webmail.lantal.ch
Issued by Thawte DV SSL CA
About this certificate
This digital certificate with serial number 01:e9:a3:c6:47:14:c1:14:98:42:3a:98:ed:22:6c:7c was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=webmail.lantal.ch,OU=Go to https://www.thawte.com/repository/index.html+OU=Thawte SSL123 certificate+OU=Domain Validated
Thawte, Inc.
Organization:
Thawte, Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:e9:a3:c6:47:14:c1:14:98:42:3a:98:ed:22:6c:7cSerial Number (int): 2542354905763629767314623478037113980
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: ab:44:e4:5d:ec:83:c7:d9:c0:85:9f:f7:e1:c6:97:90:b0:8c:3f:98
Fingerprint (sha1): 35:4c:cc:6f:21:8b:ae:31:a4:c8:f3:65:79:2e:78:75:87:a3:6c:a3
Fingerprint (sha256): ec:01:74:34:f6:2b:3f:2f:b1:1d:2a:e4:1e:a4:61:f5:ae:2e:f8:b3:5a:28:0b:00:02:31:4e:f5:d8:a5:69:e8
Issuing Certificate URL: http://svr-dv-aia.thawte.com/ThawteDV.cer
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-dv-crl.thawte.com/ThawteDV.crl
Check the revocation status for certificate webmail.lantal.ch
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for webmail.lantal.ch
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
webmail.lantal.ch
Other certificates including the domain name lantal.ch
(limited to 100 certificates)
sap.lantal.ch
portal.lantal.ch
*.lantal.ch
portal.lantal.ch
*.lantal.ch
sap.lantal.ch
sap.lantal.ch
sap.lantal.ch
portal.lantal.ch
*.lantal.ch
ftp.lantal.ch
portal.lantal.ch
cps.lantal.ch
portal.lantal.ch
*.lantal.ch
*.lantal.ch
connect.lantal.ch
portal.lantal.ch
sap.lantal.ch
connect.lantal.ch
sap.lantal.ch
webmail.lantal.ch
connect.lantal.ch
portal.lantal.ch
ftp.lantal.ch
sap.lantal.ch
*.lantal.ch
ftp.lantal.ch
portal.lantal.ch
portal.lantal.ch
*.lantal.ch
sap.lantal.ch
meeting.lantal.ch
mobile.lantal.ch
connect.lantal.ch
portal.lantal.ch
webmail.lantal.ch
webchat.lantal.ch
portal.lantal.ch
sap.lantal.ch
ftp.lantal.ch
webmail.lantal.ch
portal.lantal.ch
portal.lantal.ch
*.lantal.ch
portal.lantal.ch
*.lantal.ch
sap.lantal.ch
sap.lantal.ch
sap.lantal.ch
portal.lantal.ch
*.lantal.ch
ftp.lantal.ch
portal.lantal.ch
cps.lantal.ch
portal.lantal.ch
*.lantal.ch
*.lantal.ch
connect.lantal.ch
portal.lantal.ch
sap.lantal.ch
connect.lantal.ch
sap.lantal.ch
webmail.lantal.ch
connect.lantal.ch
portal.lantal.ch
ftp.lantal.ch
sap.lantal.ch
*.lantal.ch
ftp.lantal.ch
portal.lantal.ch
portal.lantal.ch
*.lantal.ch
sap.lantal.ch
meeting.lantal.ch
mobile.lantal.ch
connect.lantal.ch
portal.lantal.ch
webmail.lantal.ch
webchat.lantal.ch
portal.lantal.ch
sap.lantal.ch
ftp.lantal.ch
webmail.lantal.ch
portal.lantal.ch
Certificate
The complete raw certificate details for webmail.lantal.ch in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE6jCCA9KgAwIBAgIQAemjxkcUwRSYQjqY7SJsfDANBgkqhkiG9w0BAQUFADBe MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMR0wGwYDVQQLExRE b21haW4gVmFsaWRhdGVkIFNTTDEZMBcGA1UEAxMQVGhhd3RlIERWIFNTTCBDQTAe Fw0xMzA3MTUwMDAwMDBaFw0xNjA4MjQyMzU5NTlaMIGYMTswOQYDVQQLEzJHbyB0 byBodHRwczovL3d3dy50aGF3dGUuY29tL3JlcG9zaXRvcnkvaW5kZXguaHRtbDEi MCAGA1UECxMZVGhhd3RlIFNTTDEyMyBjZXJ0aWZpY2F0ZTEZMBcGA1UECxMQRG9t YWluIFZhbGlkYXRlZDEaMBgGA1UEAxMRd2VibWFpbC5sYW50YWwuY2gwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDZcQ40opNn0kjrOomWFMkE5nq1Gc7m