railfanx.org
Issued by TrustAsia DV SSL CA - G5
About this certificate
This digital certificate with serial number 11:f8:2b:f4:99:ce:12:f6:56:bc:1b:c1:37:78:63:b6 was issued on by TrustAsia Technologies, Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=railfanx.org
TrustAsia Technologies, Inc.
Organization:
TrustAsia Technologies, Inc.
Organization unit: Symantec Trust Network
Organization unit: Domain Validated SSL
Organization unit: Symantec Trust Network
Organization unit: Domain Validated SSL
Country:
CN
This certificate has expire since
Certificate Details
Serial Number (hex): 11:f8:2b:f4:99:ce:12:f6:56:bc:1b:c1:37:78:63:b6Serial Number (int): 23885457072145152361818929481542820790
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 6d:58:c7:7f:1a:e7:e1:3f:2e:a6:8c:97:35:42:bb:f4:d3:38:ac:3f
Fingerprint (sha1): 4a:ed:36:54:72:17:28:92:03:1b:16:a7:15:60:61:51:be:da:8a:c9
Fingerprint (sha256): cd:9c:39:a6:ae:de:4e:f2:b7:95:a7:56:e7:b3:67:2d:02:53:d6:6b:7c:e9:ce:a9:10:3c:19:1e:51:e5:31:a7
Issuing Certificate URL: http://trustasia2-aia.digitalcertvalidation.com/trustasiag5.crt
Revocation information
OCSP Server: http://trustasia2-ocsp.digitalcertvalidation.comCheck the revocation status for certificate railfanx.org
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for railfanx.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
railfanx.org
www.railfanx.org
www.railfanx.org
Other certificates including the domain name railfanx.org
(limited to 100 certificates)
ecoinscan.ecoe.vn
www.lnk.eus
graefe-baugruppe.de
railfanx.org
2.classmateshop.co.in
railfanx.org
railfanx.org
railfanx.org
pricelist.combimix.com
railfanx.org
railfanx.org
railfanx.org
railfanx.org
railfanx.org
railfanx.org
railfanx.org
fun.railfanx.org
railfanx.org
railfanx.org
railfanx.org
railfanx.org
bukitmeraq.c3dss.com
getty-cms-test.virtualprojects.io
railfanx.org
railfanx.org
openbox.floorfound.com
www.lnk.eus
railfanx.org
railfanx.org
railfanx.org
akademia.procad.pl
railfanx.org
www.lnk.eus
graefe-baugruppe.de
railfanx.org
2.classmateshop.co.in
railfanx.org
railfanx.org
railfanx.org
pricelist.combimix.com
railfanx.org
railfanx.org
railfanx.org
railfanx.org
railfanx.org
railfanx.org
railfanx.org
fun.railfanx.org
railfanx.org
railfanx.org
railfanx.org
railfanx.org
bukitmeraq.c3dss.com
getty-cms-test.virtualprojects.io
railfanx.org
railfanx.org
openbox.floorfound.com
www.lnk.eus
railfanx.org
railfanx.org
railfanx.org
akademia.procad.pl
railfanx.org
Certificate
The complete raw certificate details for railfanx.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE2zCCA8OgAwIBAgIQEfgr9JnOEvZWvBvBN3hjtjANBgkqhkiG9w0BAQsFADCB lzELMAkGA1UEBhMCQ04xJTAjBgNVBAoTHFRydXN0QXNpYSBUZWNobm9sb2dpZXMs IEluYy4xHzAdBgNVBAsTFlN5bWFudGVjIFRydXN0IE5ldHdvcmsxHTAbBgNVBAsT FERvbWFpbiBWYWxpZGF0ZWQgU1NMMSEwHwYDVQQDExhUcnVzdEFzaWEgRFYgU1NM IENBIC0gRzUwHhcNMTcwODE4MDAwMDAwWhcNMTgwODE4MjM1OTU5WjAXMRUwEwYD VQQDDAxyYWlsZmFueC5vcmcwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIB AQC8C8JV8JBmx6In8zPZ3oZII1037Tppw9tcZwlvQORpQN5cO1REGiS4o9MAWzj5 XfbZHCv7qC0CBxfrLWw+u0PYT82cqLVHkhXebKVZjaqESHvjmg65UVSkbKnNpRrO pP7Yt9msWwKIKsYIJtIFrQglb/tfLjSP1NzWp3kn0CXIQDXt03dFYHfPVE3qrHdh etCqO7+m1+Hm2XHDt7ciEyKaBBBK+VLxVi44qY2foDgOG+67fNqU/CD1BtWDAObv Ytk19xwIXUgQmwhapUuaIB41vPi6jOYfQ6Mnpv5j3D0pc5SA2bqcFXAB4CnV617X