Pastebin launched a little side project called VERYVIRAL.com, check it out ;-) Want more features on Pastebin? Sign Up, it's FREE!
Guest

TURKTRUST MitM sub-CA and fraudulent *.google.com certs

By: a guest on Jan 3rd, 2013  |  syntax: None  |  size: 10.94 KB  |  views: 2,025  |  expires: Never
download  |  raw  |  embed  |  report abuse  |  print
Text below is selected. Please press Ctrl+C to copy to your clipboard. (⌘+C on Mac)
  1. Certificate:
  2.     Data:
  3.         Version: 3 (0x2)
  4.         Serial Number: 2087 (0x827)
  5.     Signature Algorithm: sha1WithRSAEncryption
  6.         Issuer: CN=T\xC3\x9CRKTRUST Elektronik Sunucu Sertifikas\xC4\xB1 Hizmetleri, C=TR, O=T\xC3\x9CRKTRUST Bilgi \xC4\xB0leti\xC5\x9Fim ve Bili\xC5\x9Fim G\xC3\xBCvenli\xC4\x9Fi Hizmetleri A.\xC5\x9E. (c) Kas\xC4\xB1m  2005
  7.         Validity
  8.             Not Before: Aug  8 07:07:51 2011 GMT
  9.             Not After : Jul  6 07:07:51 2021 GMT
  10.         Subject: C=TR, ST=ANKARA, L=ANKARA, O=EGO, OU=EGO BILGI ISLEM, CN=*.EGO.GOV.TR
  11.         Subject Public Key Info:
  12.             Public Key Algorithm: rsaEncryption
  13.                 Public-Key: (2048 bit)
  14.                 Modulus:
  15.                     00:bf:9c:e8:8f:60:69:76:5e:d1:d4:cf:f3:17:a4:
  16.                     1f:e2:cb:b6:17:cb:c3:a8:84:8a:be:e4:ee:c8:98:
  17.                     4d:00:78:45:18:70:ac:1e:36:a2:c4:63:07:b2:9b:
  18.                     b3:d2:5d:d5:e7:49:2a:fc:40:96:6c:df:24:29:a7:
  19.                     93:ac:1d:75:d9:03:ab:59:35:36:ef:a8:ae:a7:51:
  20.                     a1:f8:e9:44:3a:24:7d:be:54:38:54:03:f4:d1:d5:
  21.                     94:8c:3e:b3:f4:74:05:0a:2f:16:dc:4b:04:b6:28:
  22.                     87:89:83:94:f4:17:0f:a4:f9:1a:51:b1:02:c0:fe:
  23.                     27:19:5c:11:f1:a3:f0:84:1e:4f:18:12:5c:f7:ca:
  24.                     e8:99:db:dc:89:89:14:a5:23:8e:c2:4b:92:46:da:
  25.                     28:03:bb:51:94:b1:6e:ef:64:1a:36:95:cd:d4:db:
  26.                     9e:07:7e:88:dd:a6:a3:3e:4d:18:ca:25:f2:db:0f:
  27.                     17:96:02:bb:40:8e:0f:49:20:67:4a:af:90:6e:51:
  28.                     68:71:65:66:2e:11:7d:e2:37:bb:a7:2e:a5:0a:79:
  29.                     65:ac:81:57:a5:1d:c5:59:92:c3:e4:67:08:e8:72:
  30.                     a5:05:2e:fc:01:0f:88:30:12:c5:1e:1b:04:57:0e:
  31.                     4d:42:3f:74:72:14:99:0a:57:c1:58:16:73:21:a5:
  32.                     7d:47
  33.                 Exponent: 65537 (0x10001)
  34.         X509v3 extensions:
  35.             X509v3 Authority Key Identifier:
  36.                 keyid:AB:4E:36:03:30:D2:DB:D5:0A:68:BE:87:A5:50:6C:FC:F6:70:A5:25
  37.  
