hwdao.com
Issued by WoSign CA Free SSL Certificate
About this certificate
This digital certificate with serial number 26:a2:05:2b:6c:c8:d7:f6:11:eb:f3:e2:2d:0c:6a:6a was issued on by WoSign CA Limited.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber certificate with an RSA key contains invalid key usage(s): KeyUsageKeyAgreement Key usage values digitalSignature, nonRepudiation, keyEncipherment, and dataEncipherment may only be present in an end entity certificate with an RSA key (RFC 3279: 2.3.1)
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- The keyUsage extension SHOULD be critical (RFC 5280: 4.2.1.3)
- Subscriber certificates using the SHA-1 algorithm SHOULD NOT have an expiration date later than 1 Jan 2017 (BRs: 7.1.3)
Certificate Subject
CN=hwdao.com,2.5.4.13=#13344170706c7920467265652053534c2043657274696669636174652061742068747470733a2f2f6275792e776f7369676e2e636f6d
WoSign CA Limited
Organization:
WoSign CA Limited
Country:
CN
This certificate has expire since
Certificate Details
Serial Number (hex): 26:a2:05:2b:6c:c8:d7:f6:11:eb:f3:e2:2d:0c:6a:6aSerial Number (int): 51351920783435637690497691189037001322
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 41:37:8a:a4:ef:5b:d3:ce:2c:55:e0:a1:28:f3:7b:fe:67:17:ce:8a
AuthorityKeyId: b5:28:2a:79:e2:37:0e:05:a1:41:0a:cc:6c:f6:63:71:b1:d9:f9:3d
Fingerprint (sha1): f4:e8:a9:8c:e6:75:7a:a9:fb:ec:dc:df:9f:c8:4f:3c:55:98:90:00
Fingerprint (sha256): fa:1c:50:0f:c1:28:8b:2a:fc:f7:4c:bb:c6:1f:40:c3:77:f0:a9:f4:59:a5:81:34:1f:4b:cb:f4:68:72:b3:98
Issuing Certificate URL: http://aia1.wosign.com/ca1.server1.free.cer
Revocation information
OCSP Server: http://ocsp1.wosign.com/ca1/server1/freeCRL Distribution Point: http://crls1.wosign.com/ca1-server1-free.crl
Check the revocation status for certificate hwdao.com
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hwdao.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA1 with RSA
Key Usage
Digital Signature
Key Encipherment
Key Agreement
Extended Key Usages
Client Authentication
Server Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
xianbeike.com
www.hwdao.com
hwdao.com
www.hwdao.com
hwdao.com
Other certificates including the domain name hwdao.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for hwdao.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE8jCCA9qgAwIBAgIQJqIFK2zI1/YR6/PiLQxqajANBgkqhkiG9w0BAQUFADBS MQswCQYDVQQGEwJDTjEaMBgGA1UEChMRV29TaWduIENBIExpbWl0ZWQxJzAlBgNV BAMTHldvU2lnbiBDQSBGcmVlIFNTTCBDZXJ0aWZpY2F0ZTAeFw0xNTAxMTkwNjEz NTlaFw0xNzAxMTkwNjEzNTlaMFMxPTA7BgNVBA0MNEFwcGx5IEZyZWUgU1NMIENl cnRpZmljYXRlIGF0IGh0dHBzOi8vYnV5Lndvc2lnbi5jb20xEjAQBgNVBAMMCWh3 ZGFvLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBALP4oh6I2FlR EZ+maNoPnCosmO2ygdyBgnMzIexsb9NJUFX1j95cR6UT+r/brDl+Ep7dVjjW+VXz S3ljSrv0x+I09u+v+C9i+bd6WEsFEWCvlS7neKsS2YS9WE67BWadUIf+YWdZfU4K NZaKsf/8bH6qC5qtnrIiqzdCF4LkmUIV4L1QcYI/GjDVpHvEcWj4J/F3MLK3NHXt K3cOr/wA6irfV8Ybr36s5SKJvn/v1jSzJUem5sd9L2GYMl6Ve+m+HYjsnkbrAf+0 m0EhXyaDWGm1cZ+eZL0Uo9Ow8UxVHkyQbPqusntDjjp7ebzdrOba7CnnSLKjxDmG 7xtqzJxGzN0CAwEAAaOCAcEwggG9MAsGA1UdDwQEAwIDqDAdBgNVHSUEFjAUBggr BgEFBQcDAgYIKwYBBQUHAwEwCQYDVR0TBAIwADAdBgNVHQ4EFgQUQTeKpO9b084s VeChKPN7/mcXzoowHwYDVR0jBBgwFoAUtSgqeeI3DgWhQQrMbPZjcbHZ+T0wfQYI KwYBBQUHAQEEcTBvMDQGCCsGAQUFBzABhihodHRwOi8vb2NzcDEud29zaWduLmNv bS9jYTEvc2VydmVyMS9mcmVlMDcGCCsGAQUFBzAChitodHRwOi8vYWlhMS53b3Np Z24uY29tL2NhMS5zZXJ2ZXIxLmZyZWUuY2VyMD0GA1UdHwQ2MDQwMqAwoC6GLGh0 