CRL & OCSP report for 0-intelliconnect.wkasiapacific.com.library.ecu.edu.au - *.web.ecu.edu.au (Edith Cowan University)

*.web.ecu.edu.au

Certificate details for *.web.ecu.edu.au (At position 0 in certificate chain)
Serial number:
hex: 2ec6d1c5ff8e3b81eb71223dda5a9b08683a2b81
int: 267047396850283354847705957805940276382433684353
Issued by: QuoVadis Global SSL ICA G2
Public Key Algorithm: RSA
Not valid before:
Not valid after:
Organization: Edith Cowan University
Organization unit: Information Technology Infrastructure
State / Province: Western Australia
Locality: Joondalup
Country: AU
  • This certificate does not contain any links to an LDAP server
  • This certificate does not contain any internal server links
  • This certificate does not contain any links with an unknown format

Check certificate compliance for 0-intelliconnect.wkasiapacific.com.library.ecu.edu.au.

Certificate Revocation List (CRL)

This CRL was cached at
http://crl.quovadisglobal.com/qvsslg2.crl

CRL information

Source: CRL Distribution Points in Certificate
Location: http://crl.quovadisglobal.com/qvsslg2.crl
Size: 400702 bytes (DER data)
Response time: 2.002577991s
This update:
Next update:
Revoked: No
Revoked certificates in CRL: 7553

Relevant server response headers

Date:
Last Modified:

Server and network information

Server Software: AmazonS3

Raw CRL response headers

Content-Length: [400702]
Content-Type: [application/pkix-crl]
Date: [Sun, 25 Jun 2017 01:37:28 GMT]
Etag: ["77f7aea82cb6225a9c66e35c802177ca"]
Last-Modified: [Sun, 25 Jun 2017 01:35:03 GMT]
Server: [AmazonS3]
X-Amz-Id-2: [XyoPFgP8dQsZODKqxGOJRV/0SPnsqnGsiwe6uKxvl64+nGem3klHb48ybgOKLHpDhNzx63bu3bk=]
X-Amz-Request-Id: [6C33C2969DC9495F]
  • Content-Type in response is set to 'application/pkix-crl (RFC 5280, section 4.2.1.13)'
  • This CRL file is DER encoded
  • Issuer field is byte-for-byte equivalent with issuers subject
  • Response is already valid
  • Response is not expired
  • ThisUpdate is less than seven days old, CRLs must be updated and reissued at least every seven days (Mozilla Maintenance Policy section 3)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified header is not the same as ThisUpdate (RFC 5019, section 6.2)
  • Expires cache header not set (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)

Online Certificate Status Protocol (OCSP)

This OCSP response was cached at
http://ocsp.quovadisglobal.com (GET)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://ocsp.quovadisglobal.com (GET)
Size: 1574 bytes (DER data)
Response time: 193.483404ms
Signature algorithm: SHA256WithRSA
Signature type: CA Delegated
Signed by: QuoVadis OCSP Authority Signature
Issued by: QuoVadis Global SSL ICA G2
Signing certificate validity: 2016-11-03 - 2023-06-01
Signing certificate algorithm: SHA256-RSA
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:
Last Modified:
Expires:
Cache Control Max-age: 43h11m59s

Server and network information

Server Software: Apache

URL used for GET request

http://ocsp.quovadisglobal.com/MFUwUzBRME8wTTAJBgUrDgMCGgUABBQizVAdki5cQPHmWNk6O3DgVg1ovgQUkRlirVsXpzD78N45JbG9jLm4UScCFC7G0cX%2FjjuB63EiPdpamwhoOiuB

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MFUwUzBRME8wTTAJBgUrDgMCGgUABBQizVAdki5cQPHmWNk6O3DgVg1ovgQUkRli
rVsXpzD78N45JbG9jLm4UScCFC7G0cX/jjuB63EiPdpamwhoOiuB
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----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-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Raw OCSP response headers

