portal.rocqcapital.com
Issued by RapidSSL SHA256 CA
About this certificate
This digital certificate with serial number 7f:c8:86:f1:de:54:06:4b:e0:62:5e:08:fe:52:d4:4e was issued on by GeoTrust Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=portal.rocqcapital.com
GeoTrust Inc.
Organization:
GeoTrust Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 7f:c8:86:f1:de:54:06:4b:e0:62:5e:08:fe:52:d4:4eSerial Number (int): 169853151842072588329091290755809596494
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: 97:c2:27:50:9e:c2:c9:ec:0c:88:32:c8:7c:ad:e2:a6:01:4f:da:6f
Fingerprint (sha1): a5:5a:4b:de:84:c9:5f:64:fd:aa:d1:3a:68:ef:fe:dd:13:e1:eb:48
Fingerprint (sha256): e3:6f:7d:95:62:54:a2:02:41:78:42:24:e6:c7:e1:d3:44:28:41:d9:eb:ff:17:96:63:56:78:33:35:78:f0:38
Issuing Certificate URL: http://gp.symcb.com/gp.crt
Revocation information
OCSP Server: http://gp.symcd.comCRL Distribution Point: http://gp.symcb.com/gp.crl
Check the revocation status for certificate portal.rocqcapital.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for portal.rocqcapital.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
portal.rocqcapital.com
Other certificates including the domain name rocqcapital.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for portal.rocqcapital.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgIQf8iG8d5UBkvgYl4I/lLUTjANBgkqhkiG9w0BAQsFADBC MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEbMBkGA1UEAxMS UmFwaWRTU0wgU0hBMjU2IENBMB4XDTE2MDcxNTAwMDAwMFoXDTE5MDcxNTIzNTk1 OVowITEfMB0GA1UEAwwWcG9ydGFsLnJvY3FjYXBpdGFsLmNvbTCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAMgX59SE/kzsvz3/znQtKvBDgH9t5BBHJBTl CxquVoblrev2ISnQT5GUlBUGCGXDpO1PUgWZ0GkmZEk6x6IGlhZN/JdKVRvyw421 EDpD75ZBApFAqPVWB6C9OPfdT/uT0k9QG+Wb1FghGYJtJthGA5ReTd+grXKsvIbR Xvm+zSSIMo4Su5pKd0ARcwXMP7hjcxLLWMtrHy06NCowIAPfd50ex8rlHQGvwKZu VZr2vUvNrmi5hDj/ZCVQFxSkhi7Bev/6Lw7cCupePKI7Fz0M1P/TF/GlaK7qVlgc NSQM23i9Z3D75cYBlOOxbRdsquCxYdJIv04Lrl+5VOA00HVrE38CAwEAAaOCA3Iw ggNuMCEGA1UdEQQaMBiCFnBvcnRhbC5yb2NxY2FwaXRhbC5jb20wCQYDVR0TBAIw ADArBgNVHR8EJDAiMCCgHqAchhpodHRwOi8vZ3Auc3ltY2IuY29tL2dwLmNybDBv BgNVHSAEaDBmMGQGBmeBDAECATBaMCoGCCsGAQUFBwIBFh5odHRwczovL3d3dy5y YXBpZHNzbC5jb20vbGVnYWwwLAYIKwYBBQUHAgIwIAweaHR0cHM6Ly93d3cucmFw aWRzc2wuY29tL2xlZ2FsMB8GA1UdIwQYMBaAFJfCJ1CewsnsDIgyyHyt4qYBT9pv MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw VwYIKwYBBQUHAQEESzBJMB8GCCsGAQUFBzABhhNodHRwOi8vZ3Auc3ltY2QuY29t MCYGCCsGAQUFBzAChhpodHRwOi8vZ3Auc3ltY2IuY29tL2dwLmNydDCCAfUGCisG AQQB1nkCBAIEggHlBIIB4QHfAHYA3esdK3oNT6Ygi4GtgWhwfi6OnQHVXIiNPRHE zbbsvswAAAFV7sdARgAABAMARzBFAiEAhy4sulULjr6/JG+Dke10QtM2BXhkibF5 XCg+fU0fyJACIAfaYOx2qMdW90zYac4jMo/mXfxlx8bE28oBXPRZWQGeAHUApLkJ kLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAAAAFV7sdAbQAABAMARjBEAiBB aVguKBUXtdydGBkQQL2zw3RlU5eavBMvkakVzOilsQIgS8VtdoJIh4idLU/qf3EM