media-test.geico.com

Issued by Trustwave Organization Validation SHA256 CA, Level 1

About this certificate


This digital certificate with serial number 06:69:bd:3e:8f:0b:74:8c:07:6e:49:a7:36:df:e4:ef:70:54:4f was issued on by Trustwave Holdings, Inc. .

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. While the certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates.

Cerificate errors/warnings *beta

  • ERROR: KeyUsage extension SHOULD be marked as critical when present

GEICO

Organization: GEICO
State / Province: Maryland
Locality: Chevy Chase
Country: US

Trustwave Holdings, Inc.

Organization: Trustwave Holdings, Inc.
State / Province: Maryland
Locality: Chevy Chase
Country: US

Time since certificate expired

This certificate has expire since

Certificate Details

Serial Number (hex): 06:69:bd:3e:8f:0b:74:8c:07:6e:49:a7:36:df:e4:ef:70:54:4f
Serial Number (int): 143015657736233151861345365538292780976067663
Serial Number lenght: 147 bits, 19 octets

SubjectKeyId: 3f:60:23:a5:38:1d:cd:d7:98:12:70:d7:62:19:a2:cb:9f:22:c7:ed
AuthorityKeyId: ca:ce:1d:18:03:77:1e:1c:f3:7c:58:b2:9a:70:a8:08:80:16:f4:ae

Fingerprint (sha1): 46:62:11:0f:07:50:29:ab:40:c5:83:df:3c:c4:9d:73:ec:18:be:f3
Fingerprint (sha256): 13:fc:3c:0d:6b:f4:3a:f3:cd:47:df:a9:9d:cf:1a:1b:44:04:20:25:34:c1:50:60:82:8c:68:ab:72:f7:52:0b

Issuing Certificate URL: http://ssl.trustwave.com/issuers/OVCA2_L1.crt

Revocation information

OCSP Server: http://ocsp.trustwave.com/
CRL Distribution Point: http://crl.trustwave.com/OVCA2_L1.crl

Check the revocation status for the current certificate on media-test.geico.com
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details about this certificate


Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA



Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Client Authentication
Server Authentication