Cache-Control: [max-age=155519,public,no-transform,must-revalidate]
Content-Length: [1574]
Content-Type: [application/ocsp-response]
Date: [Sat, 24 Jun 2017 03:31:52 GMT]
Etag: ["7deeb201c18af17e5be3b913d9fdd65cd320db2f"]
Expires: [Mon, 26 Jun 2017 03:31:52 GMT]
Last-Modified: [Sat, 24 Jun 2017 03:31:52 GMT]
Server: [Apache]
  • OCSP requests is smaller than 255 bytes
  • OCSP signing certificate is already valid
  • OCSP signing certificate is not expired
  • OCSP signing certificate does not expire before NextUpdate
  • OCSP signing certificate does contain the Extended Key Usage for OCSP Signing
  • OCSP signing certificate does contain the OCSP No Check extension
  • OCSP response is valid for at least 8 hours (Microsoft)
  • OCSP response is available at least 8 hours before the current period expires or at ½ the validity if valid for more than 16 hours (Microsoft)
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is already valid
  • Response is not expired
  • ThisUpdate is less than four days old, OCSP information must be updated at least every four days (Mozilla & Baseline Requirements)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified header is the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)
This OCSP response was cached at
http://ocsp.quovadisglobal.com (POST)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://ocsp.quovadisglobal.com (POST)
Size: 1574 bytes (DER data)
Response time: 207.314104ms
Signature algorithm: SHA256WithRSA
Signature type: CA Delegated
Signed by: QuoVadis OCSP Authority Signature
Issued by: QuoVadis Global SSL ICA G2
Signing certificate validity: 2016-11-03 - 2023-06-01
Signing certificate algorithm: SHA256-RSA
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:

Server and network information

Server Software: Apache

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MFUwUzBRME8wTTAJBgUrDgMCGgUABBQizVAdki5cQPHmWNk6O3DgVg1ovgQUkRli
rVsXpzD78N45JbG9jLm4UScCFC7G0cX/jjuB63EiPdpamwhoOiuB
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----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-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Raw OCSP response headers

Content-Length: [1574]
Content-Type: [application/ocsp-response]
Date: [Sat, 24 Jun 2017 03:31:52 GMT]
Server: [Apache]
  • OCSP signing certificate is already valid
  • OCSP signing certificate is not expired
  • OCSP signing certificate does not expire before NextUpdate
  • OCSP signing certificate does contain the Extended Key Usage for OCSP Signing
  • OCSP signing certificate does contain the OCSP No Check extension
  • OCSP response is valid for at least 8 hours (Microsoft)
  • OCSP response is available at least 8 hours before the current period expires or at ½ the validity if valid for more than 16 hours (Microsoft)
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is already valid
  • Response is not expired
  • ThisUpdate is less than four days old, OCSP information must be updated at least every four days (Mozilla & Baseline Requirements)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified cache header not set (RFC 5019, section 6.2)
  • Expires cache header not set (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)

QuoVadis Global SSL ICA G2 (CA Certificate)

Certificate details for QuoVadis Global SSL ICA G2 (At position 1 in certificate chain)
Serial number:
hex: 48982de2a92cb339e1c8f933358275d3e4f88255
int: 414441045951046581292119350263127430575186018901
Issued by: QuoVadis Root CA 2
Public Key Algorithm: RSA
Not valid before:
Not valid after:
Organization: QuoVadis Limited
Country: BM
  • This certificate does not contain any links to an LDAP server
  • This certificate does not contain any internal server links
  • This certificate does not contain any links with an unknown format

Certificate Revocation List (CRL)

This CRL was cached at
http://crl.quovadisglobal.com/qvrca2.crl

CRL information

Source: CRL Distribution Points in Certificate
Location: http://crl.quovadisglobal.com/qvrca2.crl
Size: 1216 bytes (DER data)
Response time: 1.080505876s
This update:
Next update:
Revoked: No
Revoked certificates in CRL: 9

Relevant server response headers

Date:
Last Modified:

Server and network information

Server Software: AmazonS3

Raw CRL response headers

Content-Length: [1216]
Content-Type: [application/pkix-crl]
Date: [Sun, 25 Jun 2017 01:44:09 GMT]
Etag: ["2a38fa7616227660cf09e031e6d04876"]
Last-Modified: [Sun, 25 Jun 2017 01:40:03 GMT]
Server: [AmazonS3]
X-Amz-Id-2: [cMj1+Phm/dDC0xTliqFoYRX+pjUM2zNXKUSAlJdarL0ZdoJaxOsWWCbl6Qi8EvXg9bz2+dijbAs=]
X-Amz-Request-Id: [D31B9458D10A3432]
  • Content-Type in response is set to 'application/pkix-crl (RFC 5280, section 4.2.1.13)'
  • This CRL file is DER encoded
  • Issuer field is byte-for-byte equivalent with issuers subject
  • Response is already valid
  • Response is not expired
  • Revocation information is updated at least once every twelve months
  • The value of the NextUpdate field is not more than twelve months beyond the value of the ThisUpdate field
  • Last-Modified header is not the same as ThisUpdate (RFC 5019, section 6.2)
  • Expires cache header not set (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)

Online Certificate Status Protocol (OCSP)

This OCSP response was cached at
http://ocsp.quovadisglobal.com (GET)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://ocsp.quovadisglobal.com (GET)
Size: 1822 bytes (DER data)
Response time: 727.867642ms
Signature algorithm: SHA256WithRSA
Signature type: CA Delegated
Signed by: QuoVadis OCSP Authority Signature
Issued by: QuoVadis Root CA 2
Signing certificate validity: 2016-11-04 - 2020-02-05
Signing certificate algorithm: SHA256-RSA
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:
Last Modified:
Expires:
Cache Control Max-age: 43h11m59s

Server and network information

Server Software: Apache

URL used for GET request

http://ocsp.quovadisglobal.com/MFUwUzBRME8wTTAJBgUrDgMCGgUABBTyhcKR1A4XhQLFZRt5u%2BT8TDsYdQQUGoRivEhMMyUE1O7Q9gPEGUbRlGsCFEiYLeKpLLM54cj5MzWCddPk%2BIJV

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MFUwUzBRME8wTTAJBgUrDgMCGgUABBTyhcKR1A4XhQLFZRt5u+T8TDsYdQQUGoRi
vEhMMyUE1O7Q9gPEGUbRlGsCFEiYLeKpLLM54cj5MzWCddPk+IJV
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----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==
-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)