  38.             X509v3 Subject Key Identifier:
  39.                 64:FB:1B:86:3D:B8:4A:F2:44:82:F9:56:3D:EA:26:C0:F4:E3:B3:34
  40.             X509v3 Key Usage: critical
  41.                 Certificate Sign, CRL Sign
  42.             X509v3 Certificate Policies:
  43.                 Policy: 2.16.792.3.0.3.1.1.1
  44.                   CPS: http://www.turktrust.com.tr/sue
  45.  
  46.             X509v3 Basic Constraints: critical
  47.                 CA:TRUE
  48.             X509v3 CRL Distribution Points:
  49.  
  50.                 Full Name:
  51.                   URI:http://www.turktrust.com.tr/sil/TURKTRUST_SSL_SIL_s2.crl
  52.  
  53.             Authority Information Access:
  54.                 CA Issuers - URI:http://www.turktrust.com.tr/sertifikalar/TURKTRUST_Elektronik_Sunucu_Sertifikasi_Hizmetleri_s2.crt
  55.                 OCSP - URI:http://ocsp.turktrust.com.tr
  56.  
  57.     Signature Algorithm: sha1WithRSAEncryption
  58.          8f:cf:50:08:2c:a8:5b:44:b6:d0:47:18:0d:90:27:bc:52:c5:
  59.          9a:8b:a0:2b:de:c1:b7:af:22:57:53:8c:eb:6d:be:0b:27:b2:
  60.          7f:84:b3:fb:52:c1:93:57:fd:9e:2d:df:19:3d:10:f9:15:99:
  61.          25:85:aa:e5:8b:92:06:22:d5:82:4d:cd:2d:cc:67:c1:ed:f0:
  62.          9a:7b:c4:ad:48:2a:d5:00:ed:01:a3:65:05:63:04:32:49:4e:
  63.          95:61:9f:27:47:96:6a:29:65:52:c9:09:6c:37:78:2b:08:19:
  64.          1c:31:23:ee:0f:e3:60:44:2a:53:5b:74:ce:82:5d:c0:cf:f3:
  65.          36:c9:cb:1e:48:70:71:66:79:3d:09:e7:6e:97:df:d4:2b:7f:
  66.          d4:b1:ff:f2:97:72:d9:e4:43:99:19:aa:9e:22:d4:87:ca:f6:
  67.          95:97:c9:7a:e7:55:64:6e:b2:21:bc:6c:a8:fd:ed:d8:90:aa:
  68.          e5:cd:8f:d6:30:e1:00:61:77:83:d0:e2:b2:41:f4:0b:3b:11:
  69.          75:b5:69:a1:67:6b:f8:f6:35:5f:3f:f5:f4:6f:17:12:95:fd:
  70.          af:e2:01:26:12:dd:6e:4a:55:a3:44:21:d0:0d:74:9b:31:4f:
  71.          fc:65:24:e5:ff:fc:9e:1a:36:1e:f2:da:54:c8:56:bf:5a:8a:
  72.          70:5f:08:85
  73. -----BEGIN CERTIFICATE-----
  74. MIIFPTCCBCWgAwIBAgICCCcwDQYJKoZIhvcNAQEFBQAwgawxPTA7BgNVBAMMNFTD
