santsinstitutshop.com
Issued by thawte DV SSL CA - G2
About this certificate
This digital certificate with serial number 34:62:5b:ab:8f:a4:40:78:ce:41:78:6d:5d:50:32:fe was issued on by thawte, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=santsinstitutshop.com
thawte, Inc.
Organization:
thawte, Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 34:62:5b:ab:8f:a4:40:78:ce:41:78:6d:5d:50:32:feSerial Number (int): 69630560164696685438599892641871049470
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 9f:b8:c1:a9:6c:f2:f5:c0:22:2a:94:ed:5c:99:ac:d4:ec:d7:c6:07
Fingerprint (sha1): b8:50:5e:3a:33:3f:b8:4f:a7:fe:bf:10:96:c0:8e:ea:0d:7c:ac:d5
Fingerprint (sha256): c7:62:1e:b9:6f:b2:ec:f8:33:07:f6:e5:c3:37:de:f6:62:1a:32:ec:df:d1:a4:01:14:04:84:4f:af:e7:ad:3a
Issuing Certificate URL: http://tn.symcb.com/tn.crt
Revocation information
OCSP Server: http://tn.symcd.comCRL Distribution Point: http://tn.symcb.com/tn.crl
Check the revocation status for certificate santsinstitutshop.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for santsinstitutshop.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
santsinstitutshop.com
www.santsinstitutshop.com
www.santsinstitutshop.com
Other certificates including the domain name santsinstitutshop.com
(limited to 100 certificates)
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
santsinstitutshop.com
Certificate
The complete raw certificate details for santsinstitutshop.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEoTCCA4mgAwIBAgIQNGJbq4+kQHjOQXhtXVAy/jANBgkqhkiG9w0BAQsFADBj MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMdGhhd3RlLCBJbmMuMR0wGwYDVQQLExRE b21haW4gVmFsaWRhdGVkIFNTTDEeMBwGA1UEAxMVdGhhd3RlIERWIFNTTCBDQSAt IEcyMB4XDTE1MDQxNjAwMDAwMFoXDTE2MDUxNTIzNTk1OVowIDEeMBwGA1UEAxQV c2FudHNpbnN0aXR1dHNob3AuY29tMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIB CgKCAQEAplJfeNF/RgHTViBOE5cU51SHiWA+GV07igAVXksOGVyGLK1PJMtkphNp k7tuVTnRDY/fFQL60Lx631qW/SiFn4j23A2FMcW09bBohCgK2bbNHuNip6St1YM/ nPFig1g6gPIN27Uji4HNLi7mfct4UjytNPYA42F/71AE5U1HJRO7V0bj+mfeSFZ3 tgzlrD9vQjcTIuCx0IWzTnY1+0j5FPL2ym6SOMQenqexdcNpeTpXoJ6Pe/kXtQRw p6p3eCflAEhLtPOgBOB6Dp2EAdGPZ/hEBoQ/M7YmkJn3BANzhQR8Ubdynewv1lcE jWxd3B7K+F6C7JXV/TFZlGSWCVc6ZQIDAQABo4IBkjCCAY4wOwYDVR0RBDQwMoIV c2FudHNpbnN0aXR1dHNob3AuY29tghl3d3cuc2FudHNpbnN0aXR1dHNob3AuY29t MAkGA1UdEwQCMAAwKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL3RuLnN5bWNiLmNv bS90bi5jcmwwbgYDVR0gBGcwZTBjBgZngQwBAgEwWTAmBggrBgEFBQcCARYaaHR0 cHM6Ly93d3cudGhhd3RlLmNvbS9jcHMwLwYIKwYBBQUHAgIwIwwhaHR0cHM6Ly93 d3cudGhhd3RlLmNvbS9yZXBvc2l0b3J5MB8GA1UdIwQYMBaAFJ+4wals8vXAIiqU 7VyZrNTs18YHMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYI KwYBBQUHAwIwVwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8vdG4u c3ltY2QuY29tMCYGCCsGAQUFBzAChhpodHRwOi8vdG4uc3ltY2IuY29tL3RuLmNy dDANBgkqhkiG9w0BAQsFAAOCAQEA1kdiXoapLlQ9e1I0pBBpyU3Lu/LGg+f4xZdA NstT4yD/AraD/k23Ncl7X7TjmVuQBGIXp+8tlJXeyVPqxkzextF82Qaqd0gjMnvH OX1lmR7DJFixPZ5iiAR+WyB6OEMXyGrNEXI/7XbSLGzhs7MHs1lHcMNZuw0jqbuI nc63CIGp+YjvLAJQjnKqjlx76slHwSrCgS8npOVg0jMyKD+/db7tXL6iDl303oXe MyQQiYHpjfZueP0byrRSCjmSJME9NDcgS36t5UASnPkM7asiYO11gFwibB9Jgqpu 5D42B2t5yiHlSYEAdKedD9DKqfix0BeODhJGPz2a9aeYMKwI6w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAplJfeNF/RgHTViBOE5cU 51SHiWA+GV07igAVXksOGVyGLK1PJMtkphNpk7tuVTnRDY/fFQL60Lx631qW/SiF n4j23A2FMcW09bBohCgK2bbNHuNip6St1YM/nPFig1g6gPIN27Uji4HNLi7mfct4 UjytNPYA42F/71AE5U1HJRO7V0bj+mfeSFZ3tgzlrD9vQjcTIuCx0IWzTnY1+0j5 FPL2ym6SOMQenqexdcNpeTpXoJ6Pe/kXtQRwp6p3eCflAEhLtPOgBOB6Dp2EAdGP Z/hEBoQ/M7YmkJn3BANzhQR8Ubdynewv1lcEjWxd3B7K+F6C7JXV/TFZlGSWCVc6 ZQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 69630560164696685438599892641871049470 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'thawte DV SSL CA - G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-04-16 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'santsinstitutshop.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20996178233657835064447633468334511744503017361124812932561489531664009142345658803925389523854149681840142965783671189448868438807761899681483059709804622816324910466132219199634994205752913105726598299985574291065004119029492150210818378821701723818133641000012863345861393543404048318024630336679287538366431952513200808174097287411784800676231740082962679857832135045564891571834885897873636795614026443375935730319581025421642148841908188675785531742895882901332585180567469052394154639078609020102755987684116766057825742411623792985474166007423617428589254531924214147268831824413417877036631237644738522200677 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'santsinstitutshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.santsinstitutshop.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tn.symcb.com/tn.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (103 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.thawte.com/repository' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9fb8c1a96cf2f5c0222a94ed5c99acd4ecd7c607 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tn.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://tn.symcb.com/tn.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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