*.knowledge-works.com
Issued by RapidSSL SHA256 CA - G3
About this certificate
This digital certificate with serial number 06:6a:72 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=*.knowledge-works.com,OU=GT56359871+OU=See www.rapidssl.com/resources/cps (c)15+OU=Domain Control Validated - RapidSSL(R)
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 06:6a:72Serial Number (int): 420466
Serial Number lenght: 19 bits, 3 octets
SubjectKeyId:
AuthorityKeyId: c3:9c:f3:fc:d3:46:08:34:bb:ce:46:7f:a0:7c:5b:f3:e2:08:cb:59
Fingerprint (sha1): c7:7c:94:ed:c7:69:82:8c:50:27:7a:27:1d:59:3a:3c:c7:af:2c:9a
Fingerprint (sha256): d9:78:f4:15:c2:a5:e1:48:cd:a3:7a:30:cf:68:e8:4b:0c:12:aa:8d:08:63:29:04:63:d0:d7:00:53:64:5e:15
Issuing Certificate URL: http://gv.symcb.com/gv.crt
Revocation information
OCSP Server: http://gv.symcd.comCRL Distribution Point: http://gv.symcb.com/gv.crl
Check the revocation status for certificate *.knowledge-works.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.knowledge-works.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.knowledge-works.com
knowledge-works.com
knowledge-works.com
Other certificates including the domain name knowledge-works.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for *.knowledge-works.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFwjCCBKqgAwIBAgIDBmpyMA0GCSqGSIb3DQEBCwUAMEcxCzAJBgNVBAYTAlVT MRYwFAYDVQQKEw1HZW9UcnVzdCBJbmMuMSAwHgYDVQQDExdSYXBpZFNTTCBTSEEy NTYgQ0EgLSBHMzAeFw0xNTA4MTkwNzAxMjNaFw0xODExMTgxNjU1NDNaMIGZMRMw EQYDVQQLEwpHVDU2MzU5ODcxMTEwLwYDVQQLEyhTZWUgd3d3LnJhcGlkc3NsLmNv bS9yZXNvdXJjZXMvY3BzIChjKTE1MS8wLQYDVQQLEyZEb21haW4gQ29udHJvbCBW YWxpZGF0ZWQgLSBSYXBpZFNTTChSKTEeMBwGA1UEAwwVKi5rbm93bGVkZ2Utd29y a3MuY29tMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoMPkYKUQKked /hqbnvAFEfrvl3czQ9EUoCWorB2l7/6S38qThkxgZXq8pEU54NU//OaFGu2zH55x 1H7aZbBKu2LlnwDuxM9eX3SooxMDQC/XlFDri8v6VmWFEBLPyt0z7hn/XrrmIYo0 LeDmBaipkT39BNcdvWiGoe652ggnkkk+2wE6nYMvypXa8yZPAW1EZxH3ebNZKAXA GhboiKYnRuIm5mcQhx04782PaOGuljUiR3kH7C52/3/yCGtHzmKZ9tb+olgq1452 HXZCrygkHIesKUHUF30kKJgCkN14gRI7h/+2hw2gWYtu4M6xLtDyJdPc7Ozmr8Ra vOQ+wiQq9JBAKMxrOyU1aG59oOKWFyOkQznwL7QnF3oZZf53fAy3fgUhMfbbUPIa eSdPsBp3MeyzNh0Ce6uGQHDfszpDnKCw5ftqvY2FkoRbcItDq3499WhsDHm/jiUG aSCyI7IcsewugtkKKo52AuBWe9RJ544LFFExIuH3Qg+Qrv4QT5+XowmjP35AbOVr ouKz4HwkacvZRUQSNPqip3NBfG9oAZIujodyk8x5hlCfpznuvVA3MX16nkOiOGoN WdOR3DlF0fXgaHy119So8uDRD2iHsUame7EEX6pYXG0WbDdS5pGrbxct3nfZVV33 e0mZ/veszyPWpBMD02RQE0o54XJSOqkCAwEAAaOCAWIwggFeMB8GA1UdIwQYMBaA FMOc8/zTRgg0u85Gf6B8W/PiCMtZMFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcw AYYTaHR0cDovL2d2LnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL2d2LnN5 bWNiLmNvbS9ndi5jcnQwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUF BwMBBggrBgEFBQcDAjA1BgNVHREELjAsghUqLmtub3dsZWRnZS13b3Jrcy5jb22C E2tub3dsZWRnZS13b3Jrcy5jb20wKwYDVR0fBCQwIjAgoB6gHIYaaHR0cDovL2d2 LnN5bWNiLmNvbS9ndi5jcmwwDAYDVR0TAQH/BAIwADBBBgNVHSAEOjA4MDYGBmeB DAECATAsMCoGCCsGAQUFBwIBFh5odHRwczovL3d3dy5yYXBpZHNzbC5jb20vbGVn YWwwDQYJKoZIhvcNAQELBQADggEBAFsqAWDZrovHN5oHT+VRPmLpXG7Uy7eqOVjm 0vHnEBXQDlQqUR8GDfbK+UeiVxEaRfGy8W/aSsof/lhOt0Kv1QJhoUQw8xbMk6qI mFQKlAnmNMPIh84RJDpanJpv2CuFSDW+2yJcxPTZs/a5sgwYthGYYTbVYoTz8Kt1 