CRL & OCSP report for 0-jump.valueline.com.libcat.uafs.edu - *.libcat.uafs.edu (University of Arkansas at Fort Smith)

*.libcat.uafs.edu

Certificate details for *.libcat.uafs.edu (At position 0 in certificate chain)
Serial number:
hex: 9db61e87ff947ad355e3561d9767338
int: 13102150788354584887687331539502658360
Issued by: DigiCert SHA2 High Assurance Server CA
Public Key Algorithm: RSA
Not valid before:
Not valid after:
Organization: University of Arkansas at Fort Smith
Organization unit: University Library
State / Province: Arkansas
Locality: Fort Smith
Country: US
  • This certificate does not contain any links to an LDAP server
  • This certificate does not contain any internal server links
  • This certificate does not contain any links with an unknown format

Check certificate compliance for 0-jump.valueline.com.libcat.uafs.edu.

Certificate Revocation List (CRL)

This CRL was cached at
http://crl4.digicert.com/sha2-ha-server-g5.crl

CRL information

Source: CRL Distribution Points in Certificate
Location: http://crl4.digicert.com/sha2-ha-server-g5.crl
Size: 231254 bytes (DER data)
Response time: 16.742885ms
This update:
Next update:
Revoked: No
Revoked certificates in CRL: 6591

Relevant server response headers

Date:
Last Modified:
Expires:

Server and network information

Server Software: CFS 0215

Raw CRL response headers

Accept-Ranges: [bytes]
Cache-Control: [max-age=172800]
Cf4age: [0]
Cf4ttl: [31536000.000]
Content-Length: [231254]
Content-Type: [application/x-pkcs7-crl]
Date: [Tue, 30 May 2017 05:21:58 GMT]
Expires: [Thu, 01 Jun 2017 05:21:58 GMT]
Last-Modified: [Mon, 29 May 2017 17:15:12 GMT]
Server: [CFS 0215]
X-Cf1: [13483:fD.ewr1:cf:cacheA.ewr1-01:H]
X-Cf2: [H]
X-Cf3: [M]
X-Cff: [B]
X-Cfhash: ["2b8dc5046c2df1655feb9cef38e3e593"]
  • Content-Type in response is set 'application/x-pkcs7-crl' and should be replaced with 'application/pkix-crl' (RFC 5280, section 4.2.1.13)
  • This CRL file is DER encoded
  • Issuer field is byte-for-byte equivalent with issuers subject
  • Response is already valid
  • Response is not expired
  • ThisUpdate is less than seven days old, CRLs must be updated and reissued at least every seven days (Mozilla Maintenance Policy section 3)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified header is not the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is not the same as the NextUpdate field (RFC 5019 section 6.2)
This CRL was cached at
http://crl3.digicert.com/sha2-ha-server-g5.crl

CRL information

Source: CRL Distribution Points in Certificate
Location: http://crl3.digicert.com/sha2-ha-server-g5.crl
Size: 230694 bytes (DER data)
Response time: 18.833741ms
This update:
Next update:
Revoked: No
Revoked certificates in CRL: 6575

Relevant server response headers

Date:
Last Modified:
Expires:

Server and network information

Server Software: ECS (lga/1398)
Cache Information: HIT

Raw CRL response headers

Accept-Ranges: [bytes]
Cache-Control: [max-age=172800]
Content-Length: [230694]
Content-Type: [application/x-pkcs7-crl]
Date: [Tue, 30 May 2017 05:22:01 GMT]
Etag: ["2190830219"]
Expires: [Thu, 01 Jun 2017 05:22:01 GMT]
Last-Modified: [Sun, 28 May 2017 17:15:12 GMT]
Server: [ECS (lga/1398)]
X-Cache: [HIT]
  • Content-Type in response is set 'application/x-pkcs7-crl' and should be replaced with 'application/pkix-crl' (RFC 5280, section 4.2.1.13)
  • This CRL file is DER encoded
  • Issuer field is byte-for-byte equivalent with issuers subject
  • Response is already valid
  • Response is not expired
  • ThisUpdate is less than seven days old, CRLs must be updated and reissued at least every seven days (Mozilla Maintenance Policy section 3)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified header is not the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is not the same as the NextUpdate field (RFC 5019 section 6.2)

Online Certificate Status Protocol (OCSP)

This OCSP response was cached at
http://ocsp.digicert.com (GET)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://ocsp.digicert.com (GET)
Size: 471 bytes (DER data)
Response time: 15.338476ms
Signature algorithm: SHA256WithRSA
Signature type: CA Signed
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:
Last Modified:
Expires:
Cache Control Max-age: 48h0m0s

Server and network information

Server Software: ECS (dca/24DE)
Cache Information: HIT

URL used for GET request

http://ocsp.digicert.com/MFEwTzBNMEswSTAJBgUrDgMCGgUABBTPJvUY%2Bsl%2Bj4yzQuAcL2oQno5fCgQUUWj%2FkK8CB3U8zNllZGKiErhZcjsCEAnbYeh%2F%2BUetNV41Ydl2czg%3D

