sfek.kz
Issued by CA 沃通免费SSL证书 G2
About this certificate
This digital certificate with serial number 12:98:c0:2a:b5:73:8a:cd:61:ee:9f:63:05:d1:6a:dc was issued on by WoSign CA Limited.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificate with an RSA key contains invalid key usage(s): KeyUsageKeyAgreement Key usage values digitalSignature, nonRepudiation, keyEncipherment, and dataEncipherment may only be present in an end entity certificate with an RSA key (RFC 3279: 2.3.1)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
Certificate Subject
CN=sfek.kz,2.5.4.13=#0c35e5858de8b4b953534ce8af81e4b9a620e794b3e8afb7e7bd91e59d80efbc9a68747470733a2f2f6275792e776f7369676e2e636f6d
WoSign CA Limited
Organization:
WoSign CA Limited
Country:
CN
This certificate has expire since
Certificate Details
Serial Number (hex): 12:98:c0:2a:b5:73:8a:cd:61:ee:9f:63:05:d1:6a:dcSerial Number (int): 24719230653008974953761803157738973916
Serial Number lenght: 125 bits, 16 octets
SubjectKeyId: fd:06:d6:c3:0f:f0:e2:f7:30:49:2f:ee:e6:19:72:f7:93:47:0a:ad
AuthorityKeyId: 30:da:74:86:f3:28:90:56:9e:d7:31:31:c2:bd:59:cd:93:12:39:1d
Fingerprint (sha1): 7a:ed:c6:64:16:04:e0:af:ec:52:a6:18:1e:6e:f0:ef:8b:97:9e:b5
Fingerprint (sha256): f4:09:50:04:ba:67:38:4d:10:70:6b:46:1a:c8:5e:9e:cf:39:60:77:42:a5:06:c0:f3:65:96:64:b7:c7:5d:64
Issuing Certificate URL: http://aia2.wosign.cn/ca2g2.server1.free.cer
Revocation information
OCSP Server: http://ocsp2.wosign.cn/ca2g2/server1/freeCRL Distribution Point: http://crls2.wosign.cn/ca2g2-server1-free.crl
Check the revocation status for certificate sfek.kz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for sfek.kz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Key Agreement
Extended Key Usages
Client Authentication
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
sfek.kz
www.sfek.kz
www.sfek.kz
Other certificates including the domain name sfek.kz
(limited to 100 certificates)
sfek.kz
stat.sfek.kz
sfek.kz
sfek.kz
sfek.kz
sfek.kz
webcam.sfek.kz
sfek.kz
sfek.kz
sfek.kz
student.sfek.kz
sfek.kz
sfek.cf
sfek.kz
sfek.kz
*.sfek.kz
sfek.kz
sfek.kz
sfek.kz
buh.sfek.kz
sfek.kz
buh.sfek.kz
student.sfek.kz
beta.sfek.kz
*.sfek.kz
*.sfek.kz
sfek.kz
sfek.cf
sfek.kz
sfek.kz
*.sfek.kz
sfek.kz
sfek.kz
sfek.kz
sfek.kz
sfek.kz
sfek.kz
sfek.kz
stat.sfek.kz
sfek.kz
sfek.kz
sfek.kz
sfek.kz
webcam.sfek.kz
sfek.kz
sfek.kz
sfek.kz
student.sfek.kz
sfek.kz
sfek.cf
sfek.kz
sfek.kz
*.sfek.kz
sfek.kz
sfek.kz
sfek.kz
buh.sfek.kz
sfek.kz
buh.sfek.kz
student.sfek.kz
beta.sfek.kz
*.sfek.kz
*.sfek.kz
sfek.kz
sfek.cf
sfek.kz
sfek.kz
*.sfek.kz
sfek.kz
sfek.kz
sfek.kz
sfek.kz
sfek.kz
sfek.kz
sfek.kz
Certificate
The complete raw certificate details for sfek.kz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE3jCCA8agAwIBAgIQEpjAKrVzis1h7p9jBdFq3DANBgkqhkiG9w0BAQsFADBP MQswCQYDVQQGEwJDTjEaMBgGA1UEChMRV29TaWduIENBIExpbWl0ZWQxJDAiBgNV BAMMG0NBIOayg+mAmuWFjei0uVNTTOivgeS5piBHMjAeFw0xNTAyMDMxNjA5MTha Fw0xNzAyMDMxNjA5MThaMFIxPjA8BgNVBA0MNeWFjei0uVNTTOivgeS5piDnlLPo r7fnvZHlnYDvvJpodHRwczovL2J1eS53b3NpZ24uY29tMRAwDgYDVQQDDAdzZmVr Lmt6MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4xBf0Ry8OA/OFo8O rKfNo8oYX3H9RuFSdST6k43OSfJyaeTK9RnsHSnSyC1QE9aHxarZo2aS+kW+SNWl F2cC+ylfiQ59jINbyQf81rsooyicqungvjBIUbim2ozdf24Toko63ISoINM6rs6D Fxhuq7ZEn7WkIYAnAWzuJ2mLMvrOhFHL3dohYKra9obGUHRZ+DYQar0tnQ2JBuZ2 JSlwJTcSLm2k82RUHNh4acMidmAvPBFn92LNcOFhrJuHnuZN2vsBYK43jHhoYRP0 r6yM9enY3IwRgaHSAl64Jj+koGODq/lwM2RgYtUzZpC2MYUmRretvtlmvDlYFjfn jy0AYwIDAQABo4IBsTCCAa0wCwYDVR0PBAQDAgOoMB0GA1UdJQQWMBQGCCsGAQUF