CRL & OCSP report for 0-ieeexplore.ieee.org.library.ecu.edu.au - *.web.ecu.edu.au (Edith Cowan University)

*.web.ecu.edu.au

This certificate was cached at
Certificate details for *.web.ecu.edu.au (At position 0 in certificate chain)
Serial number:
hex: 2ec6d1c5ff8e3b81eb71223dda5a9b08683a2b81
int: 267047396850283354847705957805940276382433684353
Issued by: QuoVadis Global SSL ICA G2
Public Key Algorithm: RSA
Not valid before:
Not valid after:
Organization: Edith Cowan University
Organization unit: Information Technology Infrastructure
State / Province: Western Australia
Locality: Joondalup
Country: AU
  • This certificate does not contain any links to an LDAP server
  • This certificate does not contain any internal server links
  • This certificate does not contain any links with an unknown format

View complete certificate details for 0-ieeexplore.ieee.org.library.ecu.edu.au.

Certificate Revocation List (CRL)

This CRL was cached at
http://crl.quovadisglobal.com/qvsslg2.crl

CRL information

Source: CRL Distribution Points in Certificate
Location: http://crl.quovadisglobal.com/qvsslg2.crl
Size: 338381 bytes (DER data)
Response time: 938.029405ms
This update:
Next update:
Revoked: No
Revoked certificates in CRL: 6377

Relevant server response headers

Date:
Last Modified:

Server and network information

Server Software: AmazonS3

Raw CRL response headers

Content-Length: [338381]
Content-Type: [application/pkix-crl]
Date: [Wed, 18 Jan 2017 10:03:11 GMT]
Etag: ["1834e6d558a3331213a7744c3ca489bd"]
Last-Modified: [Wed, 18 Jan 2017 10:00:03 GMT]
Server: [AmazonS3]
X-Amz-Id-2: [/2a12d86TevpIQ/rwNC7cUxx+h6LOD4RW0Inht8A5eTRrlhXbU4Yr0wScBdUc43Rfc1rnY2FXHI=]
X-Amz-Request-Id: [52B90C21E8484189]
  • Content-Type in response is set to 'application/pkix-crl (RFC 5280, section 4.2.1.13)'
  • This CRL file is DER encoded
  • Response is already valid
  • Response is not expired
  • ThisUpdate is less than seven days old, CRLs must be updated and reissued at least every seven days (Mozilla Maintenance Policy section 3)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified header is not the same as ThisUpdate (RFC 5019, section 6.2)
  • Expires cache header not set (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)

Online Certificate Status Protocol (OCSP)

This OCSP response was cached at
http://ocsp.quovadisglobal.com (POST)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://ocsp.quovadisglobal.com (POST)
Size: 1596 bytes (DER data)
Response time: 311.115923ms
Signature algorithm: SHA256WithRSA
Signature type: CA Deligated
Signed by: QuoVadis OCSP Authority Signature
Issued by: QuoVadis Global SSL ICA G2
Signing certificate validity: 2013-06-01 - 2023-06-01
Signing certificate algorithm: SHA256-RSA
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:
Last Modified:
Expires:
Cache Control Max-age: 43h11m59s

