mail.mazars.cn
Issued by CA 沃通免费SSL证书
About this certificate
This digital certificate with serial number 13:9d:2a:9a:01:76:6e:57:83:8b:4e:00:23:4b:25:23 was issued on by WoSign CA Limited.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificate with an RSA key contains invalid key usage(s): KeyUsageKeyAgreement Key usage values digitalSignature, nonRepudiation, keyEncipherment, and dataEncipherment may only be present in an end entity certificate with an RSA key (RFC 3279: 2.3.1)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=mail.mazars.cn,2.5.4.13=#0c35e5858de8b4b953534ce8af81e4b9a620e794b3e8afb7e7bd91e59d80efbc9a68747470733a2f2f6275792e776f7369676e2e636f6d
WoSign CA Limited
Organization:
WoSign CA Limited
Country:
CN
This certificate has expire since
Certificate Details
Serial Number (hex): 13:9d:2a:9a:01:76:6e:57:83:8b:4e:00:23:4b:25:23Serial Number (int): 26071386589496409420911894247611508003
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: 10:8b:d7:20:56:36:d0:a0:74:72:1c:30:75:44:bf:72:0c:bd:02:11
AuthorityKeyId: fd:c3:ae:11:d7:e5:c8:e5:d4:34:41:aa:41:0d:28:29:dc:0b:f7:3e
Fingerprint (sha1): b8:9f:dc:7a:e0:ab:bc:79:3b:61:c6:d0:8c:53:fb:8c:39:f9:d9:1e
Fingerprint (sha256): c9:ac:b9:6d:a1:4c:64:2b:19:db:a1:6d:64:ef:de:85:ec:8d:1c:19:9d:68:9b:20:84:3f:2b:6d:10:cb:2e:5d
Issuing Certificate URL: http://aia2.wosign.cn/ca2.server1.free.cer
Revocation information
OCSP Server: http://ocsp2.wosign.cn/ca2/server1/freeCRL Distribution Point: http://crls2.wosign.cn/ca2-server1-free.crl
Check the revocation status for certificate mail.mazars.cn
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mail.mazars.cn
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Key Agreement
Extended Key Usages
Client Authentication
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mail.mazars.cn
Other certificates including the domain name mazars.cn
(limited to 100 certificates)
mail.mazars.cn
test.dynamictier.com
mail.mazars.cn
www.mazars.fr
*.mazars.cn
test.dynamictier.com
www.mazars.fr
test.dynamictier.com
test.dynamictier.com
test.dynamictier.com
mail.mazars.cn
mail.mazars.cn
www.mazars.fr
*.mazars.cn
www.mazars.fr
www.mazars.fr
www.mazars.fr
www.mazars.fr
*.mazars.cn
mail.mazars.cn
chi.mazars.cn
mail.mazars.cn
mail.mazars.cn
mail.mazars.cn
www.mazars.fr
www.mazars.fr
www.mazars.fr
mail.mazars.cn
test.dynamictier.com
mail.mazars.cn
www.mazars.fr
*.mazars.cn
test.dynamictier.com
www.mazars.fr
test.dynamictier.com
test.dynamictier.com
test.dynamictier.com
mail.mazars.cn
mail.mazars.cn
www.mazars.fr
*.mazars.cn
www.mazars.fr
www.mazars.fr
www.mazars.fr
www.mazars.fr
*.mazars.cn
mail.mazars.cn
chi.mazars.cn
mail.mazars.cn
mail.mazars.cn
mail.mazars.cn
www.mazars.fr
www.mazars.fr
www.mazars.fr
mail.mazars.cn
Certificate
The complete raw certificate details for mail.mazars.cn in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE1jCCA76gAwIBAgIQE50qmgF2bleDi04AI0slIzANBgkqhkiG9w0BAQUFADBM MQswCQYDVQQGEwJDTjEaMBgGA1UEChMRV29TaWduIENBIExpbWl0ZWQxITAfBgNV BAMMGENBIOayg+mAmuWFjei0uVNTTOivgeS5pjAeFw0xNDEyMDUwOTU5MjhaFw0x NTEyMDUwOTU5MjhaMFkxPjA8BgNVBA0MNeWFjei0uVNTTOivgeS5piDnlLPor7fn vZHlnYDvvJpodHRwczovL2J1eS53b3NpZ24uY29tMRcwFQYDVQQDDA5tYWlsLm1h emFycy5jbjCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAMN3fCcnv+Tl Qzyb0spwzf9lA/BtSWxZlOePfacer2Mrrcv/wtlVzNigBmH6hUPlY4ZLf2njJRco 2sI5ny5N1gcUR3VGye+4F1s+vlH4Rw3wXJUPzLxd1/u4g6Vc/FnqQs+guxvg8htt pcCuUtppeY6Y4IeUUsQtzn5iCUP+4MfK3HGTxTTe88UnLy/minw8fkXBDAxCb5M4 f9qsle5ad6NAX/tOBCoioBcz1XCu+w96McpWzfYpAmkwf+O5LEgw5e7KsbwjtvFE