clients.robert-rottensteiner.com
Issued by GeoTrust DV SSL CA - G4
About this certificate
This digital certificate with serial number 01:fb:e0 was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=clients.robert-rottensteiner.com,OU=GT71420732+OU=See www.geotrust.com/resources/cps (c)15+OU=Domain Control Validated - QuickSSL(R)
GeoTrust Inc.
Organization:
GeoTrust Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:fb:e0Serial Number (int): 130016
Serial Number lenght: 17 bits, 3 octets
SubjectKeyId:
AuthorityKeyId: 0b:50:ec:77:ef:2a:9b:ff:ec:03:a1:0a:ff:ad:c6:e4:2a:18:c7:3e
Fingerprint (sha1): c3:67:4c:de:09:ef:ae:6b:7c:0f:c2:f1:6e:9f:1a:62:89:21:e6:5c
Fingerprint (sha256): b2:fe:71:fc:0c:74:e0:87:6b:0f:dd:97:b4:6d:d9:4f:c0:89:f5:f7:7f:34:d1:15:bb:3e:b1:e1:f8:e4:e9:ff
Issuing Certificate URL: http://gu.symcb.com/gu.crt
Revocation information
OCSP Server: http://gu.symcd.comCRL Distribution Point: http://gu.symcb.com/gu.crl
Check the revocation status for certificate clients.robert-rottensteiner.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for clients.robert-rottensteiner.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
clients.robert-rottensteiner.com
Other certificates including the domain name robert-rottensteiner.com
(limited to 100 certificates)
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
robert-rottensteiner.com
clients.robert-rottensteiner.com
clients.robert-rottensteiner.com
Certificate
The complete raw certificate details for clients.robert-rottensteiner.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE9zCCA9+gAwIBAgIDAfvgMA0GCSqGSIb3DQEBCwUAMGYxCzAJBgNVBAYTAlVT MRYwFAYDVQQKEw1HZW9UcnVzdCBJbmMuMR0wGwYDVQQLExREb21haW4gVmFsaWRh dGVkIFNTTDEgMB4GA1UEAxMXR2VvVHJ1c3QgRFYgU1NMIENBIC0gRzQwHhcNMTUw ODE5MTIxMjA5WhcNMTYwOTE5MTcwMzEwWjCBpDETMBEGA1UECxMKR1Q3MTQyMDcz MjExMC8GA1UECxMoU2VlIHd3dy5nZW90cnVzdC5jb20vcmVzb3VyY2VzL2NwcyAo YykxNTEvMC0GA1UECxMmRG9tYWluIENvbnRyb2wgVmFsaWRhdGVkIC0gUXVpY2tT U0woUikxKTAnBgNVBAMTIGNsaWVudHMucm9iZXJ0LXJvdHRlbnN0ZWluZXIuY29t MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LPaEhEjajQiZFVMyuU6 kzc6G6i5fbUGcHOjYc3JVRy/Yi8d0m+1Yd41VhwfqgF0Xr1Ieq2Vm9MaMtNpyiAa hE+n6pKjs5t/XNQEhWDaecZj/TwvOwQR0GxdpV3dXB6ydma2WTQ6Dgd+lGVEbsUK AbFzlzZExWu5GJj+5L5O5f3msW05zlM5VSJZuqrmgISLuedM2qKghq9sOxgFt+mp BScCYYq1MAPjfIkrLfoWCX1ObVxdyS/bUxVRj395lUi40FO+8a/XC7XgGusHpSy0 0phhG+MI7YGJhhgK5V+BDfHV+CvujpMMzQs/3xV8cM/t0yvxHjIFyHsiWay9RDLp +wIDAQABo4IBbTCCAWkwHwYDVR0jBBgwFoAUC1Dsd+8qm//sA6EK/63G5CoYxz4w VwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8vZ3Uuc3ltY2QuY29t MCYGCCsGAQUFBzAChhpodHRwOi8vZ3Uuc3ltY2IuY29tL2d1LmNydDAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMCsGA1UdEQQk MCKCIGNsaWVudHMucm9iZXJ0LXJvdHRlbnN0ZWluZXIuY29tMCsGA1UdHwQkMCIw IKAeoByGGmh0dHA6Ly9ndS5zeW1jYi5jb20vZ3UuY3JsMAwGA1UdEwEB/wQCMAAw VgYDVR0gBE8wTTBLBgZngQwBAgEwQTA/BggrBgEFBQcCARYzaHR0cHM6Ly93d3cu Z2VvdHJ1c3QuY29tL3Jlc291cmNlcy9yZXBvc2l0b3J5L2xlZ2FsMA0GCSqGSIb3 