Server and network information

Server Software: Apache-Coyote/1.1

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MFUwUzBRME8wTTAJBgUrDgMCGgUABBQizVAdki5cQPHmWNk6O3DgVg1ovgQUkRli
rVsXpzD78N45JbG9jLm4UScCFC7G0cX/jjuB63EiPdpamwhoOiuB
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----
MIIGOAoBAKCCBjEwggYtBgkrBgEFBQcwAQEEggYeMIIGGjCCARChbzBtMQswCQYD
VQQGEwJCTTEZMBcGA1UEChMQUXVvVmFkaXMgTGltaXRlZDEXMBUGA1UECxMOT0NT
UCBSZXNwb25kZXIxKjAoBgNVBAMTIVF1b1ZhZGlzIE9DU1AgQXV0aG9yaXR5IFNp
Z25hdHVyZRgPMjAxNzAxMTcwODQ5NTNaMHcwdTBNMAkGBSsOAwIaBQAEFCLNUB2S
LlxA8eZY2To7cOBWDWi+BBSRGWKtWxenMPvw3jklsb2MubhRJwIULsbRxf+OO4Hr
cSI92lqbCGg6K4GAABgPMjAxNzAxMTcwODQ5NTNaoBEYDzIwMTcwMTE5MDg0OTUz
WqETMBEwDwYJKwYBBQUHMAEJBAIFADANBgkqhkiG9w0BAQsFAAOCAQEAUf98DVI6
sgEvUHIc8GQmNrYgXrQ2kKUk+5lw2nuOgAwxqCXsxzV+b/gk3a+pkmy/sKDYXTUh
HajyulKLvixeyU7Plx+4X0fNwByTuHjMkjznxs5Xqq7OI3+E/SzZS1TDCfKxuWsE
50RHpA0JmM/fTYCG6TmPY7ESdOITIyxyx82KgNUk8bBvf4cdo9RzlbuONzrB2ln4
MC4P2qQgZ9Bb26aMTUytOtIRU9aXdrX08m9opG1DHq6F9A4LFEfsh1TGN5wBk3Ht
2XKQGnKSWG0VZ1QJWiXOrN3PpPLg7iU4sb4urnBH2PYm7n5pIVRkICRiFHTMeC6t
ojWhuJhfcDI026CCA+4wggPqMIID5jCCAs6gAwIBAgIUbBBzwLGn21UdieNVQNuV
LjnWEcgwDQYJKoZIhvcNAQELBQAwTTELMAkGA1UEBhMCQk0xGTAXBgNVBAoTEFF1
b1ZhZGlzIExpbWl0ZWQxIzAhBgNVBAMTGlF1b1ZhZGlzIEdsb2JhbCBTU0wgSUNB
IEcyMB4XDTEzMDYwMTE0NDEzMVoXDTIzMDYwMTEzMzUwNVowbTELMAkGA1UEBhMC
Qk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxFzAVBgNVBAsTDk9DU1AgUmVz
cG9uZGVyMSowKAYDVQQDEyFRdW9WYWRpcyBPQ1NQIEF1dGhvcml0eSBTaWduYXR1
cmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQC8M50wldW72iX/DmyS
r+RzsVfVTlqIsOdfq1ypzaNGY2y+RTG5rQTGDPgLfMFfx2xZuGOaZWSadxYUqX6c
/J4QS/3aDgGGaerI9vPd1YEoRVasVKN7n4HFfBL25RcegeH8T8aq8OKU35/7bWf1
AzDh5adfWC9fNKBR9TO0YE9BbqY89u3igF7qEzsfTmoE+tvAc5Cvi6t4Nly+iQJB
oFKhFCvfUR41WaAMB5IGOpWdm83t0vHXN9vRHhFBUqYgFVrEL05B2r0kySDwhaYm
X93ETXLBDAMrldiVNUGMfxLRwtFaFCwrbMm5I6OrfjhoKR0PhFkBt3Q/gU7NK3iw
ed3dAgMBAAGjgZ0wgZowCQYDVR0TBAIwADAPBgkrBgEFBQcwAQUEAgUAMBcGA1Ud
IAQQMA4wDAYKKwYBBAG+WAGCLDAOBgNVHQ8BAf8EBAMCB4AwEwYDVR0lBAwwCgYI
KwYBBQUHAwkwHwYDVR0jBBgwFoAUkRlirVsXpzD78N45JbG9jLm4UScwHQYDVR0O
BBYEFAPiz+KInOv6I3HVUv7OTHp9QqeYMA0GCSqGSIb3DQEBCwUAA4IBAQCZAGqf
YRL5VtMTihggBKzcO56yLonU2pObxBUr4fNvmlfIAtfewLXRxePNz1KQmWgp28/H
dE3EDjJd5vP4EWMBZXpv6rUbYj8BAdcGAaeI0JJA+w+38cCwrMVy4MsNXi7prLbn
j+izf0wj4ZX/NKD8Bn4YLnb+mlGoVazrXT8p7/VMImF2hvyegn/GkZ7rpWUpGdEG
sz8n2da9l993Te7Rd2+rGSoWqXqTBmcWHLwqroAGTrriiqHOS5IC2sncg2OlSFmf
1hZEYgLIcUOO+xYi98LSwT7fjZKBXk6qSEodcumDbZyA/8SLaAkl5uxSxSoVmD2X
tmdVZ8Irv/KQMIGk
-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Raw OCSP response headers

Cache-Control: [max-age=155519,public,no-transform,must-revalidate]
Content-Length: [1596]
Content-Type: [application/ocsp-response]
Date: [Tue, 17 Jan 2017 08:49:52 GMT]
Etag: [-60bf86179c48ea11f1880f788b73f4db72ad1ae1]
Expires: [Thu, 19 Jan 2017 08:49:53 GMT]
Last-Modified: [Tue, 17 Jan 2017 08:49:53 GMT]
Server: [Apache-Coyote/1.1]
  • OCSP signing certificate is already valid
  • OCSP signing certificate is not expired
  • OCSP signing certificate does not expire before NextUpdate
  • OCSP signing certificate does contain the Extended Key Usage for OCSP Signing
  • OCSP signing certificate does contain the OCSP No Check extension
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is not yet valid
  • Response is not expired
  • ThisUpdate is less than four days old, OCSP information must be updated at least every four days (Mozilla & Baseline Requirements)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified header is the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)
This OCSP response was cached at
http://ocsp.quovadisglobal.com (GET)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://ocsp.quovadisglobal.com (GET)
Size: 1596 bytes (DER data)
Response time: 297.724065ms
Signature algorithm: SHA256WithRSA
Signature type: CA Deligated
Signed by: QuoVadis OCSP Authority Signature
Issued by: QuoVadis Global SSL ICA G2
Signing certificate validity: 2013-06-01 - 2023-06-01
Signing certificate algorithm: SHA256-RSA
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:
Last Modified:
Expires:
Cache Control Max-age: 43h11m59s

