atsprod.geico.com

Issued by Trustwave Organization Validation SHA256 CA, Level 1

About this certificate


This digital certificate with serial number 06:5e:23:ef:98:8b:92:fd:10:18:2d:25:7e:e2:db:a2:d2:a4:a5 was issued on by Trustwave Holdings, Inc. .

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present

Geico

Organization: Geico
State / Province: Maryland
Locality: Chevy Chase
Country: US

Trustwave Holdings, Inc.

Organization: Trustwave Holdings, Inc.
State / Province: Maryland
Locality: Chevy Chase
Country: US

Time untill certificate expires

This certificate will expire on

Certificate Details

Serial Number (hex): 06:5e:23:ef:98:8b:92:fd:10:18:2d:25:7e:e2:db:a2:d2:a4:a5
Serial Number (int): 142005254429162450538204730144183427559236773
Serial Number lenght: 147 bits, 19 octets

SubjectKeyId: 68:49:17:59:da:09:5a:e7:29:4a:5d:a2:90:5c:55:c4:a4:25:6f:97
AuthorityKeyId: ca:ce:1d:18:03:77:1e:1c:f3:7c:58:b2:9a:70:a8:08:80:16:f4:ae

Fingerprint (sha1): 79:46:15:8e:8f:4f:a3:8a:52:d6:2f:7c:c9:07:65:43:9a:47:cf:8f
Fingerprint (sha256): 39:15:c8:9b:c6:66:03:40:37:d1:f6:82:78:57:b4:5d:45:68:7b:65:dc:4c:b5:5d:55:31:f1:6c:46:d0:92:5c

Issuing Certificate URL: http://ssl.trustwave.com/issuers/OVCA2_L1.crt

Revocation information

OCSP Server: http://ocsp.trustwave.com/
CRL Distribution Point: http://crl.trustwave.com/OVCA2_L1.crl

Check the revocation status for the current certificate on atsprod.geico.com
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Client Authentication
Server Authentication