  75. nFJLVFJVU1QgRWxla3Ryb25payBTdW51Y3UgU2VydGlmaWthc8SxIEhpem1ldGxl
  76. cmkxCzAJBgNVBAYTAlRSMV4wXAYDVQQKDFVUw5xSS1RSVVNUIEJpbGdpIMSwbGV0
  77. acWfaW0gdmUgQmlsacWfaW0gR8O8dmVubGnEn2kgSGl6bWV0bGVyaSBBLsWeLiAo
  78. YykgS2FzxLFtICAyMDA1MB4XDTExMDgwODA3MDc1MVoXDTIxMDcwNjA3MDc1MVow
  79. bjELMAkGA1UEBhMCVFIxDzANBgNVBAgMBkFOS0FSQTEPMA0GA1UEBwwGQU5LQVJB
  80. MQwwCgYDVQQKDANFR08xGDAWBgNVBAsMD0VHTyBCSUxHSSBJU0xFTTEVMBMGA1UE
  81. AwwMKi5FR08uR09WLlRSMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA
  82. v5zoj2Bpdl7R1M/zF6Qf4su2F8vDqISKvuTuyJhNAHhFGHCsHjaixGMHspuz0l3V
  83. 50kq/ECWbN8kKaeTrB112QOrWTU276iup1Gh+OlEOiR9vlQ4VAP00dWUjD6z9HQF
  84. Ci8W3EsEtiiHiYOU9BcPpPkaUbECwP4nGVwR8aPwhB5PGBJc98romdvciYkUpSOO
  85. wkuSRtooA7tRlLFu72QaNpXN1NueB36I3aajPk0YyiXy2w8XlgK7QI4PSSBnSq+Q
  86. blFocWVmLhF94je7py6lCnllrIFXpR3FWZLD5GcI6HKlBS78AQ+IMBLFHhsEVw5N
  87. Qj90chSZClfBWBZzIaV9RwIDAQABo4IBpDCCAaAwHwYDVR0jBBgwFoAUq042AzDS
  88. 29UKaL6HpVBs/PZwpSUwHQYDVR0OBBYEFGT7G4Y9uEryRIL5Vj3qJsD047M0MA4G
  89. A1UdDwEB/wQEAwIBBjBFBgNVHSAEPjA8MDoGCWCGGAMAAwEBATAtMCsGCCsGAQUF
  90. BwIBFh9odHRwOi8vd3d3LnR1cmt0cnVzdC5jb20udHIvc3VlMA8GA1UdEwEB/wQF
  91. MAMBAf8wSQYDVR0fBEIwQDA+oDygOoY4aHR0cDovL3d3dy50dXJrdHJ1c3QuY29t
  92. LnRyL3NpbC9UVVJLVFJVU1RfU1NMX1NJTF9zMi5jcmwwgaoGCCsGAQUFBwEBBIGd
  93. MIGaMG4GCCsGAQUFBzAChmJodHRwOi8vd3d3LnR1cmt0cnVzdC5jb20udHIvc2Vy
  94. dGlmaWthbGFyL1RVUktUUlVTVF9FbGVrdHJvbmlrX1N1bnVjdV9TZXJ0aWZpa2Fz
  95. aV9IaXptZXRsZXJpX3MyLmNydDAoBggrBgEFBQcwAYYcaHR0cDovL29jc3AudHVy
  96. a3RydXN0LmNvbS50cjANBgkqhkiG9w0BAQUFAAOCAQEAj89QCCyoW0S20EcYDZAn
  97. vFLFmougK97Bt68iV1OM622+Cyeyf4Sz+1LBk1f9ni3fGT0Q+RWZJYWq5YuSBiLV
  98. gk3NLcxnwe3wmnvErUgq1QDtAaNlBWMEMklOlWGfJ0eWaillUskJbDd4KwgZHDEj
  99. 7g/jYEQqU1t0zoJdwM/zNsnLHkhwcWZ5PQnnbpff1Ct/1LH/8pdy2eRDmRmqniLU
  100. h8r2lZfJeudVZG6yIbxsqP3t2JCq5c2P1jDhAGF3g9DiskH0CzsRdbVpoWdr+PY1
  101. Xz/19G8XEpX9r+IBJhLdbkpVo0Qh0A10mzFP/GUk5f/8nho2HvLaVMhWv1qKcF8I
  102. hQ==
  103. -----END CERTIFICATE-----
  104.  
  105.  
  106.  
  107.  