Server and network information

Server Software: Apache-Coyote/1.1

URL used for GET request

http:/MFUwUzBRME8wTTAJBgUrDgMCGgUABBQizVAdki5cQPHmWNk6O3DgVg1ovgQUkRlirVsXpzD78N45JbG9jLm4UScCFC7G0cX%2FjjuB63EiPdpamwhoOiuB

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MFUwUzBRME8wTTAJBgUrDgMCGgUABBQizVAdki5cQPHmWNk6O3DgVg1ovgQUkRli
rVsXpzD78N45JbG9jLm4UScCFC7G0cX/jjuB63EiPdpamwhoOiuB
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----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-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Raw OCSP response headers

Cache-Control: [max-age=155519,public,no-transform,must-revalidate]
Content-Length: [1596]
Content-Type: [application/ocsp-response]
Date: [Tue, 17 Jan 2017 08:49:52 GMT]
Etag: [1d6126fd7461d880ffcfeda6f038dec1708e6a7c]
Expires: [Thu, 19 Jan 2017 08:49:52 GMT]
Last-Modified: [Tue, 17 Jan 2017 08:49:52 GMT]
Server: [Apache-Coyote/1.1]
  • OCSP signing certificate is already valid
  • OCSP signing certificate is not expired
  • OCSP signing certificate does not expire before NextUpdate
  • OCSP signing certificate does contain the Extended Key Usage for OCSP Signing
  • OCSP signing certificate does contain the OCSP No Check extension
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is already valid
  • Response is not expired
  • ThisUpdate is less than four days old, OCSP information must be updated at least every four days (Mozilla & Baseline Requirements)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified header is the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)

QuoVadis Global SSL ICA G2 (CA Certificate)

This certificate was cached at
Certificate details for QuoVadis Global SSL ICA G2 (At position 1 in certificate chain)
Serial number:
hex: 48982de2a92cb339e1c8f933358275d3e4f88255
int: 414441045951046581292119350263127430575186018901
Issued by: QuoVadis Root CA 2
Public Key Algorithm: RSA
Not valid before:
Not valid after:
Organization: QuoVadis Limited
Country: BM
  • This certificate does not contain any links to an LDAP server
  • This certificate does not contain any internal server links
  • This certificate does not contain any links with an unknown format

Certificate Revocation List (CRL)

This CRL was cached at
http://crl.quovadisglobal.com/qvrca2.crl

CRL information

Source: CRL Distribution Points in Certificate
Location: http://crl.quovadisglobal.com/qvrca2.crl
Size: 1216 bytes (DER data)
Response time: 350.712755ms
This update:
Next update:
Revoked: No
Revoked certificates in CRL: 9

Relevant server response headers

Date:
Last Modified:

Server and network information

Server Software: AmazonS3

Raw CRL response headers

Content-Length: [1216]
Content-Type: [application/pkix-crl]
Date: [Fri, 13 Jan 2017 09:45:38 GMT]
Etag: ["5af6e182b24bee154435e6a8f6711841"]
Last-Modified: [Fri, 13 Jan 2017 09:45:02 GMT]
Server: [AmazonS3]
X-Amz-Id-2: [KwmMzFWKGOYSD7zptnIeAPRGI7YnX0+Js62bt2pRENCV9bon0fC2U9vVrvzOY/ZotYtLpCldetc=]
X-Amz-Request-Id: [54252CA2758A7014]
  • Content-Type in response is set to 'application/pkix-crl (RFC 5280, section 4.2.1.13)'
  • This CRL file is DER encoded
  • Response is already valid
  • Response is not expired
  • Revocation information is updated at least once every twelve months
  • The value of the NextUpdate field is not more than twelve months beyond the value of the ThisUpdate field
  • Last-Modified header is not the same as ThisUpdate (RFC 5019, section 6.2)
  • Expires cache header not set (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)

Online Certificate Status Protocol (OCSP)

