*.hwl.com
- Hutchison Whampoa Limited -
Issued by Thawte SSL CA
About this certificate
This digital certificate with serial number 02:e7:19:4a:71:4e:d2:d2:a3:1e:35:2a:05:6c:34:8b was issued on by Thawte, Inc..
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Hutchison Whampoa Limited
Organization:
Hutchison Whampoa Limited
Organization unit: GISD
Organization unit: GISD
State / Province:
Hong Kong
Locality: Central District
Country: HK
Locality: Central District
Country: HK
Thawte, Inc.
Organization:
Thawte, Inc.
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:e7:19:4a:71:4e:d2:d2:a3:1e:35:2a:05:6c:34:8bSerial Number (int): 3858389524082592181593221854252512395
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: a7:a2:83:bb:34:45:40:3d:fc:d5:30:4f:12:b9:3e:a1:01:9f:f6:db
Fingerprint (sha1): 6e:ba:0e:ad:17:a8:9f:91:c1:c5:2e:b2:60:fd:91:0e:64:bc:12:62
Fingerprint (sha256): f7:34:e9:42:f9:f2:a6:2d:3b:6d:92:47:f1:14:7f:85:b8:a5:45:56:9a:e3:6c:c7:95:96:21:d0:9f:43:87:48
Issuing Certificate URL: http://svr-ov-aia.thawte.com/ThawteOV.cer
Revocation information
OCSP Server: http://ocsp.thawte.comCRL Distribution Point: http://svr-ov-crl.thawte.com/ThawteOV.crl
Check the revocation status for certificate *.hwl.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.hwl.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.hwl.com
Other certificates including the domain name hwl.com
(limited to 100 certificates)
lsweb.hwl.com
*.suapps01.hwl.com
lsweb.hwl.com
servicedesk.hwl.com
lsweb.hwl.com
directory.hwl.com
*.hwl.com
oma.hwl.com
*.hwl.com
lsweb.hwl.com
sip.hwl.com
servicedesk.hwl.com
servicedesk.hwl.com
*.hwl.com
hotelbooking.hwl.com
oma.hwl.com
gisd.hwl.com
oma.hwl.com
*.hwl.com
*.hwl.com
lsweb.hwl.com
*.hwl.com
oma.hwl.com
mail.hwl.com
servicedesk.hwl.com
*.hwl.com
mail.hwl.com
*.hwl.com
sso.hwl.com
hotelbooking.hwl.com
hotelbooking.hwl.com
*.hwl.com
sip.hwl.com
mail.hwl.com
mail.hwl.com
*.hwl.com
lsweb.hwl.com
servicedesk.hwl.com
sip.hwl.com
gisd.hwl.com
lsweb.hwl.com
*.hwl.com
*.hwl.com
*.suapps01.hwl.com
lsweb.hwl.com
servicedesk.hwl.com
lsweb.hwl.com
directory.hwl.com
*.hwl.com
oma.hwl.com
*.hwl.com
lsweb.hwl.com
sip.hwl.com
servicedesk.hwl.com
servicedesk.hwl.com
*.hwl.com
hotelbooking.hwl.com
oma.hwl.com
gisd.hwl.com
oma.hwl.com
*.hwl.com
*.hwl.com
lsweb.hwl.com
*.hwl.com
oma.hwl.com
mail.hwl.com
servicedesk.hwl.com
*.hwl.com
mail.hwl.com
*.hwl.com
sso.hwl.com
hotelbooking.hwl.com
hotelbooking.hwl.com
*.hwl.com
sip.hwl.com
mail.hwl.com
mail.hwl.com
*.hwl.com
lsweb.hwl.com
servicedesk.hwl.com
sip.hwl.com
gisd.hwl.com
lsweb.hwl.com
*.hwl.com
*.hwl.com
Certificate
The complete raw certificate details for *.hwl.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIErDCCA5SgAwIBAgIQAucZSnFO0tKjHjUqBWw0izANBgkqhkiG9w0BAQUFADA8 MQswCQYDVQQGEwJVUzEVMBMGA1UEChMMVGhhd3RlLCBJbmMuMRYwFAYDVQQDEw1U aGF3dGUgU1NMIENBMB4XDTEyMDgyMjAwMDAwMFoXDTE0MTAyMTIzNTk1OVowgYMx CzAJBgNVBAYTAkhLMRIwEAYDVQQIEwlIb25nIEtvbmcxGTAXBgNVBAcUEENlbnRy YWwgRGlzdHJpY3QxIjAgBgNVBAoUGUh1dGNoaXNvbiBXaGFtcG9hIExpbWl0ZWQx DTALBgNVBAsUBEdJU0QxEjAQBgNVBAMUCSouaHdsLmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAKYnmPX5dFREqYiZA4V9BSxvfrT9WdXT9dH+/FS1 NAOEo4MZbUQHtirnk6wO8+XATYNll9J7bYZT5gqPffs8BX4fJdoCrAm+MN4Ow4Qd Z/DeFAsk47sTEWpFQ970J9nFGz1ywgbAtkUX0vvq7zEVZC9ZElQlHcF4xEOWcUQS 69K/Fthlpi11TqjXiHdDOvp8r98V/9uFshrnD16VbsA8aKOOgAPkoWCO7SvG/JGE wPZiIV8F7UQFIqRw7j4ea5AiNlyle6B5rh/vMox57mQpb4miJLKpavwDZwI0pzFJ tvk3uApwOOTkHG3cut3fpgDTCKElj/+hR1HLErfih+fPBDMCAwEAAaOCAWAwggFc