token.aetna.com

Issued by Aetna Inc. Certificate Authority

About this certificate


This digital certificate with serial number 2c:31:0c:af:00:01:00:00:25:49 was issued on by Aetna Inc. .

While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present

Aetna Inc.

Organization: Aetna Inc.
State / Province: Connecticut
Locality: Middletown
Country: US

Aetna Inc.

Organization: Aetna Inc.
Organization unit: GeoRoot Certification Authority
State / Province: Connecticut
Locality: Middletown
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 2c:31:0c:af:00:01:00:00:25:49
Serial Number (int): 208688929655129831908681
Serial Number lenght: 78 bits, 10 octets

SubjectKeyId: 3a:70:30:fd:58:0b:cf:71:3a:f7:ca:7f:9e:26:f2:59:2e:68:1d:9a
AuthorityKeyId: be:c3:c5:71:c8:a0:8d:62:5d:3d:11:32:27:43:31:63:8d:28:29:c1

Fingerprint (sha1): 88:08:1a:2c:75:82:7d:71:fa:81:6d:3c:d8:b9:0f:2b:b5:2c:11:22
Fingerprint (sha256): 22:ad:8b:d3:f8:e7:22:11:49:5c:8a:d7:42:e3:ae:e4:71:be:c7:a3:e1:e8:30:f3:8d:22:ed:70:36:61:32:00

Issuing Certificate URL: http://crl.aetna.com/aetnaca.crt

Revocation information

CRL Distribution Point: http://crl.aetna.com/aetnaca.crl

Check the revocation status for the current certificate on token.aetna.com
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any other subject alternative names besides the common name of the subject: token.aetna.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIEwTCCA6mgAwIBAgIKLDEMrwABAAAlSTANBgkqhkiG9w0BAQUFADB3MQswCQYD VQQGEwJVUzETMBEGA1UEChMKQWV0bmEgSW5jLjEoMCYGA1UECxMfR2VvUm9vdCBD ZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTEpMCcGA1UEAxMgQWV0bmEgSW5jLiBDZXJ0 aWZpY2F0ZSBBdXRob3JpdHkwHhcNMTUwNDA3MDIwMDE3WhcNMTYwOTI4MDIwMDE3 WjBnMQswCQYDVQQGEwJVUzEUMBIGA1UECBMLQ29ubmVjdGljdXQxEzARBgNVBAcT Ck1pZGRsZXRvd24xEzARBgNVBAoTCkFldG5hIEluYy4xGDAWBgNVBAMTD3Rva2Vu LmFldG5hLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAPCqH6oS bUbs0uHxYOYAnjy1oPya3ncFbrcXD0ij5+bPEwjBcWpKCuTAu1dj6ZaVQ6w/yeZx G7E9oj0aO625nJ/n3Iu2CzCcNPQIWJeULm4LTjtlUa08aiU+lvDJe2jWXHSm9sOl syF513zJ5ncHWKcP61DWJM8roFFaqwfUSalWY2K86rdqzU12fmb76FP4opWUNTA1 GISZIdsY/9wI/dSF51chOtpO/1/XmOGCNOBN7w4ZrNxYZcqJlsRMpfyjVF26+xI5 01DvaCxLerTus/EW7b+34kRvJ4II75jz+o2HQo27aATTFMy39lrIyEYzTKMNT3AL 1OeXHZNBJFOZHX8CAwEAAaOCAV0wggFZMBoGA1UdEQQTMBGCD3Rva2VuLmFldG5h LmNvbTAdBgNVHQ4EFgQUOnAw/VgLz3E698p/nibyWS5oHZowHwYDVR0jBBgwFoAU vsPFccigjWJdPREyJ0MxY40oKcEwMQYDVR0fBCowKDAmoCSgIoYgaHR0cDovL2Ny bC5hZXRuYS5jb20vYWV0bmFjYS5jcmwwPAYIKwYBBQUHAQEEMDAuMCwGCCsGAQUF BzAChiBodHRwOi8vY3JsLmFldG5hLmNvbS9hZXRuYWNhLmNydDAMBgNVHRMBAf8E AjAAMAsGA1UdDwQEAwIFoDA9BgkrBgEEAYI3FQcEMDAuBiYrBgEEAYI3FQiGw6pC t+EWhZ2dCoPBsFaEgbxEgRyGr9k6gfXpUQIBZAIBBTATBgNVHSUEDDAKBggrBgEF BQcDATAbBgkrBgEEAYI3FQoEDjAMMAoGCCsGAQUFBwMBMA0GCSqGSIb3DQEBBQUA A4IBAQBYvXVMYe3yESu6DPLLTHx/CCQbawJ5BCiz3OIi6ebq3+zTP5GNlLioyDH6 es8f+VC1SWasN8CTCeCdGOhDT9TW2PBCPvKYznGhxEz1tATY7pmKVmKNl1duW7Cx 7ELvh8B/0ywWJROTR0/MmNOmmsJeM0HPu+3lD8alyen92KwP1yTfA+d0sQ2NjWnP i8H1P77y034ihP9mIzTMI3qksdOgRKeHaAYzhg+SkYtXd3bUrPKFD81T88ofHa7e Ev5cSHFVhFNN9Fh/0mtAF3mWFcTJhS/yWZHOOI/SuR+vm8l/J5LZ2957uR9FFRl0 D7j2DdNv1u3h7gRGob8Zi4DIVUtX -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA8KofqhJtRuzS4fFg5gCe PLWg/JredwVutxcPSKPn5s8TCMFxakoK5MC7V2PplpVDrD/J5nEbsT2iPRo7rbmc n+fci7YLMJw09AhYl5QubgtOO2VRrTxqJT6W8Ml7aNZcdKb2w6WzIXnXfMnmdwdY pw/rUNYkzyugUVqrB9RJqVZjYrzqt2rNTXZ+ZvvoU/iilZQ1MDUYhJkh2xj/3Aj9 1IXnVyE62k7/X9eY4YI04E3vDhms3FhlyomWxEyl/KNUXbr7EjnTUO9oLEt6tO6z 8Rbtv7fiRG8nggjvmPP6jYdCjbtoBNMUzLf2WsjIRjNMow1PcAvU55cdk0EkU5kd fwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 208688929655129831908681 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Aetna Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoRoot Certification Authority' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Aetna Inc. Certificate Authority' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-04-07 02:00:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-09-28 02:00:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Connecticut' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Middletown' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Aetna Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'token.aetna.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 30381084309487062503390591370635101916270307686388061163217227630532778906233514547845038748737479842142389098446524552521377549316427261840568887994536638996803910467178999797914089057338357245906019268854357759041831650635711284280225505471437998455599464327363413656789000307379298426212078940920024175614298133161577547658240725075940532189057873488932972207760236865221507280675964525273814936512955717039306572718357558721849075438485726242795091777789868736737599764340407151733514173928681341334620813146645766109365848107324689033245946406967502423036821921841122008188668527470685088499033741472413037174143 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'token.aetna.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3a7030fd580bcf713af7ca7f9e26f2592e681d9a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bec3c571c8a08d625d3d1132274331638d2829c1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.aetna.com/aetnaca.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.aetna.com/aetnaca.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.7 (certificateTemplate) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.8.13686082.913558.10964618.7362646.8412740.156.13364410.4027601 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 100 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 5 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.311.21.10 (applicationCertPolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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