DQEBCwUAA4IBAQDcDSBiGqeADVwG3MsBmSzRo6CATECD1kX6CaguIkJLdDkV/0YK y+U3m7HAoxvIQNWeNNatfMP0DuToAMPn5zWM5etAVuH/MmHC3SHiu8zCtGBsZHzS sk+bxf3Y42nMAK+eLyxEIjvCMp2jIrd2S/vorkVv9B+mwqWGZDCCkErRjEVJTZGJ t/fZWg3Nc5mj/bRQmKsAW/Cmt8ROyVS/KrC5+PP8CrkI5cb6Kl3moQrcYiQy1FDi Tjr0YJ01lvqtoehF8wyaUSpoyYw7pfqnPSaPzgm5cWQ1gHWWoHb1OyTjL0BvXou6 Rqw9ffy0yWYjk9p/2ivH7V5nyvsN89YPU4hx -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3LPaEhEjajQiZFVMyuU6 kzc6G6i5fbUGcHOjYc3JVRy/Yi8d0m+1Yd41VhwfqgF0Xr1Ieq2Vm9MaMtNpyiAa hE+n6pKjs5t/XNQEhWDaecZj/TwvOwQR0GxdpV3dXB6ydma2WTQ6Dgd+lGVEbsUK AbFzlzZExWu5GJj+5L5O5f3msW05zlM5VSJZuqrmgISLuedM2qKghq9sOxgFt+mp BScCYYq1MAPjfIkrLfoWCX1ObVxdyS/bUxVRj395lUi40FO+8a/XC7XgGusHpSy0 0phhG+MI7YGJhhgK5V+BDfHV+CvujpMMzQs/3xV8cM/t0yvxHjIFyHsiWay9RDLp +wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 130016 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust DV SSL CA - G4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-08-19 12:12:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-19 17:03:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT71420732' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.geotrust.com/resources/cps (c)15' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - QuickSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'clients.robert-rottensteiner.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27861115339395548060740629978753289706641113243447014578221161365031941592138852189689501789741477703017261139411222826712663895879892226550785745154780126397670699653411328209640042215844122260478358242996649782586398553497017484641220149855995523725198695629364930449906239038070852021055088927216079771338140057006971847515561020110583548924415795583254766339839178761765299946767976997188325393517200808432298863347393865925137864498379180634600326427611618538871692256393646248729329789881842711769353855883779572371832989703205177269146715893590079838144840398897763297864241492443196172860535724932909902260731 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 0b50ec77ef2a9bffec03a10affadc6e42a18c73e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gu.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gu.symcb.com/gu.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'clients.robert-rottensteiner.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gu.symcb.com/gu.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00dc0d20621aa7800d5c06dccb01992cd1a3a0804c4083d645fa09a82e22424b743915ff460acbe5379bb1c0a31bc840d59e34d6ad7cc3f40ee4e800c3e7e7358ce5eb4056e1ff3261c2dd21e2bbccc2b4606c647cd2b24f9bc5fdd8e369cc00af9e2f2c44223bc2329da322b7764bfbe8ae456ff41fa6c2a586643082904ad18c45494d9189b7f7d95a0dcd7399a3fdb45098ab005bf0a6b7c44ec954bf2ab0b9f8f3fc0ab908e5c6fa2a5de6a10adc622432d450e24e3af4609d3596faada1e845f30c9a512a68c98c3ba5faa73d268fce09b9716435807596a076f53b24e32f406f5e8bba46ac3d7dfcb4c9662393da7fda2bc7ed5e67cafb0df3d60f538871