gRLVi+cHLqWVQp+YdwCZD4EAdQBo9pj4H2SCvjqM7rkoHUz8cVFdZ5PURNEKZ6y7 T0/7xAAAAVXux0BsAAAEAwBGMEQCIALde01xF84Zx/XuHbJk8D+oj2IW5UJPeQ4q 4XRjUzyyAiBxG4cCVf49Ts6fL/dUqaGHim8OMQ6PRwOYru68UrDd0AB3AO5Lvbd1 zmC64UJpH6vhnmajD35fsHLYgwDEe4l6qP3LAAABVe7HQJcAAAQDAEgwRgIhAPrC IU2KRAKqtO680ZAhGDGrkgdDpbiNEh5gdyhZ7LtGAiEA1+D/xEA7S/K228Tn+EYC lSpIq/6m95oExiJAqVh3A20wDQYJKoZIhvcNAQELBQADggEBADuF9NrFv1G5cbn7 NzMEaeTdI7OflbLeRiF12EE0q742toxqFP0VmJ5kAVZdNZWue6ommGrItMniUTiU omBxORCI2EF0/vB9KI/lO5xL/cL63sWtdcf2Eebq10c16hkxFwe2mapvr21ii474 xq7qmXH+NdqeKG9D3/GD93qj40HBF3a08I3A9r2h6WJlqUtjzZb1d2/vvZNv2ZvX 7/BF4fVu/GcBKauUaujMUPXDZP+gmP27cJZW7uOQEBv0vz39L5M/TQKnXeUqhpM8 GuCCECUaFe/b4z+kFuVEwaYnjvfkDilE7AdnG3onIcU19VuccIAPu6bqbyCZmNJe 6IGYgs8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyBfn1IT+TOy/Pf/OdC0q 8EOAf23kEEckFOULGq5WhuWt6/YhKdBPkZSUFQYIZcOk7U9SBZnQaSZkSTrHogaW Fk38l0pVG/LDjbUQOkPvlkECkUCo9VYHoL04991P+5PST1Ab5ZvUWCEZgm0m2EYD lF5N36Ctcqy8htFe+b7NJIgyjhK7mkp3QBFzBcw/uGNzEstYy2sfLTo0KjAgA993 nR7HyuUdAa/Apm5Vmva9S82uaLmEOP9kJVAXFKSGLsF6//ovDtwK6l48ojsXPQzU /9MX8aVorupWWBw1JAzbeL1ncPvlxgGU47FtF2yq4LFh0ki/TguuX7lU4DTQdWsT fwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 169853151842072588329091290755809596494 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'RapidSSL SHA256 CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-07-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-15 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'portal.rocqcapital.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25259449277290112403135697713520239384505214556925431217848358680848493739789133079860144006596062009119972025532609221296352581577902033399639294252748972266672819670431404324797614691068095640135772571961514049968137816057614649943103929850638298822186744117555005513958328462347221077972398427391986809028365973785608954024404344128053565922037803138881310517307017123976097897928113228259599134867324076068597966078693159899694243061453993143184744402507411732353134970311652883284032093514489788719859502057837808893139552875849152669575634640482341500947766441889519864611212983866756534481250103770233417962367 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'portal.rocqcapital.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (104 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.rapidssl.com/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 97c227509ec2c9ec0c8832c87cade2a6014fda6f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gp.symcb.com/gp.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (485 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (481 bytes) 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 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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