ssca2.cer: CN=Cisco SSCA2,O=Cisco Systems (Intermediate Certificate, Expiring 2015-10-22) detail info and audit record

 

Page content

CA Certificate Information and Audit Record

This certificate is intermediate certificate used for the issuance of other certificates.

Download certificate through curl:

curl -sSL "https://www.cisco.com/security/pki/certs/ssca2.cer" --output cert.crt

Download certificate through wget:

wget -q "https://www.cisco.com/security/pki/certs/ssca2.cer" --output-document=cert.crt

CA Certificate Detail Information

Use openssl x509 to decode DER certificate to get detail information:

openssl x509 -in cert.crt -inform der -text -noout

Use openssl x509 to decode PEM certificate to get detail information:

openssl x509 -in cert.crt -inform pem -text -noout

Decoded detail certificate information:

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number:
            0a:01:41:42:00:00:01:2b:d0:40:b4:67:00:00:00:02
    Signature Algorithm: sha1WithRSAEncryption
        Issuer: O=Digital Signature Trust Co., CN=DST Root CA X3
        Validity
            Not Before: Oct 21 19:25:22 2010 GMT
            Not After : Oct 22 19:25:22 2015 GMT
        Subject: O=Cisco Systems, CN=Cisco SSCA2
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:d1:f2:c9:df:38:48:4b:52:f7:9e:1e:47:e5:4e:
                    80:89:c4:69:0d:82:9f:fa:e8:5a:b1:df:9b:69:81:
                    08:a0:9b:86:4e:3f:ea:08:07:6d:47:f5:5c:80:1f:
                    02:18:e5:e1:89:10:b6:07:e5:97:3c:a3:5b:1d:8e:
                    ab:80:d9:0b:78:6d:5e:5b:81:52:c1:f9:a3:85:91:
                    a8:a6:15:f6:48:7c:cb:49:8c:2b:aa:5a:38:ad:f1:
                    dd:8e:0f:62:34:55:43:7a:93:d2:c9:78:fa:52:75:
                    01:14:b0:2b:04:80:fa:73:71:7a:2e:61:f5:4a:d8:
                    0d:59:89:87:c1:e9:69:c7:4e:57:80:69:bf:0c:71:
                    d4:e7:d2:3d:f9:f7:7b:97:5c:b1:d0:76:d4:8f:a6:
                    5d:6d:25:d9:cf:3a:c5:9f:d7:25:ec:de:de:e7:dc:
                    c7:ac:52:05:ed:b1:48:ad:e7:d4:9b:4a:e3:ba:f8:
                    2c:9f:b0:3e:84:9f:56:a0:14:7a:0a:ad:ee:8c:32:
                    01:2f:37:12:ab:e0:0a:ad:20:bb:ec:0b:c7:f2:93:
                    df:27:e7:20:3c:10:0c:9c:82:9e:57:23:da:4b:f3:
                    a7:16:af:03:a3:db:7c:46:52:72:8d:a1:42:32:31:
                    47:5a:5a:17:0c:7b:20:cf:d9:72:34:ed:76:29:83:
                    51:11
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Key Usage: critical
                Digital Signature, Certificate Sign, CRL Sign
            X509v3 Basic Constraints: critical
                CA:TRUE, pathlen:0
            X509v3 Certificate Policies: 
                Policy: 1.3.6.1.4.1.9.21.1.1.0
                  CPS: http://www.cisco.com/security/pki/policies/index.html

            X509v3 Subject Key Identifier: 
                C7:B0:10:08:2F:F0:18:5F:1F:90:4A:4B:2A:47:AA:0B:57:5F:A4:BB
            X509v3 CRL Distribution Points: 

                Full Name:
                  URI:http://crl.identrust.com/DSTROOTCAX3.crl

            Authority Information Access: 
                OCSP - URI:http://ocspts.identrust.com
                CA Issuers - URI:http://apps.identrust.com/roots/DSTROOTCAX3.cer

            X509v3 Extended Key Usage: 
                TLS Web Server Authentication, TLS Web Client Authentication, Code Signing, E-mail Protection, IPSec End System, IPSec Tunnel, IPSec User, Time Stamping, OCSP Signing, Microsoft Trust List Signing, 1.3.6.1.4.1.311.10.3.9, 1.3.6.1.4.1.311.20.2.1, 1.3.6.1.4.1.311.21.6
            X509v3 Authority Key Identifier: 
                keyid:C4:A7:B1:A4:7B:2C:71:FA:DB:E1:4B:90:75:FF:C4:15:60:85:89:10

    Signature Algorithm: sha1WithRSAEncryption
         be:b0:6e:5d:b1:93:e2:fc:55:75:68:6b:8f:e3:9e:8e:9f:fc:
         70:ac:9b:82:0e:46:f9:95:74:ee:8d:8c:3d:3b:ee:61:39:84:
         7f:3d:af:de:4d:a6:5c:05:c5:e3:a8:8c:61:58:f9:c7:0f:0d:
         74:f6:b1:72:2a:7f:43:9c:5d:40:d8:97:4e:7e:34:c9:29:d6:
         1c:a5:c7:2d:c0:80:15:ae:ff:30:e2:a7:20:26:34:14:be:01:
         9c:ea:74:c3:c7:c3:b6:28:21:97:da:cc:68:e5:b0:e3:27:04:
         c6:f6:2b:5c:ce:47:26:b7:21:14:6e:0d:74:aa:ee:c9:68:93:
         b4:01:8b:67:a8:fa:56:6b:80:4e:52:4f:d7:4a:a7:98:03:ab:
         8f:c3:67:80:0f:40:72:df:3b:a0:b3:31:89:0b:5e:fa:f8:aa:
         bb:57:d3:dd:58:b8:a1:d1:d9:bf:56:37:59:95:11:ee:0a:d0:
         69:61:32:7d:01:c4:ba:3d:80:d0:6a:c7:22:59:82:26:20:85:
         7c:b7:19:4a:37:0a:48:e5:db:82:77:ef:9d:af:33:e6:72:1b:
         21:92:30:c4:5b:2e:c5:70:ce:10:b8:66:64:96:35:76:6b:aa:
         53:2c:4a:4d:03:a1:ae:d2:f0:91:39:39:7e:48:b3:18:92:4f:
         99:ec:ee:66

CA Certificate in PEM Format

Use openssl x509 to convert certificate from DER format to PEM format:

openssl x509 -in cert.crt -inform der

Converted PEM format certificate:

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Decode PEM Certificate online

Download PEM Certificate

Also see Top 1 Millions Domains CA Certificate List


Page version: e13a7e3f2 2023-05-06