y6+F2bsRSjr/lcyDMJ5+IEvpAgMBAAGjggGgMIIBnDApBgNVHREEIjAgggxyYWls ZmFueC5vcmeCEHd3dy5yYWlsZmFueC5vcmcwCQYDVR0TBAIwADBhBgNVHSAEWjBY MFYGBmeBDAECATBMMCMGCCsGAQUFBwIBFhdodHRwczovL2Quc3ltY2IuY29tL2Nw czAlBggrBgEFBQcCAjAZDBdodHRwczovL2Quc3ltY2IuY29tL3JwYTAfBgNVHSME GDAWgBRtWMd/GufhPy6mjJc1Qrv00zisPzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMIGbBggrBgEFBQcBAQSBjjCBizA8Bggr BgEFBQcwAYYwaHR0cDovL3RydXN0YXNpYTItb2NzcC5kaWdpdGFsY2VydHZhbGlk YXRpb24uY29tMEsGCCsGAQUFBzAChj9odHRwOi8vdHJ1c3Rhc2lhMi1haWEuZGln aXRhbGNlcnR2YWxpZGF0aW9uLmNvbS90cnVzdGFzaWFnNS5jcnQwEwYKKwYBBAHW eQIEAwEB/wQCBQAwDQYJKoZIhvcNAQELBQADggEBAJQ2GFzEZq8ejmnu8ZVUlNwG TJjwKHzdMZrPKK59yUkpvfz0QIa0461ZDJ8DA+31dr9x8WnAPmQAYE8cDWEpaWp+ PsbhsoAvIC2hA0NLzHKuf+jmpbtkCV5Tf9076nLGXF+c5gNjvrZTCyL7FTlpdUqi rFmr2sIMWfGzN1paE5g6vBO6d3Fv3fsBRB8NTbhKK7Skrj9lsUiKrQJyNea1A890 d6VsruBWZNH/mtSoJypFDMqrcBKoW0L1mHND3Zme6gcz9BYcok8lHEoE4eEhYllR dxtjzl49NcbgY04dbpvvlaMSRQaRTguFcAEwTeynXrapvs8/ws1u36sGzYGVF6U= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAvCVfCQZseiJ/Mz2d6G SCNdN+06acPbXGcJb0DkaUDeXDtURBokuKPTAFs4+V322Rwr+6gtAgcX6y1sPrtD 2E/NnKi1R5IV3mylWY2qhEh745oOuVFUpGypzaUazqT+2LfZrFsCiCrGCCbSBa0I JW/7Xy40j9Tc1qd5J9AlyEA17dN3RWB3z1RN6qx3YXrQqju/ptfh5tlxw7e3IhMi mgQQSvlS8VYuOKmNn6A4Dhvuu3zalPwg9QbVgwDm72LZNfccCF1IEJsIWqVLmiAe Nbz4uozmH0OjJ6b+Y9w9KXOUgNm6nBVwAeAp1ete18uvhdm7EUo6/5XMgzCefiBL 6QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 23885457072145152361818929481542820790 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TrustAsia Technologies, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Symantec Trust Network' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TrustAsia DV SSL CA - G5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-08-18 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-18 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'railfanx.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23738599973700732493071447171450683133788309560985841835101078143352909365404277262081010248956718683169413625474310732372952438253373441481316717675967341589048781328647337476730580811061143967663104762889563805191740503706364141742355921245457974906445568167217098211712539117993905217670304547130980777260223376398342473658478590728740339999694069077288420129957654517698116197052724622962667148276510670880428702947449511084849822765187335128920524748545246045901274523530619558808689085480059627226579317673332690103331210151336389566770005044858211681936951659292309016256289191573721431814587675439961898765289 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'railfanx.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.railfanx.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (90 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://d.symcb.com/cps' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://d.symcb.com/rpa' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 6d58c77f1ae7e13f2ea68c973542bbf4d338ac3f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (142 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trustasia2-ocsp.digitalcertvalidation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://trustasia2-aia.digitalcertvalidation.com/trustasiag5.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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