-----BEGIN CERTIFICATE-----
MIIE3jCCAsagAwIBAgIUVN3iSKjh5orUj95QyiHYX1blqP8wDQYJKoZIhvcNAQEL
BQAwRTELMAkGA1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQxGzAZ
BgNVBAMTElF1b1ZhZGlzIFJvb3QgQ0EgMjAeFw0xNjExMDQxNjM4NDJaFw0yMDAy
MDUxNjM4NDJaMG0xCzAJBgNVBAYTAkJNMRkwFwYDVQQKExBRdW9WYWRpcyBMaW1p
dGVkMRcwFQYDVQQLEw5PQ1NQIFJlc3BvbmRlcjEqMCgGA1UEAxMhUXVvVmFkaXMg
T0NTUCBBdXRob3JpdHkgU2lnbmF0dXJlMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEAqU9XPYifg1OllUqe1qrJ8eAq2BJ61Dwuphnj+98P5/pJRQFrCdoM
2t3UKxMLoDNUMZqcw+wjQoJry1qpO8DIjgYN/aOvVQVN038nZtuOSqZT3DRruOCM
E5GmAh33kdWgJ4eTTqNzhnbmtx1nR+j5N9PuK6tfuMa+Y4WllfppJ1WnCvvemIWw
PcRAqaVbUaiZTf3BK2IxM2E89PyiYpO8M3Nf7QIqceiWWhzN64e4esy5XPF2po8w
PrVVjVhzOc8esrtwQdSPauSuZtxvnpDdXQsgK+7nXMoonLF/JxSqpe7G9G31JNRT
o4XrOdFURIotZYMa5sXRw7qQnjN6vQ+OmQIDAQABo4GdMIGaMAkGA1UdEwQCMAAw
DwYJKwYBBQUHMAEFBAIFADAXBgNVHSAEEDAOMAwGCisGAQQBvlgBgiwwDgYDVR0P
AQH/BAQDAgeAMBMGA1UdJQQMMAoGCCsGAQUFBwMJMB8GA1UdIwQYMBaAFBqEYrxI
TDMlBNTu0PYDxBlG0ZRrMB0GA1UdDgQWBBRPDunNC5y+DRQ+xhGZQj6G/csCYDAN
BgkqhkiG9w0BAQsFAAOCAgEAWXcAkbt8+8tnBpSO0g7WIzwn2q+YalUqLIekL89g
rTS20dLexQVIGXuWUHlSMscbBySjGBngxqh78Lkkrb+aReBk76TPMgpBqRJnxkJI
WfCfJ6KVERbSnCB5S7BhiToR6OxJyViDO5CTdoScGo+T977pEWVFE/P9dLRarCBw
AtlYoaAefjwIP0QPq0ZiGmMyD55HeEYMlfO59exuS9rVIzU3tXtZOowHLJiuvjYf
DdAi9uASXuwYLkpHClGhyy7HBWbWFzX7glWH+QO+uaMDuMZvb/5l4dchR/tTl8Hz
Mlnn5omMw354dKI/+ojDQdBOlR/E676G7tmBi4XEASOYSPuvMGMR5AzuTc3C8eYS
14QDfjsAanOw5B7GxjbTR2hj5GI5N2cZ/drA1vJhUGBEYnZpr6IsBQw0FtNv6M4x
tlbj6gJIVm3m5ftcbXqo8OJxlOY7HQQmyapFGiIHZ/KWIq3q7KiJeE56qtzTyIyt
Q4GVgmG/auTQjzfI46QTHGt8A61pgRXkp/u/il7mqNIhkIeo5abA6vsbd5TdljdA
sqxtB5Tz425lj+nU/cdxKZR3HcpcjlVG2p6r8bgCf9YkQwQVoEjhnShoIe8m1BPQ
hLkN+qrM7rbd6JTdbr9Xzt+Zrdb0sKxNUV+0jep3LdPlDYsROTiiE1ysEekE9BLR
aMw=
-----END CERTIFICATE-----

Raw OCSP response headers

Cache-Control: [max-age=155519,public,no-transform,must-revalidate]
Content-Length: [1822]
Content-Type: [application/ocsp-response]
Date: [Sun, 25 Jun 2017 01:37:27 GMT]
Etag: ["609066cffab59040b0525ffdbd54768e717e09f0"]
Expires: [Tue, 27 Jun 2017 01:37:27 GMT]
Last-Modified: [Sun, 25 Jun 2017 01:37:27 GMT]
Server: [Apache]
  • OCSP requests is smaller than 255 bytes
  • OCSP signing certificate is already valid
  • OCSP signing certificate is not expired
  • OCSP signing certificate does not expire before NextUpdate
  • OCSP signing certificate does contain the Extended Key Usage for OCSP Signing
  • OCSP signing certificate does contain the OCSP No Check extension
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is already valid
  • Response is not expired
  • Revocation information is updated at least once every twelve months
  • The value of the NextUpdate field is not more than twelve months beyond the value of the ThisUpdate field
  • Last-Modified header is the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)
This OCSP response was cached at
http://ocsp.quovadisglobal.com (POST)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://ocsp.quovadisglobal.com (POST)
Size: 1822 bytes (DER data)
Response time: 726.065492ms
Signature algorithm: SHA256WithRSA
Signature type: CA Delegated
Signed by: QuoVadis OCSP Authority Signature
Issued by: QuoVadis Root CA 2
Signing certificate validity: 2016-11-04 - 2020-02-05
Signing certificate algorithm: SHA256-RSA
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:

Server and network information

Server Software: Apache

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MFUwUzBRME8wTTAJBgUrDgMCGgUABBTyhcKR1A4XhQLFZRt5u+T8TDsYdQQUGoRi
vEhMMyUE1O7Q9gPEGUbRlGsCFEiYLeKpLLM54cj5MzWCddPk+IJV
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----
MIIHGgoBAKCCBxMwggcPBgkrBgEFBQcwAQEEggcAMIIG/DCB+6FvMG0xCzAJBgNV
BAYTAkJNMRkwFwYDVQQKExBRdW9WYWRpcyBMaW1pdGVkMRcwFQYDVQQLEw5PQ1NQ
IFJlc3BvbmRlcjEqMCgGA1UEAxMhUXVvVmFkaXMgT0NTUCBBdXRob3JpdHkgU2ln
bmF0dXJlGA8yMDE3MDYyNTAxMzcyN1owdzB1ME0wCQYFKw4DAhoFAAQU8oXCkdQO
F4UCxWUbebvk/Ew7GHUEFBqEYrxITDMlBNTu0PYDxBlG0ZRrAhRImC3iqSyzOeHI
+TM1gnXT5PiCVYAAGA8yMDE3MDYyNTAxMzcyN1qgERgPMjAxNzA2MjcwMTM3Mjda
MA0GCSqGSIb3DQEBCwUAA4IBAQBJPcgBaZjY00Hj9cRCgt7s6GWOErkOLxHhOFMp
UdMU6HXavDWO7oVfYJHC1KAuA/2ujQpvauyYK+U63HdOAxc0/uvkBOcAt0Yot5wF
HK64mgijBP3SxAVwcfdkoDMr2afQFyuU3nk2fXiFNze6r6uRm4/Xsdhckg4Np488
F9MBtJsrejplmSRL4MpZw6h5dpjEc9A+4k6ClpZ0/SULQHPOn65dLYsDWjCeDjit
0xizUm6npkQ14qO5qzKFlEZMC+JEkl5jkcjULhSXPfkEfS+3/5KQI27kqhJFjWGA
/gUvobCShTtZZOvCY7ln342qMMokgJF77Mx5YNZnqu6mw99AoIIE5jCCBOIwggTe
MIICxqADAgECAhRU3eJIqOHmitSP3lDKIdhfVuWo/zANBgkqhkiG9w0BAQsFADBF
MQswCQYDVQQGEwJCTTEZMBcGA1UEChMQUXVvVmFkaXMgTGltaXRlZDEbMBkGA1UE
AxMSUXVvVmFkaXMgUm9vdCBDQSAyMB4XDTE2MTEwNDE2Mzg0MloXDTIwMDIwNTE2
Mzg0MlowbTELMAkGA1UEBhMCQk0xGTAXBgNVBAoTEFF1b1ZhZGlzIExpbWl0ZWQx
FzAVBgNVBAsTDk9DU1AgUmVzcG9uZGVyMSowKAYDVQQDEyFRdW9WYWRpcyBPQ1NQ
IEF1dGhvcml0eSBTaWduYXR1cmUwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK
AoIBAQCpT1c9iJ+DU6WVSp7Wqsnx4CrYEnrUPC6mGeP73w/n+klFAWsJ2gza3dQr
EwugM1QxmpzD7CNCgmvLWqk7wMiOBg39o69VBU3Tfydm245KplPcNGu44IwTkaYC
HfeR1aAnh5NOo3OGdua3HWdH6Pk30+4rq1+4xr5jhaWV+mknVacK+96YhbA9xECp
pVtRqJlN/cErYjEzYTz0/KJik7wzc1/tAipx6JZaHM3rh7h6zLlc8XamjzA+tVWN
WHM5zx6yu3BB1I9q5K5m3G+ekN1dCyAr7udcyiicsX8nFKql7sb0bfUk1FOjhes5
0VREii1lgxrmxdHDupCeM3q9D46ZAgMBAAGjgZ0wgZowCQYDVR0TBAIwADAPBgkr
BgEFBQcwAQUEAgUAMBcGA1UdIAQQMA4wDAYKKwYBBAG+WAGCLDAOBgNVHQ8BAf8E
BAMCB4AwEwYDVR0lBAwwCgYIKwYBBQUHAwkwHwYDVR0jBBgwFoAUGoRivEhMMyUE
1O7Q9gPEGUbRlGswHQYDVR0OBBYEFE8O6c0LnL4NFD7GEZlCPob9ywJgMA0GCSqG
SIb3DQEBCwUAA4ICAQBZdwCRu3z7y2cGlI7SDtYjPCfar5hqVSosh6Qvz2CtNLbR
0t7FBUgZe5ZQeVIyxxsHJKMYGeDGqHvwuSStv5pF4GTvpM8yCkGpEmfGQkhZ8J8n
opURFtKcIHlLsGGJOhHo7EnJWIM7kJN2hJwaj5P3vukRZUUT8/10tFqsIHAC2Vih
oB5+PAg/RA+rRmIaYzIPnkd4RgyV87n17G5L2tUjNTe1e1k6jAcsmK6+Nh8N0CL2
4BJe7BguSkcKUaHLLscFZtYXNfuCVYf5A765owO4xm9v/mXh1yFH+1OXwfMyWefm
iYzDfnh0oj/6iMNB0E6VH8Trvobu2YGLhcQBI5hI+68wYxHkDO5NzcLx5hLXhAN+
OwBqc7DkHsbGNtNHaGPkYjk3Zxn92sDW8mFQYERidmmvoiwFDDQW02/ozjG2VuPq
AkhWbebl+1xteqjw4nGU5jsdBCbJqkUaIgdn8pYirersqIl4Tnqq3NPIjK1DgZWC
Yb9q5NCPN8jjpBMca3wDrWmBFeSn+7+KXuao0iGQh6jlpsDq+xt3lN2WN0CyrG0H
lPPjbmWP6dT9x3EplHcdylyOVUbanqvxuAJ/1iRDBBWgSOGdKGgh7ybUE9CEuQ36
qszutt3olN1uv1fO35mt1vSwrE1RX7SN6nct0+UNixE5OKITXKwR6QT0EtFozA==
-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Raw OCSP response headers