E79/KZ2tHsFwdCgmctkTIhQOJkKQlP1+y09vYhN122MnfEplhX/IGJ/fOvKuj6Zz mMeq6s1YQz47PleO5MIwYeCqskPqEhyQxMYw+yUWMldgdmgIRbiDfJZoeTpbJY7d MloRsQ9lS0crOq1jtteom6xm4VGUIx9315nL+p7L4YMp0bGjMvC7scoZDZ7cai6k Ip4gm+YMFyS4iKiTrArSQBqgUH8VRSkxcOe+MER/bILh3GjLBRZWnOcVBB9TZV2u qNPQZZMVu633rY5xpmRdBmywttGzdBwqbW0a2aq+GbqiYgUNLRhVANR1AgMBAAGj ggFnMIIBYzAcBgNVHREEFTATghF3ZWJtYWlsLmxhbnRhbC5jaDAJBgNVHRMEAjAA MDoGA1UdHwQzMDEwL6AtoCuGKWh0dHA6Ly9zdnItZHYtY3JsLnRoYXd0ZS5jb20v VGhhd3RlRFYuY3JsMEEGA1UdIAQ6MDgwNgYKYIZIAYb4RQEHNjAoMCYGCCsGAQUF BwIBFhpodHRwczovL3d3dy50aGF3dGUuY29tL2NwczAfBgNVHSMEGDAWgBSrRORd 7IPH2cCFn/fhxpeQsIw/mDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMGkGCCsGAQUFBwEBBF0wWzAiBggrBgEFBQcwAYYWaHR0 cDovL29jc3AudGhhd3RlLmNvbTA1BggrBgEFBQcwAoYpaHR0cDovL3N2ci1kdi1h aWEudGhhd3RlLmNvbS9UaGF3dGVEVi5jZXIwDQYJKoZIhvcNAQEFBQADggEBAC59 3lJvGqhyuSfa3aY7Iclx4qVCIfxzU5ozD2OK8DBTtXajulYYO87FhHmVv1B6Jmma pcIvyPasizJoo5ocmHfhIAtC57Wjs82ljWeEgiMDY7YhlIFyiktILwAvdJQSWZHM 5AvYaU1viaQotc9ZbZkmDJBdt5NnWmhSfyN1lGakyf7MmCtlTvBbw+KVIzTfWpC3 zW6YTTlMFdreaX8PgXtgIlmOnj93xfsH0f+lN1JgXCQheQA5n8Sk4TuJZoofzxoz j5LoB9wy7n1y1ZrN3zGM2W+DB8UOJfCy1FZ7/VdqrQ+zz+WbicWeA+JhsXPnvDFg qDwIBsd5SRb+zwBNtaE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA2XEONKKTZ9JI6zqJlhTJ BOZ6tRnO5hO/fymdrR7BcHQoJnLZEyIUDiZCkJT9fstPb2ITddtjJ3xKZYV/yBif 3zryro+mc5jHqurNWEM+Oz5XjuTCMGHgqrJD6hIckMTGMPslFjJXYHZoCEW4g3yW aHk6WyWO3TJaEbEPZUtHKzqtY7bXqJusZuFRlCMfd9eZy/qey+GDKdGxozLwu7HK GQ2e3GoupCKeIJvmDBckuIiok6wK0kAaoFB/FUUpMXDnvjBEf2yC4dxoywUWVpzn FQQfU2VdrqjT0GWTFbut962OcaZkXQZssLbRs3QcKm1tGtmqvhm6omIFDS0YVQDU dQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2542354905763629767314623478037113980 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte DV SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-07-15 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2016-08-24 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go to https://www.thawte.com/repository/index.html' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL123 certificate' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'webmail.lantal.ch' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 27449461917894181110817684549502634238816416485078558227153721843698433469037133463643673268529447270276404849800855965851422069339006824108954596824031708190329636858256836340539675929611826969102944943856079858453911120188978078377022330226162232336983616657599476429775747997792092484585930990822594852564398545865295190214222237333660734982694210105217163574443307967440613798059382661850512553086936939452719450322953253750557702706419090025077657372532543387484206126295046869754299840256252072231784150355787512177104830163010744953867365405795300083459773204088070758800310934046775328473929142606389376504949 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'webmail.lantal.ch' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-dv-crl.thawte.com/ThawteDV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (58 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ab44e45dec83c7d9c0859ff7e1c69790b08c3f98 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-dv-aia.thawte.com/ThawteDV.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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