MBQGA1UdEQQNMAuCCSouaHdsLmNvbTAJBgNVHRMEAjAAMEIGA1UdIAQ7MDkwNwYK YIZIAYb4RQEHNjApMCcGCCsGAQUFBwIBFhtodHRwczovL3d3dy50aGF3dGUuY29t L2Nwcy8wDgYDVR0PAQH/BAQDAgWgMB8GA1UdIwQYMBaAFKeig7s0RUA9/NUwTxK5 PqEBn/bbMDoGA1UdHwQzMDEwL6AtoCuGKWh0dHA6Ly9zdnItb3YtY3JsLnRoYXd0 ZS5jb20vVGhhd3RlT1YuY3JsMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjBpBggrBgEFBQcBAQRdMFswIgYIKwYBBQUHMAGGFmh0dHA6Ly9vY3NwLnRoYXd0 ZS5jb20wNQYIKwYBBQUHMAKGKWh0dHA6Ly9zdnItb3YtYWlhLnRoYXd0ZS5jb20v VGhhd3RlT1YuY2VyMA0GCSqGSIb3DQEBBQUAA4IBAQBPSwvh9aXcOKVxULHvOC2K GZK03eDkq4o63NjXquwUPRs94KRLa/ytEp6cW8X6OnUSdbNJj/A7oWilhTZBTb7m JbP8N+kwM+fCIDNMz4SDeFDma4zsew7tW7ZADalNalON4Q66oB+fmn6cmvdgB1Gr KLuNq5/m/A4bE7hRgDo1PkIL1b1/g4Wr8/+LeX/AnrZfb7TmNkG/wRsQNk4uDDl1 z7Awat+ei4Y7cNqLHnkPmnWBpgQLQWWRHSn4B4WadlQbV1hk5xUiTd8Xh+RMq7yx twv/n/wvhIbwrRh+utDllLk/XWNSE/uPNaX1lMV09h9qcekGMjl2pGcrzYUFeL6L -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApieY9fl0VESpiJkDhX0F LG9+tP1Z1dP10f78VLU0A4SjgxltRAe2KueTrA7z5cBNg2WX0ntthlPmCo99+zwF fh8l2gKsCb4w3g7DhB1n8N4UCyTjuxMRakVD3vQn2cUbPXLCBsC2RRfS++rvMRVk L1kSVCUdwXjEQ5ZxRBLr0r8W2GWmLXVOqNeId0M6+nyv3xX/24WyGucPXpVuwDxo o46AA+ShYI7tK8b8kYTA9mIhXwXtRAUipHDuPh5rkCI2XKV7oHmuH+8yjHnuZClv iaIksqlq/ANnAjSnMUm2+Te4CnA45OQcbdy63d+mANMIoSWP/6FHUcsSt+KH588E MwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3858389524082592181593221854252512395 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte, Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Thawte SSL CA' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2012-08-22 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2014-10-21 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'HK' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Hong Kong' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Central District' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'Hutchison Whampoa Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String 'GISD' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:20|false] TeletexString, T61String '*.hwl.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20975084880982686082215490953655019419587374747149660280194761379065187759674299448262809221204432714777419078460641839711233760085035306164155491202191408180927296643755114341880633437581360006190566270063027621848669273690926415674689831144264326590435475871410884862704920298279952076548643730049380518935492636891661239714086252689163678624025544670830540151799467173164604981439554585264254772703832316197371005768291616553100210009226880177964899746900458793152145865143120994547905762404029419648553572507623556205330697817471769298325331336379820698660782832741734333001960581700488894364459182341250601649203 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.hwl.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (59 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.113733.1.7.54 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.thawte.com/cps/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a7a283bb3445403dfcd5304f12b93ea1019ff6db . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (51 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-crl.thawte.com/ThawteOV.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (93 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.thawte.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://svr-ov-aia.thawte.com/ThawteOV.cer' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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