xsslr2.cer: CN=Cisco XSSL-R2,O=Cisco Systems,C=US (Intermediate Certificate, Expiring 2034-07-09) detail info and audit record

 

Page content

CA Certificate Information and Audit Record

This certificate is intermediate certificate used for the issuance of other certificates.

Download certificate through curl:

curl -sSL "https://www.cisco.com/security/pki/certs/xsslr2.cer" --output cert.crt

Download certificate through wget:

wget -q "https://www.cisco.com/security/pki/certs/xsslr2.cer" --output-document=cert.crt

CA Certificate Detail Information

Use openssl x509 to decode DER certificate to get detail information:

openssl x509 -in cert.crt -inform der -text -noout

Use openssl x509 to decode PEM certificate to get detail information:

openssl x509 -in cert.crt -inform pem -text -noout

Decoded detail certificate information:

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            02:1c:1a:94:af:7e:22:7c:96
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: C=US, O=Cisco Systems, CN=Cisco RXC-R2
        Validity
            Not Before: Sep  2 19:41:27 2020 GMT
            Not After : Jul  9 21:46:55 2034 GMT
        Subject: C=US, O=Cisco Systems, CN=Cisco XSSL-R2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d2:1b:fc:26:d4:bf:6f:a7:1e:fa:ef:9b:4d:ee:
                    e3:a2:95:b6:54:c5:66:b5:e9:cd:69:96:5f:0d:ab:
                    66:53:d9:bb:98:41:9c:c2:63:41:f6:55:3f:b9:c3:
                    b2:31:b5:f8:a0:3a:04:ae:c1:87:ad:c7:32:0f:06:
                    16:c7:74:f2:d3:05:5f:18:34:75:77:95:b9:03:b7:
                    6f:8a:df:2f:2d:de:a1:c3:e6:3a:5a:f8:2e:2c:bf:
                    29:74:74:50:d1:04:64:ad:d9:41:0f:69:8b:55:a3:
                    ae:1d:fd:28:c7:d1:5b:42:27:ba:d8:e9:a5:9a:49:
                    2e:59:3b:cf:03:0a:02:10:81:1d:f3:39:a3:41:19:
                    48:84:27:02:94:b0:15:50:f1:46:08:e9:94:8a:90:
                    ca:36:88:70:8c:8e:08:b3:04:6a:cb:e5:f2:18:cd:
                    77:37:95:98:fd:e2:1b:ad:ee:45:61:2a:02:69:a4:
                    fd:b5:4f:3e:fa:6c:62:87:32:70:c0:55:0e:54:93:
                    83:cc:1f:0d:90:4a:11:ad:8f:a6:2c:1d:08:6a:d3:
                    2a:05:94:80:22:e8:2b:b8:f7:bf:a0:b5:fe:ab:07:
                    f4:3f:41:63:f8:29:cf:62:10:dd:36:fc:ff:72:49:
                    c7:e2:5d:77:d3:db:1f:ef:d9:31:bb:1f:58:57:e4:
                    49:0f
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE, pathlen:0
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.9.21.1.22.0
                  CPS: http://www.cisco.com/security/pki/policies/

            X509v3 Subject Key Identifier: 
                83:B3:58:41:77:DD:6E:C5:92:A8:51:01:C2:F3:38:67:96:63:DC:D5
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://www.cisco.com/security/pki/crl/rxcr2.crl

            Authority Information Access: 
                CA Issuers - URI:http://www.cisco.com/security/pki/certs/rxcr2.cer
                OCSP - URI:http://pkicvs.cisco.com/pki/ocsp

            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication
            X509v3 Authority Key Identifier: 
                keyid:90:72:04:60:FD:DD:FA:84:EC:8E:5A:04:58:F7:CF:FB:C3:72:09:16

    Signature Algorithm: sha256WithRSAEncryption
         3b:69:24:e9:0d:33:6b:dc:77:3a:03:f4:15:42:3d:60:5b:e7:
         7c:fc:21:af:f1:42:bd:27:ca:93:16:99:0b:03:27:e5:55:39:
         b8:c4:a3:3c:c4:79:98:7c:53:4c:19:75:71:df:55:86:a8:47:
         d2:4e:82:30:d7:c4:18:24:6f:b3:05:98:32:a9:a9:dc:69:f5:
         8e:5a:b2:22:91:dd:13:ee:a6:d6:4f:96:5c:ca:42:82:aa:64:
         c2:d9:5e:e4:37:e7:f8:d9:a8:4b:52:07:96:a4:49:b2:f3:a3:
         e8:8c:d8:b6:f1:56:b3:94:fa:0b:cf:01:a1:5f:f5:30:89:25:
         77:f2:7a:ad:81:c6:cd:52:3c:d7:0f:f6:93:4c:48:ef:ec:92:
         c0:c3:e9:14:35:ad:8d:0e:ef:a9:50:97:7b:99:54:3d:36:bb:
         f7:e8:31:b7:b8:3b:72:ec:53:53:88:17:fc:68:6b:03:53:1e:
         cc:5f:08:01:07:4e:aa:fb:f8:32:c7:09:88:e7:54:bf:a9:ee:
         a5:31:8b:8d:55:68:fe:82:2d:a1:4b:40:a8:75:4e:fb:2f:4b:
         aa:94:05:8a:b8:9b:49:0a:3b:51:1c:c2:a1:fa:b7:b9:9e:97:
         b8:3b:f3:7a:ea:c0:70:4b:37:da:00:42:3b:c7:74:62:a6:2f:
         40:7d:00:ff

CA Certificate in PEM Format

Use openssl x509 to convert certificate from DER format to PEM format:

openssl x509 -in cert.crt -inform der

Converted PEM format certificate:

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Decode PEM Certificate online

Download PEM Certificate

Also see Top 1 Millions Domains CA Certificate List


Page version: e13a7e3f2 2023-05-06