Content-Length: [1822]
Content-Type: [application/ocsp-response]
Date: [Sun, 25 Jun 2017 01:37:27 GMT]
Server: [Apache]
  • OCSP signing certificate is already valid
  • OCSP signing certificate is not expired
  • OCSP signing certificate does not expire before NextUpdate
  • OCSP signing certificate does contain the Extended Key Usage for OCSP Signing
  • OCSP signing certificate does contain the OCSP No Check extension
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is already valid
  • Response is not expired
  • Revocation information is updated at least once every twelve months
  • The value of the NextUpdate field is not more than twelve months beyond the value of the ThisUpdate field
  • Last-Modified cache header not set (RFC 5019, section 6.2)
  • Expires cache header not set (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is the same as the NextUpdate field (RFC 5019 section 6.2)

QuoVadis Root CA 2 (CA Certificate)

Certificate details for QuoVadis Root CA 2 (At position 2 in certificate chain)
Serial number:
hex: 509
int: 1289
Issued by: QuoVadis Root CA 2
Public Key Algorithm: RSA
Not valid before:
Not valid after:
Organization: QuoVadis Limited
Country: BM
  • This certificate does not contain any links to an LDAP server
  • This certificate does not contain any internal server links
  • This certificate does not contain any links with an unknown format

This is a self signed certificate

Check the revocation status for another website

Created by Paul van Brouwershaven
© 2015 - 2017 Digitorus B.V.
Revoked certificates can't and should not be trusted, these certificate will cause errors like "NET::ERR_CERT_REVOKED" in browsers.