www.kindlustus.ee

- If P&C Insurance AS -

Issued by Thawte SSL CA

About this certificate

This digital certificate with serial number 66:d4:83:9e:d7:28:fb:c1:e8:a5:8e:b8:74:17:6d:61 was issued on by Thawte, Inc..

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • CAs must include keyIdentifer field of AKI in all non-self-issued certificates (RFC 5280: 4.2.1.1)
  • Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)

If P&C Insurance AS

Organization: If P&C Insurance AS
Organization unit: IT
State / Province: Harjumaa
Locality: Tallinn
Country: EE

Thawte, Inc.

Organization: Thawte, Inc.
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 66:d4:83:9e:d7:28:fb:c1:e8:a5:8e:b8:74:17:6d:61
Serial Number (int): 136684692084367381151374205800790060385
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId:
AuthorityKeyId:

Fingerprint (sha1): a9:e2:1a:ab:68:13:b6:46:c0:ad:fd:79:21:91:3e:23:6a:02:2d:93
Fingerprint (sha256): f6:38:46:2c:ab:5d:63:8d:2e:de:f5:5f:90:76:36:9b:e6:52:a5:9e:31:1d:b0:5d:d4:49:9c:8d:63:fa:e8:e2


Revocation information

OCSP Server: http://ocsp.thawte.com
CRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl

Check the revocation status for certificate www.kindlustus.ee

0

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.kindlustus.ee

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA1 with RSA

Key Usage

Extended Key Usages

Server Authentication
Client Authentication

Extensions

4 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

This certificate doesn't contain any subject alternative names.

Other certificates including the domain name kindlustus.ee

(limited to 100 certificates)
partnertest.kindlustus.ee
www.kindlustus.ee
if.kindlustus.ee
partnertest.kindlustus.ee
wstest.kindlustus.ee
if.kindlustus.ee
wsprod.kindlustus.ee
spoint.kindlustus.ee
www.kindlustus.ee
if.kindlustus.ee
test.kindlustus.ee
if.kindlustus.ee
if.kindlustus.ee
if.kindlustus.ee
if.kindlustus.ee
wstest.kindlustus.ee
if.kindlustus.ee
wsprod.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
www.kindlustus.ee
wsprod.kindlustus.ee
www.kindlustus.ee
partnertest.kindlustus.ee
wsprod.kindlustus.ee
if.kindlustus.ee
www.kindlustus.ee
wsprod.kindlustus.ee
wstest.kindlustus.ee
wstest.kindlustus.ee
if.kindlustus.ee
www.kindlustus.ee
wsprod.kindlustus.ee
partnertest.kindlustus.ee
www.kindlustus.ee
if.kindlustus.ee
wsprod.kindlustus.ee
if.kindlustus.ee
www.kindlustus.ee

Certificate

The complete raw certificate details for www.kindlustus.ee in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAjEte386cgrf/jnQdTfXW
ru/M1lvAZxYU4bVNwviev2vr2h/NOUztiD1K5VFO5vPe7JEEEkSrEJJ4NxcKzCuz
1nUV/3VaVOkjLIH5VRsjBHuYF3GCM+vBastYdME8GMGnsjog9JquZTMzXMRf3ICR
J6WcJCI6TQNF59dvtsKS8ltHTXay4Vzh4mxfJykWzHYjA5E3IjhT4qlph5h+uuUA
QwxWRZ34M6ZnA0AcmSpyWKp81mPAb4sEtDFtaPz8iTj7XrNwv4DRvge1miSONaFE
18L5aIrFr74esvXeaXxn5+vZ0pTjpgH41eiQAafudXF7GqjMrstellVpz/pIAqBr
LwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 136684692084367381151374205800790060385
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2010-07-16 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2011-07-15 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'EE'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Harjumaa'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Tallinn'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'If P&C Insurance AS'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'IT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'www.kindlustus.ee'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 17710529324572508934047244530337992548447388640528912866737322182371334901301212939797384080753930788523253627852699340834845737061992576211076341629686845234521481948178856774374459611497506742545450313054693648284346551861273243475718617602661914461132202916442606227010431334367044732829431629059771872361587883298859836804278685982852981876097597865444800383366412569608875507459456255850061798677710441857271920277998424968629654944207514820208017736733483350512084477317666529120214626300027404812030581346814321232064092799396921022619011582466715055619333658464215822829581260708415313587556060587815348497199
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00727e86e50ecb645629e91924706b1578e6c00fa7c34157bc4e1a4bef99a3fa7c954e398702eb90c8d348fdf12989bcb10c08d203750884a6a6e5a628b5e4e66708726e8d95bb8f551625ef091ad4ba8df8512937796bd26b96298529a8deb5085c6a74b56809e66763ae203e34d0c33a977ba94c36d68a53fba3b835cfb44434bf48adc862b61dd082e9e0f39fb169ad4d8ea680df1837710cd238cb2c9f23bac00be023a5ee983da633e88ade623de45eac9934cf7ef205d4a05c71510cac8720ba36c82f60f8aa6927f5e0e21a5e32233feda5106ec037bbb2ca8ebe0213d4c3096089215b1c4bf91baa531068acfa9fd1d0ec49bed8644d8b95df953f2bea