Extensions

9 extensions
No unhandled critical extensions



CA Certificate

This is not a CA certificate

Subject Alternative Names

media-test.geico.com
Dispatch-test.geico.com

Certificate

The complete raw certificate details in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE----- MIIFVzCCBD+gAwIBAgITBmm9Po8LdIwHbkmnNt/k73BUTzANBgkqhkiG9w0BAQsF ADCBtTELMAkGA1UEBhMCVVMxETAPBgNVBAgTCElsbGlub2lzMRAwDgYDVQQHEwdD aGljYWdvMSEwHwYDVQQKExhUcnVzdHdhdmUgSG9sZGluZ3MsIEluYy4xPTA7BgNV BAMTNFRydXN0d2F2ZSBPcmdhbml6YXRpb24gVmFsaWRhdGlvbiBTSEEyNTYgQ0Es IExldmVsIDExHzAdBgkqhkiG9w0BCQEWEGNhQHRydXN0d2F2ZS5jb20wHhcNMTUw NDI3MTE0MjU3WhcNMTYwNTEzMTc0MjU3WjBlMR0wGwYDVQQDDBRtZWRpYS10ZXN0 LmdlaWNvLmNvbTEOMAwGA1UECgwFR0VJQ08xFDASBgNVBAcMC0NoZXZ5IENoYXNl MREwDwYDVQQIDAhNYXJ5bGFuZDELMAkGA1UEBhMCVVMwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQDY87aVPmWVW5Ppge6xGlZkmkmgaX/M/7mUsKDsY5Cv H3uq7zNPacAobzRXNTGFXSQHpArChzEOAYuW7yyN+baY/3AVPCVioE4ygahk5Os5 nZSoxs13HweiSWTzFPWO4H+2zU9TA1cg3uMRhl1K+w5se27KlnTS2VZTtUxzZaTF /V4WRVaZfw3KbttNWIcolS80zzx2p8C/zMJbHSwt/zv7TmsSzhjC9NL2iJhI3l8Q 5WzM6iKz03DjJCqWKwv3ayYVhOeCHbPuOG+0tgbDVFQwqyuNxWm3PW3La73osf8/ enbaJIVZ9Rsuz1gPziJGs4iODSwEaCBr2PjeMnTCtEO5AgMBAAGjggGtMIIBqTAM BgNVHRMBAf8EAjAAMAsGA1UdDwQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAgYI KwYBBQUHAwEwHQYDVR0OBBYEFD9gI6U4Hc3XmBJw12IZosufIsftMB8GA1UdIwQY MBaAFMrOHRgDdx4c83xYsppwqAiAFvSuMEgGA1UdIARBMD8wPQYPKwYBBAGB7RgD AwMDBAQDMCowKAYIKwYBBQUHAgEWHGh0dHBzOi8vc3NsLnRydXN0d2F2ZS5jb20v Q0EwOAYDVR0RBDEwL4IUbWVkaWEtdGVzdC5nZWljby5jb22CF0Rpc3BhdGNoLXRl c3QuZ2VpY28uY29tMDYGA1UdHwQvMC0wK6ApoCeGJWh0dHA6Ly9jcmwudHJ1c3R3 YXZlLmNvbS9PVkNBMl9MMS5jcmwwcQYIKwYBBQUHAQEEZTBjMCYGCCsGAQUFBzAB hhpodHRwOi8vb2NzcC50cnVzdHdhdmUuY29tLzA5BggrBgEFBQcwAoYtaHR0cDov L3NzbC50cnVzdHdhdmUuY29tL2lzc3VlcnMvT1ZDQTJfTDEuY3J0MA0GCSqGSIb3 DQEBCwUAA4IBAQADmd5PiSR9W/Z0zN8iWTqtWCYcBVMECOtsxn4ol0ZaQp6J6+i7 grKy1BtdW9iws5q38sNG7ZN1Va5ZdfC9mfW1Rkx6B/o+CcsmSO4XjxOFd0ovMLiG 9h8vbNYxE6mcF/Bva8IZ2FiS9hW6eyctH7n6lKF9L1bSfG8SBic9aUR9eFBRpkVO WzVo1yLRAxp6+ddCm/eS/tch5a3+FVbwdpauaJZUAViqYbUS+gkz8l/XCdsYMj0K 6Nzzfj9kE2GkEu1Fs0Buua8gErwTfkAA2HrKGNzFJOF+Y+QL1pFkhjM6QgIfhj5N FE17x9UaxTdpMXZ28EZsbAhzrrxrN8pMxVaz -----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2PO2lT5llVuT6YHusRpW ZJpJoGl/zP+5lLCg7GOQrx97qu8zT2nAKG80VzUxhV0kB6QKwocxDgGLlu8sjfm2 mP9wFTwlYqBOMoGoZOTrOZ2UqMbNdx8Hoklk8xT1juB/ts1PUwNXIN7jEYZdSvsO bHtuypZ00tlWU7VMc2Wkxf1eFkVWmX8Nym7bTViHKJUvNM88dqfAv8zCWx0sLf87 +05rEs4YwvTS9oiYSN5fEOVszOois9Nw4yQqlisL92smFYTngh2z7jhvtLYGw1RU MKsrjcVptz1ty2u96LH/P3p22iSFWfUbLs9YD84iRrOIjg0sBGgga9j43jJ0wrRD uQIDAQAB -----END PUBLIC KEY-----

ASN1 Decoded

[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 143015657736233151861345365538292780976067663 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Illinois' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Chicago' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustwave Holdings, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Trustwave Organization Validation SHA256 CA, Level 1' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.9.1 (emailAddress) . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String '[email protected]' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-04-27 11:42:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-05-13 17:42:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'media-test.geico.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'GEICO' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Chevy Chase' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Maryland' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27387653338026058274002700827136256987553923473303551005782074357284083952725389303805326463374048830737386487725421343840858102473322715719418306063736182272713661130063716189357903480288571146802860738992185683337064259761332880282932252715748502592952144840153584107382917408610547891816143087081562532006460433128865159516873051972666570380538142544856087051526414181697161928827693513191878900414323490919513349405113234404864013997111448098325575629468069405967551795135310714501812529672790731661806600807537064846721833029232116165715030219087553228197201762413968774454300535473296961243924873490822319063993 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3f6023a5381dcdd7981270d76219a2cb9f22c7ed . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName cace1d1803771e1cf37c58b29a70a8088016f4ae . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (65 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.30360.3.3.3.3.4.4.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://ssl.trustwave.com/CA' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (49 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'media-test.geico.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'Dispatch-test.geico.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.trustwave.com/OVCA2_L1.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (101 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.trustwave.com/' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ssl.trustwave.com/issuers/OVCA2_L1.crt' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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