stage.vericlaim.co.za
- Business Genetics -
Issued by Thawte SSL CA
About this certificate
This digital certificate with serial number 35:5d:3b:73:fc:83:47:5a:e8:a1:9c:89:bc:d4:2c:07 was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Business Genetics
Organization:
Business Genetics
Organization unit: VeriClaim
Organization unit: VeriClaim
State / Province:
Gauteng
Locality: Johannesburg
Country: ZA
Locality: Johannesburg
Country: ZA
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 35:5d:3b:73:fc:83:47:5a:e8:a1:9c:89:bc:d4:2c:07Serial Number (int): 70933173235998513544647522021499218951
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: a7:a2:83:bb:34:45:40:3d:fc:d5:30:4f:12:b9:3e:a1:01:9f:f6:db
Fingerprint (sha1): f5:cf:b4:0f:df:83:e3:b7:19:3b:c4:30:6b:9e:49:39:73:50:64:86
Fingerprint (sha256): f3:80:60:37:91:22:1d:f2:c1:a8:43:6d:8e:76:72:b1:6c:f2:5e:3f:bf:30:c0:22:a5:1a:34:82:e3:d9:87:a6
Issuing Certificate URL: http://svr-ov-aia.thawte.com/ThawteOV.cer
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl
Check the revocation status for certificate stage.vericlaim.co.za
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for stage.vericlaim.co.za
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
stage.vericlaim.co.za
Other certificates including the domain name vericlaim.co.za
(limited to 100 certificates)
www4.vericlaim.co.za
*.vericlaim.co.za
www.vericlaim.co.za
uat.vericlaim.co.za
training.vericlaim.co.za
*.vericlaim.co.za
www3.vericlaim.co.za
www2.vericlaim.co.za
prod.vericlaim.co.za
www2.vericlaim.co.za
*.vericlaim.co.za
*.vericlaim.co.za
www.vericlaim.co.za
www.vericlaim.co.za
www1.vericlaim.co.za
www1.vericlaim.co.za
www2.vericlaim.co.za
www3.vericlaim.co.za
www3.vericlaim.co.za
*.vericlaim.co.za
*.vericlaim.co.za
www3.vericlaim.co.za
www3.vericlaim.co.za
*.vericlaim.co.za
*.vericlaim.co.za
stage.vericlaim.co.za
*.vericlaim.co.za
www1.vericlaim.co.za
stage.vericlaim.co.za
stage.vericlaim.co.za
training.vericlaim.co.za
uat.vericlaim.co.za
*.vericlaim.co.za
www.vericlaim.co.za
uat.vericlaim.co.za
training.vericlaim.co.za
*.vericlaim.co.za
www3.vericlaim.co.za
www2.vericlaim.co.za
prod.vericlaim.co.za
www2.vericlaim.co.za
*.vericlaim.co.za
*.vericlaim.co.za
www.vericlaim.co.za
www.vericlaim.co.za
www1.vericlaim.co.za
www1.vericlaim.co.za
www2.vericlaim.co.za
www3.vericlaim.co.za
www3.vericlaim.co.za
*.vericlaim.co.za
*.vericlaim.co.za
www3.vericlaim.co.za
www3.vericlaim.co.za
*.vericlaim.co.za
*.vericlaim.co.za
stage.vericlaim.co.za
*.vericlaim.co.za
www1.vericlaim.co.za
stage.vericlaim.co.za
stage.vericlaim.co.za
training.vericlaim.co.za
uat.vericlaim.co.za
Certificate
The complete raw certificate details for stage.vericlaim.co.za in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEuzCCA6OgAwIBAgIQNV07c/yDR1rooZyJvNQsBzANBgkqhkiG9w0BAQUFADA8 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRYwFAYDVQQDEw1U aGF3dGUgU1NMIENBMB4XDTEzMTEwNTAwMDAwMFoXDTE0MTEwNTIzNTk1OVowgYYx CzAJBgNVBAYTAlpBMRAwDgYDVQQIEwdHYXV0ZW5nMRUwEwYDVQQHFAxKb2hhbm5l c2J1cmcxGjAYBgNVBAoUEUJ1c2luZXNzIEdlbmV0aWNzMRIwEAYDVQQLFAlWZXJp Q2xhaW0xHjAcBgNVBAMUFXN0YWdlLnZlcmljbGFpbS5jby56YTCCASIwDQYJKoZI hvcNAQEBBQADggEPADCCAQoCggEBAMEaHYmrFdLUCpoc45yqMZjLOoScpYoNLqDX