123 certificate' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sso.hwl.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23627833887995019423515581797987114325615255457439029926483027637433297569204200933562840098555237153186255519067001901977848854472452397554219263479630435270931241638660263595305811522175376068895916028571895606618100197660466687554380835212005997285378300295304105651048101506560240969786904517801094794830221171219850129090372849166366506095090685576696686852349704968699035639748175135644393173002161574135872673898037289661269189284034626037688082947238890450749877964262609163234999736799611595735119971206032820459740392461438891061510871041394498646112559529039479365757363032037163096779965345643034705066879 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sso.hwl.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-dv-crl.thawte.com/ThawteDV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ab44e45dec83c7d9c0859ff7e1c69790b08c3f98 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-dv-aia.thawte.com/ThawteDV.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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