oQC+RXVB3OKOU1X0gB4SXeXh2Q1isIv3HWC6kdeV0KVCtOjEI2GBAHuXS/LmwZq2 r2apa3Ih0M0CAwEAAaOCAaUwggGhMAsGA1UdDwQEAwIDqDAdBgNVHSUEFjAUBggr BgEFBQcDAgYIKwYBBQUHAwEwCQYDVR0TBAIwADAdBgNVHQ4EFgQUEIvXIFY20KB0 chwwdUS/cgy9AhEwHwYDVR0jBBgwFoAU/cOuEdflyOXUNEGqQQ0oKdwL9z4wewYI KwYBBQUHAQEEbzBtMDMGCCsGAQUFBzABhidodHRwOi8vb2NzcDIud29zaWduLmNu L2NhMi9zZXJ2ZXIxL2ZyZWUwNgYIKwYBBQUHMAKGKmh0dHA6Ly9haWEyLndvc2ln bi5jbi9jYTIuc2VydmVyMS5mcmVlLmNlcjA8BgNVHR8ENTAzMDGgL6AthitodHRw Oi8vY3JsczIud29zaWduLmNuL2NhMi1zZXJ2ZXIxLWZyZWUuY3JsMBkGA1UdEQQS MBCCDm1haWwubWF6YXJzLmNuMFIGA1UdIARLMEkwCAYGZ4EMAQIBMD0GDisGAQQB gptRAwECBwECMCswKQYIKwYBBQUHAgEWHWh0dHA6Ly93d3cud29zaWduLmNvbS9w b2xpY3kvMA0GCSqGSIb3DQEBBQUAA4IBAQA1gsapqt3EvNFyOncRfWdlrlnI2dpz j2PzMuf4qTYxyF4aZK9KKpUVFT00rCCdrtAx/lUySdSvSZ1RoFi8XN72mEwDhfod ZuS0fMm1QtS4PpqUpW9sEKUcpF4dVylrb8QAPt2keH8+jiLIFAg56sCDEGhk1eXI m7XRHP+nGKvrSWabewKnLDXLI6x5/07s4KS1NHvbc9zZcBzbarjMoUpOy5KDXtv3 ZnolwnxL4OBp1cPk/0S6DR7XV/iV4UrcB39MQ33MGLqnXtVme6X0pDtG3JypNZ+R x/8lmujpXjut10gbvqvpBIwQZ2GwIQJVGU/n5wKQ5LvOcSebYxKV5BVZ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAw3d8Jye/5OVDPJvSynDN /2UD8G1JbFmU5499px6vYyuty//C2VXM2KAGYfqFQ+Vjhkt/aeMlFyjawjmfLk3W BxRHdUbJ77gXWz6+UfhHDfBclQ/MvF3X+7iDpVz8WepCz6C7G+DyG22lwK5S2ml5 jpjgh5RSxC3OfmIJQ/7gx8rccZPFNN7zxScvL+aKfDx+RcEMDEJvkzh/2qyV7lp3 o0Bf+04EKiKgFzPVcK77D3oxylbN9ikCaTB/47ksSDDl7sqxvCO28UShAL5FdUHc 4o5TVfSAHhJd5eHZDWKwi/cdYLqR15XQpUK06MQjYYEAe5dL8ubBmravZqlrciHQ zQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 26071386589496409420911894247611508003 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WoSign CA Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'CA 沃通免费SSL证书' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-12-05 09:59:28 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-12-05 09:59:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.13 (description) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '免费SSL证书 申请网址:https://buy.wosign.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'mail.mazars.cn' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24675389704289725446647734505931037335872178382951777600497642946587376630185668767114667180956401458363910267340206205138596602915338042728756867940356958538989105283911917088806393509727404708105910340969242666916251486652374660519658253941154456438581310557786850878506816913526294276264424545690334109893047505966237683915079793475122517251518657247835246820687168810532411204739151164924948999731420761250230725428717283194703055326898650944102258499022776634339116896119006298952858701083194024158815969227131285922545429223351501313277712261429305581196826146890837959249089744159059624852198691845767686115533 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 03a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 108bd7205636d0a074721c307544bf720cbd0211 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName fdc3ae11d7e5c8e5d43441aa410d2829dc0bf73e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (111 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.wosign.cn/ca2/server1/free' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia2.wosign.cn/ca2.server1.free.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls2.wosign.cn/ca2-server1-free.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.mazars.cn' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.36305.3.1.2.7.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.wosign.com/policy/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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