This OCSP response was cached at
http://ocsp.quovadisglobal.com (GET)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://ocsp.quovadisglobal.com (GET)
Size: 1793 bytes (DER data)
Response time: 1.522524392s
Signature algorithm: SHA256WithRSA
Signature type: CA Deligated
Signed by: QuoVadis OCSP Authority Signature
Issued by: QuoVadis Root CA 2
Signing certificate validity: 2014-05-05 - 2017-08-05
Signing certificate algorithm: SHA256-RSA
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:
Last Modified:
Expires:
Cache Control Max-age: 43h11m59s

Server and network information

Server Software: Apache-Coyote/1.1

URL used for GET request

http:/MFUwUzBRME8wTTAJBgUrDgMCGgUABBTyhcKR1A4XhQLFZRt5u%2BT8TDsYdQQUGoRivEhMMyUE1O7Q9gPEGUbRlGsCFEiYLeKpLLM54cj5MzWCddPk%2BIJV

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MFUwUzBRME8wTTAJBgUrDgMCGgUABBTyhcKR1A4XhQLFZRt5u+T8TDsYdQQUGoRi
vEhMMyUE1O7Q9gPEGUbRlGsCFEiYLeKpLLM54cj5MzWCddPk+IJV
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----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-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Raw OCSP response headers

Cache-Control: [max-age=155519,public,no-transform,must-revalidate]
Content-Length: [1793]
Content-Type: [application/ocsp-response]
Date: [Tue, 17 Jan 2017 10:01:45 GMT]
Etag: [-59f7b1bd6c87d748ed0517dbf9239ccd29ae0d51]
Expires: [Thu, 19 Jan 2017 10:01:46 GMT]
Last-Modified: [Tue, 17 Jan 2017 10:01:46 GMT]
Server: [Apache-Coyote/1.1]
  • OCSP signing certificate is already valid
  • OCSP signing certificate is not expired
  • OCSP signing certificate does not expire before NextUpdate
  • OCSP signing certificate does contain the Extended Key Usage for OCSP Signing
  • OCSP signing certificate does contain the OCSP No Check extension
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is not yet valid
  • Response is not expired
  • Revocation information is updated at least once every twelve months
  • The value of the NextUpdate field is not more than twelve months beyond the value of the ThisUpdate field
  • Last-Modified header is the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)
This OCSP response was cached at
http://ocsp.quovadisglobal.com (POST)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://ocsp.quovadisglobal.com (POST)
Size: 1793 bytes (DER data)
Response time: 1.81579197s
Signature algorithm: SHA256WithRSA
Signature type: CA Deligated
Signed by: QuoVadis OCSP Authority Signature
Issued by: QuoVadis Root CA 2
Signing certificate validity: 2014-05-05 - 2017-08-05
Signing certificate algorithm: SHA256-RSA
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:
Last Modified:
Expires:
Cache Control Max-age: 43h11m59s

Server and network information

Server Software: Apache-Coyote/1.1

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MFUwUzBRME8wTTAJBgUrDgMCGgUABBTyhcKR1A4XhQLFZRt5u+T8TDsYdQQUGoRi
vEhMMyUE1O7Q9gPEGUbRlGsCFEiYLeKpLLM54cj5MzWCddPk+IJV
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----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-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Raw OCSP response headers

Cache-Control: [max-age=155519,public,no-transform,must-revalidate]
Content-Length: [1793]
Content-Type: [application/ocsp-response]
Date: [Tue, 17 Jan 2017 10:01:46 GMT]
Etag: [-59f7b1bd6c87d748ed0517dbf9239ccd29ae0d51]
Expires: [Thu, 19 Jan 2017 10:01:46 GMT]
Last-Modified: [Tue, 17 Jan 2017 10:01:46 GMT]
Server: [Apache-Coyote/1.1]
  • OCSP signing certificate is already valid
  • OCSP signing certificate is not expired
  • OCSP signing certificate does not expire before NextUpdate
  • OCSP signing certificate does contain the Extended Key Usage for OCSP Signing
  • OCSP signing certificate does contain the OCSP No Check extension
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is already valid
  • Response is not expired
  • Revocation information is updated at least once every twelve months
  • The value of the NextUpdate field is not more than twelve months beyond the value of the ThisUpdate field
  • Last-Modified header is the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)

QuoVadis Root CA 2 (CA Certificate)

This certificate was cached at
Certificate details for QuoVadis Root CA 2 (At position 2 in certificate chain)
Serial number:
hex: 509
int: 1289
Issued by: QuoVadis Root CA 2
Public Key Algorithm: RSA
Not valid before:
Not valid after:
Organization: QuoVadis Limited
Country: BM
  • This certificate does not contain any links to an LDAP server
  • This certificate does not contain any internal server links
  • This certificate does not contain any links with an unknown format

This is a self signed certificate

Check the revocation status for another website

Created by Paul van Brouwershaven
Revoked certificates can't and should not be trusted, these certificate will cause errors like "NET::ERR_CERT_REVOKED" in browsers.