Jb4UprpfREFFhcryvhvjwd4OuuWyzgztZuAIxyL3e33VhR/BnLO2VfGHQ57QJqIq 84YGOlzzMfev85gGq0OYyal4ZXT9TZyWOUtmh7/y7xfzuOkWRzMNi7/lb3lh921U XLynFGsDe3YKAeWMC6cRe8in/HYE5dmixsuZKBh3IhRn8kf087A= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoMPkYKUQKked/hqbnvAF Efrvl3czQ9EUoCWorB2l7/6S38qThkxgZXq8pEU54NU//OaFGu2zH55x1H7aZbBK u2LlnwDuxM9eX3SooxMDQC/XlFDri8v6VmWFEBLPyt0z7hn/XrrmIYo0LeDmBaip kT39BNcdvWiGoe652ggnkkk+2wE6nYMvypXa8yZPAW1EZxH3ebNZKAXAGhboiKYn RuIm5mcQhx04782PaOGuljUiR3kH7C52/3/yCGtHzmKZ9tb+olgq1452HXZCrygk HIesKUHUF30kKJgCkN14gRI7h/+2hw2gWYtu4M6xLtDyJdPc7Ozmr8RavOQ+wiQq 9JBAKMxrOyU1aG59oOKWFyOkQznwL7QnF3oZZf53fAy3fgUhMfbbUPIaeSdPsBp3 MeyzNh0Ce6uGQHDfszpDnKCw5ftqvY2FkoRbcItDq3499WhsDHm/jiUGaSCyI7Ic sewugtkKKo52AuBWe9RJ544LFFExIuH3Qg+Qrv4QT5+XowmjP35AbOVrouKz4Hwk acvZRUQSNPqip3NBfG9oAZIujodyk8x5hlCfpznuvVA3MX16nkOiOGoNWdOR3DlF 0fXgaHy119So8uDRD2iHsUame7EEX6pYXG0WbDdS5pGrbxct3nfZVV33e0mZ/ves zyPWpBMD02RQE0o54XJSOqkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 420466 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-08-19 07:01:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-11-18 16:55:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GT56359871' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'See www.rapidssl.com/resources/cps (c)15' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Control Validated - RapidSSL(R)' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.knowledge-works.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 655864808861504775819905263294743849252773229218478117737951094030509526501471527035434677887820448482782149244401650903482127231977289615838076560618194097316970803607077420685629577806476351695880271164549319642175833678514075227639134675912518635130743131117466394846928653215414864544633551506906436518399660945891387530319531455579395792463990234611946442831608951533331095180955424707519921281604220879015870830459714850622750998793693017816934934245574237444927924309229489995276792209559606125682265297271965065040148091667691909207581372419117331578436407608181644078440953408607628974808383168473124243958113366034260755750549303939405023884345757715554049367266355921562255602063226760100761033375172147621676113321172928193477768390923310015564905368185722425542593080685493368721886127417124698553357407753043872352793472097569447437070789615359020186678251277314901053636605282972423191568678339510793897237958722330599826678943029967081904724193913454817950769287806331365671083628317237585471322256268809113930102112733612465070137059589636013093461228026447594805917565922548959242170217292860214905177018821753462075677691135238235983615207710489663599881480551925547749970300294233863941724256733312838033399233193 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName c39cf3fcd3460834bbce467fa07c5bf3e208cb59 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcb.com/gv.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.knowledge-works.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knowledge-works.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gv.symcb.com/gv.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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