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MFEwTzBNMEswSTAJBgUrDgMCGgUABBTPJvUY+sl+j4yzQuAcL2oQno5fCgQUUWj/
kK8CB3U8zNllZGKiErhZcjsCEAnbYeh/+UetNV41Ydl2czg=
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----
MIIB0woBAKCCAcwwggHIBgkrBgEFBQcwAQEEggG5MIIBtTCBnqIWBBRRaP+QrwIH
dTzM2WVkYqISuFlyOxgPMjAxNzA1MjcxMzIwMDBaMHMwcTBJMAkGBSsOAwIaBQAE
FM8m9Rj6yX6PjLNC4BwvahCejl8KBBRRaP+QrwIHdTzM2WVkYqISuFlyOwIQCdth
6H/5R601XjVh2XZzOIAAGA8yMDE3MDUyNzEzMjAwMFqgERgPMjAxNzA2MDMxMjM1
MDBaMA0GCSqGSIb3DQEBCwUAA4IBAQA3CcuSZTlWukzHLErljQ9jvMlXFg+yVqPt
QdHNC2AT4p83MtutXXYTpa1U7+rVgEEEyHwbnIchfsm7AAokXSsrRMRobvfTr3sP
iu1IBurxMjAzVnyuDKIeUKa2ONd+2iySSUa9sMFBkoPgPZP1sArE5DCnqUEFs7Nw
L/upTmFTvDGxp8xudjCVUo525RJyLHePi4IJbwIT39pOWxTLeUK6SkmhTrd2MDre
NtFBnbpczjMv0xmb/NfXnxINTOSpdp1Jkm1d4F7fcuF200nNA3FY32o37pL8YGoS
cnhFeQ7kTTO6Ea1e/YMQa8QWkOmGRY7zeaSwS0z+kqX8lRHaxd5E
-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)


Raw OCSP response headers

Accept-Ranges: [bytes]
Cache-Control: [public, max-age=172800]
Content-Length: [471]
Content-Type: [application/ocsp-response]
Date: [Tue, 30 May 2017 05:23:26 GMT]
Etag: ["592981d5-1d7"]
Expires: [Mon, 05 Jun 2017 17:23:26 GMT]
Last-Modified: [Sat, 27 May 2017 13:40:37 GMT]
Server: [ECS (dca/24DE)]
X-Cache: [HIT]
  • OCSP requests is smaller than 255 bytes
  • OCSP response is valid for at least 8 hours (Microsoft)
  • OCSP response is available at least 8 hours before the current period expires or at ½ the validity if valid for more than 16 hours (Microsoft)
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is already valid
  • Response is not expired
  • ThisUpdate is less than four days old, OCSP information must be updated at least every four days (Mozilla & Baseline Requirements)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified header is not the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is 52h48m26s before the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is not the same as the NextUpdate field (RFC 5019 section 6.2)
This OCSP response was cached at
http://ocsp.digicert.com (POST)Good

OCSP response information

Source: Authority Information Access in Certificate
Location: http://ocsp.digicert.com (POST)
Size: 471 bytes (DER data)
Response time: 27.067984ms
Signature algorithm: SHA256WithRSA
Signature type: CA Signed
Reported statuses: 1
This update:
Next update:
Produced at:
Status: Good

Relevant server response headers

Date:
Last Modified:
Expires:
Cache Control Max-age: 48h0m0s

Server and network information

Server Software: nginx

Raw OCSP request (PEM encoded)

-----BEGIN OCSP REQUEST-----
MFEwTzBNMEswSTAJBgUrDgMCGgUABBTPJvUY+sl+j4yzQuAcL2oQno5fCgQUUWj/
kK8CB3U8zNllZGKiErhZcjsCEAnbYeh/+UetNV41Ydl2czg=
-----END OCSP REQUEST-----

Raw OCSP response (PEM encoded)

-----BEGIN OCSP RESPONSE-----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-----END OCSP RESPONSE-----

Raw OCSP Signing Certificate (PEM encoded)


Raw OCSP response headers

Accept-Ranges: [bytes]
Cache-Control: [public, max-age=172800]
Content-Length: [471]
Content-Type: [application/ocsp-response]
Date: [Tue, 30 May 2017 05:23:26 GMT]
Etag: ["592ccd8d-1d7"]
Expires: [Mon, 05 Jun 2017 17:23:26 GMT]
Last-Modified: [Tue, 30 May 2017 01:40:29 GMT]
Server: [nginx]
  • OCSP response is valid for at least 8 hours (Microsoft)
  • OCSP response is available at least 8 hours before the current period expires or at ½ the validity if valid for more than 16 hours (Microsoft)
  • Content-Type in response is set to 'application/ocsp-response'
  • Response is already valid
  • Response is not expired
  • ThisUpdate is less than four days old, OCSP information must be updated at least every four days (Mozilla & Baseline Requirements)
  • The NextUpdate field is not more than ten days beyond the value of the ThisUpdate field (Mozilla & Baseline Requirements)
  • Last-Modified header is not the same as ThisUpdate (RFC 5019, section 6.2)
  • NextUpdate is after the date in the Expires cache header
  • The Cache-Control max-age header does not outlive NextUpdate
  • ThisUpdate has a date before NextUpdate
  • Expires cache header is not the same as the NextUpdate field (RFC 5019 section 6.2)

DigiCert Secure Server CA (CA Certificate)

Certificate details for DigiCert Secure Server CA (At position 1 in certificate chain)
Serial number:
hex: 69e1db77fcf1dfba97af5e5c9a24037
int: 8796353606545229494490896265396764727
Issued by: DigiCert Global Root CA
Public Key Algorithm: RSA
Not valid before:
Not valid after:
Organization: DigiCert Inc
Country: US
  • This certificate does not contain any links to an LDAP server
  • This certificate does not contain any internal server links
  • This certificate does not contain any links with an unknown format

This certificate contains no information about authoritative CRL(s) or OCSP servers

Check the revocation status for another website

Created by Paul van Brouwershaven
© 2015 - 2017 Digitorus B.V.
Revoked certificates can't and should not be trusted, these certificate will cause errors like "NET::ERR_CERT_REVOKED" in browsers.