*.knowledge-works.com

Issued by RapidSSL SHA256 CA - G3

About this certificate

This digital certificate with serial number 06:6a:72 was issued on by GeoTrust Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

Certificate Subject

CN=*.knowledge-works.com,OU=GT56359871+OU=See www.rapidssl.com/resources/cps (c)15+OU=Domain Control Validated - RapidSSL(R)

GeoTrust Inc.

Organization: GeoTrust Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 06:6a:72
Serial Number (int): 420466
Serial Number lenght: 19 bits, 3 octets

SubjectKeyId:
AuthorityKeyId: c3:9c:f3:fc:d3:46:08:34:bb:ce:46:7f:a0:7c:5b:f3:e2:08:cb:59

Fingerprint (sha1): c7:7c:94:ed:c7:69:82:8c:50:27:7a:27:1d:59:3a:3c:c7:af:2c:9a
Fingerprint (sha256): d9:78:f4:15:c2:a5:e1:48:cd:a3:7a:30:cf:68:e8:4b:0c:12:aa:8d:08:63:29:04:63:d0:d7:00:53:64:5e:15

Issuing Certificate URL: http://gv.symcb.com/gv.crt

Revocation information

OCSP Server: http://gv.symcd.com
CRL Distribution Point: http://gv.symcb.com/gv.crl

Check the revocation status for certificate *.knowledge-works.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.knowledge-works.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.knowledge-works.com
knowledge-works.com

Other certificates including the domain name knowledge-works.com

(limited to 100 certificates)
*.knowledge-works.com
cipher-sys.com
cipher-sys.com
*.knowledge-works.com
*.knowledge-works.com
cipher-sys.com
*.knowledge-works.com
cipher-sys.com
cipher-sys.com
*.knowledge-works.com
cipher-sys.com
*.knowledge-works.com
cipher-sys.com
cipher-sys.com

Certificate

The complete raw certificate details for *.knowledge-works.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFwjCCBKqgAwIBAgIDBmpyMA0GCSqGSIb3DQEBCwUAMEcxCzAJBgNVBAYTAlVT
MRYwFAYDVQQKEw1HZW9UcnVzdCBJbmMuMSAwHgYDVQQDExdSYXBpZFNTTCBTSEEy
NTYgQ0EgLSBHMzAeFw0xNTA4MTkwNzAxMjNaFw0xODExMTgxNjU1NDNaMIGZMRMw
EQYDVQQLEwpHVDU2MzU5ODcxMTEwLwYDVQQLEyhTZWUgd3d3LnJhcGlkc3NsLmNv
bS9yZXNvdXJjZXMvY3BzIChjKTE1MS8wLQYDVQQLEyZEb21haW4gQ29udHJvbCBW
YWxpZGF0ZWQgLSBSYXBpZFNTTChSKTEeMBwGA1UEAwwVKi5rbm93bGVkZ2Utd29y
a3MuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoMPkYKUQKked
/hqbnvAFEfrvl3czQ9EUoCWorB2l7/6S38qThkxgZXq8pEU54NU//OaFGu2zH55x
1H7aZbBKu2LlnwDuxM9eX3SooxMDQC/XlFDri8v6VmWFEBLPyt0z7hn/XrrmIYo0
LeDmBaipkT39BNcdvWiGoe652ggnkkk+2wE6nYMvypXa8yZPAW1EZxH3ebNZKAXA
GhboiKYnRuIm5mcQhx04782PaOGuljUiR3kH7C52/3/yCGtHzmKZ9tb+olgq1452
HXZCrygkHIesKUHUF30kKJgCkN14gRI7h/+2hw2gWYtu4M6xLtDyJdPc7Ozmr8Ra
vOQ+wiQq9JBAKMxrOyU1aG59oOKWFyOkQznwL7QnF3oZZf53fAy3fgUhMfbbUPIa
eSdPsBp3MeyzNh0Ce6uGQHDfszpDnKCw5ftqvY2FkoRbcItDq3499WhsDHm/jiUG
aSCyI7IcsewugtkKKo52AuBWe9RJ544LFFExIuH3Qg+Qrv4QT5+XowmjP35AbOVr
ouKz4HwkacvZRUQSNPqip3NBfG9oAZIujodyk8x5hlCfpznuvVA3MX16nkOiOGoN
WdOR3DlF0fXgaHy119So8uDRD2iHsUame7EEX6pYXG0WbDdS5pGrbxct3nfZVV33
e0mZ/veszyPWpBMD02RQE0o54XJSOqkCAwEAAaOCAWIwggFeMB8GA1UdIwQYMBaA
FMOc8/zTRgg0u85Gf6B8W/PiCMtZMFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcw
AYYTaHR0cDovL2d2LnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL2d2LnN5
bWNiLmNvbS9ndi5jcnQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF
BwMBBggrBgEFBQcDAjA1BgNVHREELjAsghUqLmtub3dsZWRnZS13b3Jrcy5jb22C
E2tub3dsZWRnZS13b3Jrcy5jb20wKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL2d2
LnN5bWNiLmNvbS9ndi5jcmwwDAYDVR0TAQH/BAIwADBBBgNVHSAEOjA4MDYGBmeB
DAECATAsMCoGCCsGAQUFBwIBFh5odHRwczovL3d3dy5yYXBpZHNzbC5jb20vbGVn
YWwwDQYJKoZIhvcNAQELBQADggEBAFsqAWDZrovHN5oHT+VRPmLpXG7Uy7eqOVjm
0vHnEBXQDlQqUR8GDfbK+UeiVxEaRfGy8W/aSsof/lhOt0Kv1QJhoUQw8xbMk6qI
mFQKlAnmNMPIh84RJDpanJpv2CuFSDW+2yJcxPTZs/a5sgwYthGYYTbVYoTz8Kt1
Jb4UprpfREFFhcryvhvjwd4OuuWyzgztZuAIxyL3e33VhR/BnLO2VfGHQ57QJqIq
84YGOlzzMfev85gGq0OYyal4ZXT9TZyWOUtmh7/y7xfzuOkWRzMNi7/lb3lh921U
XLynFGsDe3YKAeWMC6cRe8in/HYE5dmixsuZKBh3IhRn8kf087A=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 420466
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-08-19 07:01:23 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-18 16:55:43 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT56359871'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)15'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.knowledge-works.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 655864808861504775819905263294743849252773229218478117737951094030509526501471527035434677887820448482782149244401650903482127231977289615838076560618194097316970803607077420685629577806476351695880271164549319642175833678514075227639134675912518635130743131117466394846928653215414864544633551506906436518399660945891387530319531455579395792463990234611946442831608951533331095180955424707519921281604220879015870830459714850622750998793693017816934934245574237444927924309229489995276792209559606125682265297271965065040148091667691909207581372419117331578436407608181644078440953408607628974808383168473124243958113366034260755750549303939405023884345757715554049367266355921562255602063226760100761033375172147621676113321172928193477768390923310015564905368185722425542593080685493368721886127417124698553357407753043872352793472097569447437070789615359020186678251277314901053636605282972423191568678339510793897237958722330599826678943029967081904724193913454817950769287806331365671083628317237585471322256268809113930102112733612465070137059589636013093461228026447594805917565922548959242170217292860214905177018821753462075677691135238235983615207710489663599881480551925547749970300294233863941724256733312838033399233193
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39cf3fcd3460834bbce467fa07c5bf3e208cb59
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcd.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcb.com/gv.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.knowledge-works.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knowledge-works.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcb.com/gv.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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