BwMCBggrBgEFBQcDATAJBgNVHRMEAjAAMB0GA1UdDgQWBBT9BtbDD/Di9zBJL+7m GXL3k0cKrTAfBgNVHSMEGDAWgBQw2nSG8yiQVp7XMTHCvVnNkxI5HTB/BggrBgEF BQcBAQRzMHEwNQYIKwYBBQUHMAGGKWh0dHA6Ly9vY3NwMi53b3NpZ24uY24vY2Ey ZzIvc2VydmVyMS9mcmVlMDgGCCsGAQUFBzAChixodHRwOi8vYWlhMi53b3NpZ24u Y24vY2EyZzIuc2VydmVyMS5mcmVlLmNlcjA+BgNVHR8ENzA1MDOgMaAvhi1odHRw Oi8vY3JsczIud29zaWduLmNuL2NhMmcyLXNlcnZlcjEtZnJlZS5jcmwwHwYDVR0R BBgwFoIHc2Zlay5reoILd3d3LnNmZWsua3owUgYDVR0gBEswSTAIBgZngQwBAgEw PQYOKwYBBAGCm1EDAQIGAQIwKzApBggrBgEFBQcCARYdaHR0cDovL3d3dy53b3Np Z24uY29tL3BvbGljeS8wDQYJKoZIhvcNAQELBQADggEBAAk8o2hZh0tvyx3314Ko veVN93ysad/Q2BzW4kvnsJNFB/7tinunZ5g178h1a62WX3RitWb8fUnoXhl8fLqt Ky0fup57FT3+SKxsZ9tgzQj1+vQoVg6KLirvGvuR9dEv7n+eVSqdVW0qa76ODga1 eFmHzbzc62PwAvRv7W1CMAOEXfAId7wr+HBonL0GTaMAeEfoHcs+XA9KwvVmKrXo 6GhjgROiAkhubyBUCgfzEY3DBnBUmvRNEAVdnvi6d7B54cZra25sUQJoEIBa9WAI kY3yc/czihy6JC4Mb10beL3QbeSHEGCS03UC/7Q92Mn2SMLH5Xdzxsvo/TgwKDdv g7E= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4xBf0Ry8OA/OFo8OrKfN o8oYX3H9RuFSdST6k43OSfJyaeTK9RnsHSnSyC1QE9aHxarZo2aS+kW+SNWlF2cC +ylfiQ59jINbyQf81rsooyicqungvjBIUbim2ozdf24Toko63ISoINM6rs6DFxhu q7ZEn7WkIYAnAWzuJ2mLMvrOhFHL3dohYKra9obGUHRZ+DYQar0tnQ2JBuZ2JSlw JTcSLm2k82RUHNh4acMidmAvPBFn92LNcOFhrJuHnuZN2vsBYK43jHhoYRP0r6yM 9enY3IwRgaHSAl64Jj+koGODq/lwM2RgYtUzZpC2MYUmRretvtlmvDlYFjfnjy0A YwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 24719230653008974953761803157738973916 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WoSign CA Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'CA 沃通免费SSL证书 G2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-02-03 16:09:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-02-03 16:09:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.13 (description) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '免费SSL证书 申请网址:https://buy.wosign.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'sfek.kz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28664169687946017872429518744356926329263159886270268834693857390999539008082596283684095262151261593838632698770474953843756202312522997822855762900362789371022966867921350995231594896775867559630805495377887931873211104361429866192758169123424966383378673438525607497134956454433258740105886822979681183895133284615324671871088420425121832080236367516018904438697588283772952745807156170998804000962912780040067531977453502389402934044878893338930352038770576776912228559126476966576647297939110333044349710291462612283512178342849918931122939042920676988137457068499544264659026169638230741724542042105662896144483 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 03a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fd06d6c30ff0e2f730492feee61972f793470aad . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 30da7486f32890569ed73131c2bd59cd9312391d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (115 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp2.wosign.cn/ca2g2/server1/free' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia2.wosign.cn/ca2g2.server1.free.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls2.wosign.cn/ca2g2-server1-free.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sfek.kz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sfek.kz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.36305.3.1.2.6.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.wosign.com/policy/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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