  108. Certificate:
  109.     Data:
  110.         Version: 3 (0x2)
  111.         Serial Number:
  112.             0a:88:90:40:ce:12:6e:65:57:ae:c2:42:7b:4a:c1:fb
  113.     Signature Algorithm: sha1WithRSAEncryption
  114.         Issuer: C=TR, ST=ANKARA, L=ANKARA, O=EGO, OU=EGO BILGI ISLEM, CN=*.EGO.GOV.TR
  115.         Validity
  116.             Not Before: Dec  6 08:55:15 2012 GMT
  117.             Not After : Jun  7 19:43:27 2013 GMT
  118.         Subject: C=US, ST=California, L=Mountain View, O=Google Inc, CN=*.google.com
  119.         Subject Public Key Info:
  120.             Public Key Algorithm: rsaEncryption
  121.                 Public-Key: (1024 bit)
  122.                 Modulus:
  123.                     00:ac:f9:69:c9:c8:97:f3:48:cd:67:f4:28:67:70:
  124.                     48:16:66:40:06:1f:fa:ad:12:d2:9c:44:e9:92:c6:
  125.                     f6:83:f9:d7:ef:60:66:20:84:41:64:80:0c:dd:03:
  126.                     be:8c:30:3c:3b:bd:61:e3:39:97:c5:36:15:f1:02:
  127.                     45:e3:ea:cc:3f:0a:45:01:ed:2a:a6:08:a5:07:c7:
  128.                     2d:a9:fd:03:df:1b:8d:4f:e4:4a:c0:9c:0b:02:a0:
  129.                     07:e9:bf:40:8f:7b:0c:32:bf:ac:c9:1f:01:00:51:
  130.                     6c:47:99:bf:78:2c:2f:5e:5a:82:54:6b:b8:4a:89:
  131.                     f0:e0:fe:2a:3e:47:9c:b2:ff
  132.                 Exponent: 65537 (0x10001)
  133.         X509v3 extensions:
  134.             X509v3 Extended Key Usage:
  135.                 TLS Web Server Authentication, TLS Web Client Authentication
  136.             X509v3 Subject Alternative Name:
  137.                 DNS:*.google.com, DNS:*.android.com, DNS:*.appengine.google.com, DNS:*.cloud.google.com, DNS:*.google-analytics.com, DNS:*.google.ca, DNS:*.google.cl, DNS:*.google.co.in, DNS:*.google.co.jp, DNS:*.google.co.uk, DNS:*.google.com.ar, DNS:*.google.com.au, DNS:*.google.com.br, DNS:*.google.com.co, DNS:*.google.com.mx, DNS:*.google.com.tr, DNS:*.google.com.vn, DNS:*.google.de, DNS:*.google.es, DNS:*.google.fr, DNS:*.google.hu, DNS:*.google.it, DNS:*.google.nl, DNS:*.google.pl, DNS:*.google.pt, DNS:*.googleapis.cn, DNS:*.googlecommerce.com, DNS:*.gstatic.com, DNS:*.urchin.com, DNS:*.url.google.com, DNS:*.youtube-nocookie.com, DNS:*.youtube.com, DNS:*.ytimg.com, DNS:android.com, DNS:g.co, DNS:goo.gl, DNS:google-analytics.com, DNS:google.com, DNS:googlecommerce.com, DNS:urchin.com, DNS:youtu.be, DNS:youtube.com
  138.             X509v3 Basic Constraints: critical