dHA6Ly9jcmxzMS53b3NpZ24uY29tL2NhMS1zZXJ2ZXIxLWZyZWUuY3JsMDIGA1Ud EQQrMCmCDXhpYW5iZWlrZS5jb22CDXd3dy5od2Rhby5jb22CCWh3ZGFvLmNvbTBS BgNVHSAESzBJMAgGBmeBDAECATA9Bg4rBgEEAYKbUQEBAgYBAjArMCkGCCsGAQUF BwIBFh1odHRwOi8vd3d3Lndvc2lnbi5jb20vcG9saWN5LzANBgkqhkiG9w0BAQUF AAOCAQEA2qneH+aYez7fQQw1p9FeWxTEQK52MHcXaLcZDb6FLDQfWKdOLC8FHnx7 8n9qGfdnnMjdl3e/WcJ5wcGtbRYiUFN5za+AhxBsv/B3y0i2BU+enYqCPX72LgS/ /mE2xHT4WHypBlzy0sUnBPUjI5aoUmh1xQ4ABL8WxMzGiAp0cnBUYeMniCWmgnwM wkJv+bKBtxj+hqUlsYc6BZPkdpcz0NvhjWTBGhWzFJMIBrvQyq5gDm5pstWmQKdD Y6nqIgH1bS5z8Tm+53DvFtDH7gHDerY1iNceK4gu5OEauM1VM8jg/bWOEP4LWr66 5wxlADWDcVE7D5M7flq4AVNl4LnQsw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs/iiHojYWVERn6Zo2g+c KiyY7bKB3IGCczMh7Gxv00lQVfWP3lxHpRP6v9usOX4Snt1WONb5VfNLeWNKu/TH 4jT276/4L2L5t3pYSwURYK+VLud4qxLZhL1YTrsFZp1Qh/5hZ1l9Tgo1loqx//xs fqoLmq2esiKrN0IXguSZQhXgvVBxgj8aMNWke8RxaPgn8Xcwsrc0de0rdw6v/ADq Kt9XxhuvfqzlIom+f+/WNLMlR6bmx30vYZgyXpV76b4diOyeRusB/7SbQSFfJoNY abVxn55kvRSj07DxTFUeTJBs+q6ye0OOOnt5vN2s5trsKedIsqPEOYbvG2rMnEbM 3QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 51351920783435637690497691189037001322 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'CN' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WoSign CA Limited' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WoSign CA Free SSL Certificate' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2015-01-19 06:13:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-01-19 06:13:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.13 (description) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Apply Free SSL Certificate at https://buy.wosign.com' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'hwdao.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22719262228088281632868801984111190475521066455719333084944374727426121987860600422696363083926259425621038783290636078801750937329286875715102536550908199505421154324192299472648832425046226651301998548852749899727535104253868136136226137892167876637834369916353145630600088507757518980546775054637672381036374348987138031710947656263645615597574923155214835589777209248233270190118275949942140042835937274841248784497144827663179344285508771862995546391214037569940322122210853873623692428978083524080435712250399783333982917093612181421844878960277195708624694814208928862420662632865884343254818682355983199947997 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (5 bits) 03a8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 41378aa4ef5bd3ce2c55e0a128f37bfe6717ce8a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b5282a79e2370e05a1410acc6cf66371b1d9f93d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (113 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp1.wosign.com/ca1/server1/free' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://aia1.wosign.com/ca1.server1.free.cer' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls1.wosign.com/ca1-server1-free.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (43 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'xianbeike.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hwdao.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hwdao.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.36305.1.1.2.6.1.2 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.wosign.com/policy/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.5 (sha1WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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