s8uP+KYgXrGL2bR4e0/fL2qPmgVHsM5qRk5xUQQTYzSzz49PdpID0kbITg+cmH/z BHLVgWCVKXPSHs1fAaZ8/nlO107Zce31SAyZtNXdruXoUvgVjyGxooGyGioZCH1g ZvAIAi1b/azcKwguZYTnJMOBJPXmchi48oCvcHHhfR9KsPL5WXEQALFppX8ZqWPF evbAV2PlKGI6Rkt9GX4eD9bfY7R0C9/eNL9y6Z4E2EcrBSiNE1+2dx7A9rXFlxJp T8i6zHiC4pDbh1xbLo31+tRXp4229RgU45qP2zFIs+C9YMmzFZUCAwEAAaOCAWww ggFoMCAGA1UdEQQZMBeCFXN0YWdlLnZlcmljbGFpbS5jby56YTAJBgNVHRMEAjAA MEIGA1UdIAQ7MDkwNwYKYIZIAYb4RQEHNjApMCcGCCsGAQUFBwIBFhtodHRwczov L3d3dy50aGF3dGUuY29tL2Nwcy8wDgYDVR0PAQH/BAQDAgWgMB8GA1UdIwQYMBaA FKeig7s0RUA9/NUwTxK5PqEBn/bbMDoGA1UdHwQzMDEwL6AtoCuGKWh0dHA6Ly9z dnItb3YtY3JsLnRoYXd0ZS5jb20vVGhhd3RlT1YuY3JsMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjBpBggrBgEFBQcBAQRdMFswIgYIKwYBBQUHMAGGFmh0 dHA6Ly9vY3NwLnRoYXd0ZS5jb20wNQYIKwYBBQUHMAKGKWh0dHA6Ly9zdnItb3Yt YWlhLnRoYXd0ZS5jb20vVGhhd3RlT1YuY2VyMA0GCSqGSIb3DQEBBQUAA4IBAQCI qCYV9Qjq6/NuxzwLV1PLUns2iZI0YLUGBLVxn2++25pLX9R91Llb76+VF5LM7djV df8s2ZkeWfZFUY6d91Bt9EVhaMAuNVW8hp9njerAb0qBEbg2DexkW+dnpzWjEbcD z9WkZ+jzOa3m7xkkC/01mGLZ4BO6FsI0T9FQ36TJe7mznzA6cIXmdEVN84ferqr9 SEhX3omkuVswpjC3RPRjpnwgnDMYlEIG4I0QVDXAYOuQnl4+PyvAfgjsPY1s27JA k9Y7bSnbnLHzd0DcsN1aoHHXEMOzZHbyh5LXQ2Kdkx4iBj0cerEWL2ravDthUw0d VDosAZaODi0mnCWefP/g -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwRodiasV0tQKmhzjnKox mMs6hJylig0uoNezy4/4piBesYvZtHh7T98vao+aBUewzmpGTnFRBBNjNLPPj092 kgPSRshOD5yYf/MEctWBYJUpc9IezV8Bpnz+eU7XTtlx7fVIDJm01d2u5ehS+BWP IbGigbIaKhkIfWBm8AgCLVv9rNwrCC5lhOckw4Ek9eZyGLjygK9wceF9H0qw8vlZ cRAAsWmlfxmpY8V69sBXY+UoYjpGS30Zfh4P1t9jtHQL3940v3LpngTYRysFKI0T X7Z3HsD2tcWXEmlPyLrMeILikNuHXFsujfX61Fenjbb1GBTjmo/bMUiz4L1gybMV lQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 70933173235998513544647522021499218951 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2013-11-05 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-11-05 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'ZA' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Gauteng' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Johannesburg' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Business Genetics' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'VeriClaim' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'stage.vericlaim.co.za' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24376870833233674904463593442448842021271978726140072151615821960697818477651800981907537824300054195601960116668519993994784949678918670224678509039688223222234163928043335931590714587081397245500360386955545565648873229087099553159022167636346177689751042097520972106395144469451482073430509069732379337990727691595251934999964974503489264480400013372918959351154880906924445101124541634665823341450346132169625147030464431590497285327303155588327304773604683910721803365604154468201925052836830652904467743715499886266207346919821728764376662990952027979580692396845498659549777143062458339536456693200367475955093 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'stage.vericlaim.co.za' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a7a283bb3445403dfcd5304f12b93ea1019ff6db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-aia.thawte.com/ThawteOV.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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