app-bank.fglife.com.tw

- Farglory Life Insurance Co. -

Issued by TWCA Secure SSL Certification Authority

About this certificate

This digital certificate with serial number 47:e3:00:00:00:01:af:d7:01:e2:2a:25:11:11:dd:11 was issued on by TAIWAN-CA.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Farglory Life Insurance Co.

Organization: Farglory Life Insurance Co.
Organization unit: IT
State / Province: Taiwan
Locality: Taipei
Country: TW

TAIWAN-CA

Organization: TAIWAN-CA
Organization unit: Secure SSL Sub-CA
Country: TW

This certificate has expire since

Certificate Details

Serial Number (hex): 47:e3:00:00:00:01:af:d7:01:e2:2a:25:11:11:dd:11
Serial Number (int): 95553839087618472153986533888741203217
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 17:ac:22:32:cf:3c:c2:a8:18:49:65:29:f6:ad:24:27:25:00:b1:d8:2d:6d:6f:e3:ee:8b:a9:67:7c:4b:4c:f8
AuthorityKeyId: f8:07:c2:68:24:ff:85:95:cb:db:1e:e3:33:9c:2a:4f:97:20:56:7b

Fingerprint (sha1): 9a:b5:5e:75:36:2a:ec:fe:58:73:76:2f:07:5f:e8:8c:fe:81:72:29
Fingerprint (sha256): f7:84:4c:55:05:1d:64:46:d6:ad:a7:4c:59:d1:7b:e3:56:5c:69:a2:cc:dc:82:fe:2e:10:c8:1b:45:85:a1:8e

Issuing Certificate URL: http://sslserver.twca.com.tw/cacert/secure_sha2_2014.crt

Revocation information

OCSP Server: http://twcasslocsp.twca.com.tw/
CRL Distribution Point: http://sslserver.twca.com.tw/sslserver/Securessl_revoke_sha2_2014.crl

Check the revocation status for certificate app-bank.fglife.com.tw

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for app-bank.fglife.com.tw

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

app-bank.fglife.com.tw

Other certificates including the domain name fglife.com.tw

(limited to 100 certificates)
ex.fglife.com.tw
mdm.fglife.com.tw
app-customer.fglife.com.tw
ex3.fglife.com.tw
fgweb.fglife.com.tw
member.fglife.com.tw
uat.lia-share.fglife.com.tw
app-bank.fglife.com.tw
hr.fglife.com.tw
bw.fglife.com.tw
proposal.fglife.com.tw
hr.fglife.com.tw
member.fglife.com.tw
member.fglife.com.tw
uat.lia-share.fglife.com.tw
slm.fglife.com.tw
webmail.fglife.com.tw
app-customer.fglife.com.tw
test.fglife.com.tw
bw.fglife.com.tw
gip.fglife.com.tw
ex3.fglife.com.tw
ex.fglife.com.tw
accessibility.fglife.com.tw
sslvpn.fglife.com.tw
app2-ins.fglife.com.tw
app-broker.fglife.com.tw
fgweb.fglife.com.tw
luckygo.fglife.com.tw
webmail.fglife.com.tw
fgweb.fglife.com.tw
member.fglife.com.tw
app-broker.fglife.com.tw
www.fglife.com.tw
jcm.fglife.com.tw
app-bank.fglife.com.tw
www2.fglife.com.tw
bw.fglife.com.tw
online-ins.fglife.com.tw
member.fglife.com.tw
e-recruit.fglife.com.tw
app-broker.fglife.com.tw
bw.fglife.com.tw
realty.fglife.com.tw
slm.fglife.com.tw
www.fglife.com.tw
online-ins.fglife.com.tw
member.fglife.com.tw
lip.fglife.com.tw
lip.fglife.com.tw
lia-share.fglife.com.tw
mdm.fglife.com.tw
hr.fglife.com.tw
webmail.fglife.com.tw
fgweb.fglife.com.tw
lia-share.fglife.com.tw
slm.fglife.com.tw
member.fglife.com.tw
sslvpn.fglife.com.tw
jcm.fglife.com.tw
online-ins.fglife.com.tw
app-agent.fglife.com.tw
app-agent.fglife.com.tw
ex.fglife.com.tw
app-ins-test.fglife.com.tw
app-ins-nbpr.fglife.com.tw
ex.fglife.com.tw
lip.fglife.com.tw
lia-share.fglife.com.tw
uat.lia-share.fglife.com.tw
accessibility.fglife.com.tw
www.fglife.com.tw
cas.fglife.com.tw
fatca.fglife.com.tw
cas.fglife.com.tw
member.fglife.com.tw
member.fglife.com.tw
fg-ao5.fglife.com.tw
sslvpn.fglife.com.tw
realty.fglife.com.tw
www.fglife.com.tw
lip.fglife.com.tw
jira.fglife.com.tw
fg-ao5.fglife.com.tw
www2.fglife.com.tw
e-recruit.fglife.com.tw
member.fglife.com.tw
app2-ins-test.fglife.com.tw
cas.fglife.com.tw
sslvpn.fglife.com.tw
app-bank.fglife.com.tw
hr.fglife.com.tw
www.fglife.com.tw

Certificate

The complete raw certificate details for app-bank.fglife.com.tw in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApa5jzpjIPxjAwSMjUD8S
/z/HKH16vAmgsdjo9shA0xUGeQyTjO17z+SPlopoo7H1Ef+PTnmjGjZMf9WE62YX
0St2LKthl12RcN9hEIylS7eTHD21mrzbDnOgEW/WLBvc9gM0jzdKllaKdphatdFo
Ge+7M2fv7JNA1Whhs8/hN4XZGPhXmwuT5y0TLKJKt/f42ZchQ2/eVnNjnSgZ2hkV
GarRkCHjT9p6udbpix+S07wvLblxg2aQp3NxpnSfNqy9ZZm2Llfv4OruVDdsmysk
kwOeyf04gTTdDbT9nZGKfiByEqNnraqp013hAw9QlzRan4c702Wc2B7e4zRP1vqE
ZQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 95553839087618472153986533888741203217
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TW'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TAIWAN-CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Secure SSL Sub-CA'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TWCA Secure SSL Certification Authority'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-24 09:40:07 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2021-07-03 15:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'TW'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Taiwan'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Taipei'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Farglory Life Insurance Co.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'IT'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'app-bank.fglife.com.tw'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20915315169944129953618537582058547847073311503803485509542071857812916699204820917208865330781498374998513524933561523216598103460851524029145047428348239501502827221012076030211491062426772686059747906989978274226282672384126555498845330075250154061100373465695724657364288212911062151473752294102206012094205959027491656408007784038444339157286716867709016172090480170785539562573899484755795140412134044350245798303856472831614304197281248046194140049323133082465804954910242526626882867156667623904452273499210015153204525994115340143784807225207117081034489696666718752354835208486406024822933226084129593525349
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName f807c26824ff8595cbdb1ee3339c2a4f9720567b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes)
							17ac2232cf3cc2a818496529f6ad24272500b1d82d6d6fe3ee8ba9677c4b4cf8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (79 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sslserver.twca.com.tw/sslserver/Securessl_revoke_sha2_2014.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'app-bank.fglife.com.tw'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (117 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://sslserver.twca.com.tw/cacert/secure_sha2_2014.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://twcasslocsp.twca.com.tw/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.40869.1.1.25
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'www.twca.com.tw'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (366 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (362 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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