Extensions

8 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any other subject alternative names besides the common name of the subject: atsprod.geico.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFKjCCBBKgAwIBAgITBl4j75iLkv0QGC0lfuLbotKkpTANBgkqhkiG9w0BAQsF ADCBtTELMAkGA1UEBhMCVVMxETAPBgNVBAgTCElsbGlub2lzMRAwDgYDVQQHEwdD aGljYWdvMSEwHwYDVQQKExhUcnVzdHdhdmUgSG9sZGluZ3MsIEluYy4xPTA7BgNV BAMTNFRydXN0d2F2ZSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTSEEyNTYgQ0Es IExldmVsIDExHzAdBgkqhkiG9w0BCQEWEGNhQHRydXN0d2F2ZS5jb20wHhcNMTQx MjMxMTMwMjI0WhcNMTcwMTExMTkwMjI0WjBiMRowGAYDVQQDDBFhdHNwcm9kLmdl aWNvLmNvbTEOMAwGA1UECgwFR2VpY28xFDASBgNVBAcMC0NoZXZ5IENoYXNlMREw DwYDVQQIDAhNYXJ5bGFuZDELMAkGA1UEBhMCVVMwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDOGr4Y3XkqUNqtz2gBLAjG4HhCVd0A8QXkzyTzYSSuFAar afQv8b5ZQ6UqJO/lECUQQbjo4fEQxPkjATZJO8zZ2MDGpdftB7fbeb5D6M3HLBHf NUSyYm9FqGXiTRH/vdOxqajcrGaGwQ5C7MH98rkq7/FdDwH8/5nbbFtqsgniTyaG NDzoz22qG6hetMDquvWIHEwoi1T5qw9rmG+yPGFmOHHjs9s1+OyW3HB9OPdc+XET hexH4LfLd3lEc2vDvktYPv3WBnyNB05Kgl0obW7UtMI3nBviW6yjQyE8i/f1SWU9 +TowLuUGaru97e6XSU7ODMjMwTKFUC/BR6BmBay/AgMBAAGjggGDMIIBfzALBgNV HQ8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwIGCCsGAQUFBwMBMB0GA1UdDgQW BBRoSRdZ2gla5ylKXaKQXFXEpCVvlzAfBgNVHSMEGDAWgBTKzh0YA3ceHPN8WLKa cKgIgBb0rjBIBgNVHSAEQTA/MD0GDysGAQQBge0YAwMDAwQEAzAqMCgGCCsGAQUF BwIBFhxodHRwczovL3NzbC50cnVzdHdhdmUuY29tL0NBMBwGA1UdEQQVMBOCEWF0 c3Byb2QuZ2VpY28uY29tMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jcmwudHJ1 c3R3YXZlLmNvbS9PVkNBMl9MMS5jcmwwcQYIKwYBBQUHAQEEZTBjMCYGCCsGAQUF BzABhhpodHRwOi8vb2NzcC50cnVzdHdhdmUuY29tLzA5BggrBgEFBQcwAoYtaHR0 cDovL3NzbC50cnVzdHdhdmUuY29tL2lzc3VlcnMvT1ZDQTJfTDEuY3J0MA0GCSqG SIb3DQEBCwUAA4IBAQAUFbZlIo14Z2y5v+I2JE3LXCHIJs/f1ppOra42yw6eGB9B +tLcXkkZfYFnz/z8Q0txp8Mmfz0/JPEuyyQj+zTLq7k8Z8djwlWTF+l1Ori/8y47 wZCC5vg4UUefGu/PE6ml9ZtileVBp0S34p5QvOYiKObEh04i/rNSksjYrjSuV0FM Y+r6GDMv+nlrMOxEYy40gucoxJbx/eJVcq69SjBbOUHDcl0M4l7jn92vgGiuSoGf KFiaOB/XRkZpIozwKbnEZDl1lYIk97myjZSPIzA1jkIH3hEHKquACfTP5H8vIgbQ yaZtKVc5nsAefBXx1os+bqSujUJZYiVy29dLC8cF -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAzhq+GN15KlDarc9oASwI xuB4QlXdAPEF5M8k82EkrhQGq2n0L/G+WUOlKiTv5RAlEEG46OHxEMT5IwE2STvM 2djAxqXX7Qe323m+Q+jNxywR3zVEsmJvRahl4k0R/73Tsamo3KxmhsEOQuzB/fK5 Ku/xXQ8B/P+Z22xbarIJ4k8mhjQ86M9tqhuoXrTA6rr1iBxMKItU+asPa5hvsjxh Zjhx47PbNfjsltxwfTj3XPlxE4XsR+C3y3d5RHNrw75LWD791gZ8jQdOSoJdKG1u 1LTCN5wb4luso0MhPIv39UllPfk6MC7lBmq7ve3ul0lOzgzIzMEyhVAvwUegZgWs vwIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 142005254429162450538204730144183427559236773 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustwave Holdings, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustwave Organization Validation SHA256 CA, Level 1' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-12-31 13:02:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-11 19:02:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'atsprod.geico.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Geico' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Chevy Chase' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26018278074247856967067932665952647793608859635046215148801335703661231073039132289502193288951510670972963005026692031953486889463703421246990034774947897448306669486804263206251062722873704438132996718241199193048423358584877002182354729778943853079440887781109504341366755353866258613382295021380303549119318629389147402169084631901277713355741994894969418326396941944128919722832260033034790850463202108558210390979186329511495113308654210524131527541484818589393420144262418126480477716004626941328055898128991415956172156853438957528645470609594399747204350967565911579097823828986522014062836723921013291986111 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 68491759da095ae7294a5da2905c55c4a4256f97 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName cace1d1803771e1cf37c58b29a70a8088016f4ae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.30360.3.3.3.3.4.4.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://ssl.trustwave.com/CA' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'atsprod.geico.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.trustwave.com/OVCA2_L1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (101 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.trustwave.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ssl.trustwave.com/issuers/OVCA2_L1.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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