  139.                 CA:FALSE
  140.     Signature Algorithm: sha1WithRSAEncryption
  141.          13:d8:72:fc:4b:a9:39:58:69:26:f7:03:2c:69:1f:15:d5:86:
  142.          50:3c:3d:dd:e2:f3:79:b2:a0:b8:eb:9a:55:22:79:c4:8c:5a:
  143.          88:d5:37:31:63:b8:72:22:6a:7b:c1:19:f6:b3:c6:1a:18:85:
  144.          7e:a1:00:3e:e1:1d:d1:2b:f3:9f:cc:cb:e7:6d:ce:1e:0c:1f:
  145.          41:9d:33:5c:73:c3:84:df:ca:64:32:37:a2:14:07:ea:dd:04:
  146.          6c:0d:e4:85:73:28:f6:87:87:59:17:c2:6f:31:10:71:94:d9:
  147.          dd:3b:42:d3:80:f4:30:91:93:86:37:f1:d6:39:aa:e5:61:ef:
  148.          99:62:b0:b6:e8:df:60:d4:81:2c:0c:84:4e:79:6a:95:b1:19:
  149.          14:7e:0b:0d:d6:98:6b:26:64:dd:59:d1:c3:84:90:c7:bc:a4:
  150.          6c:34:8e:8d:b6:c2:b1:4a:01:49:5d:38:b0:51:1c:09:63:6f:
  151.          53:a2:21:c8:43:00:3c:24:72:32:50:da:90:6d:5c:73:d1:b7:
  152.          53:4c:9e:19:73:3b:48:0b:ea:3e:cf:74:4c:39:60:06:f0:ed:
  153.          81:37:f3:2e:ff:6f:65:39:98:c3:7c:e2:0d:23:91:50:11:39:
  154.          e6:41:87:fe:01:7d:a7:84:80:39:bd:f6:df:41:31:5a:65:80:
  155.          6b:2a:32:66
  156. -----BEGIN CERTIFICATE-----
  157. MIIFrzCCBJegAwIBAgIQCoiQQM4SbmVXrsJCe0rB+zANBgkqhkiG9w0BAQUFADBu
  158. MQswCQYDVQQGEwJUUjEPMA0GA1UECAwGQU5LQVJBMQ8wDQYDVQQHDAZBTktBUkEx
  159. DDAKBgNVBAoMA0VHTzEYMBYGA1UECwwPRUdPIEJJTEdJIElTTEVNMRUwEwYDVQQD
  160. DAwqLkVHTy5HT1YuVFIwHhcNMTIxMjA2MDg1NTE1WhcNMTMwNjA3MTk0MzI3WjBm
  161. MQswCQYDVQQGEwJVUzETMBEGA1UECBMKQ2FsaWZvcm5pYTEWMBQGA1UEBxMNTW91
  162. bnRhaW4gVmlldzETMBEGA1UEChMKR29vZ2xlIEluYzEVMBMGA1UEAxQMKi5nb29n
  163. bGUuY29tMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCs+WnJyJfzSM1n9Chn
  164. cEgWZkAGH/qtEtKcROmSxvaD+dfvYGYghEFkgAzdA76MMDw7vWHjOZfFNhXxAkXj
  165. 6sw/CkUB7SqmCKUHxy2p/QPfG41P5ErAnAsCoAfpv0CPewwyv6zJHwEAUWxHmb94
  166. LC9eWoJUa7hKifDg/io+R5yy/wIDAQABo4IC0zCCAs8wIAYDVR0lAQEABBYwFAYI
  167. KwYBBQUHAwEGCCsGAQUFBwMCMIICmAYDVR0RAQEABIICjDCCAoiCDCouZ29vZ2xl
  168. LmNvbYINKi5hbmRyb2lkLmNvbYIWKi5hcHBlbmdpbmUuZ29vZ2xlLmNvbYISKi5j
  169. bG91ZC5nb29nbGUuY29tghYqLmdvb2dsZS1hbmFseXRpY3MuY29tggsqLmdvb2ds
  170. ZS5jYYILKi5nb29nbGUuY2yCDiouZ29vZ2xlLmNvLmlugg4qLmdvb2dsZS5jby5q
  171. cIIOKi5nb29nbGUuY28udWuCDyouZ29vZ2xlLmNvbS5hcoIPKi5nb29nbGUuY29t
  172. LmF1gg8qLmdvb2dsZS5jb20uYnKCDyouZ29vZ2xlLmNvbS5jb4IPKi5nb29nbGUu
  173. Y29tLm14gg8qLmdvb2dsZS5jb20udHKCDyouZ29vZ2xlLmNvbS52boILKi5nb29n
  174. bGUuZGWCCyouZ29vZ2xlLmVzggsqLmdvb2dsZS5mcoILKi5nb29nbGUuaHWCCyou
  175. Z29vZ2xlLml0ggsqLmdvb2dsZS5ubIILKi5nb29nbGUucGyCCyouZ29vZ2xlLnB0
  176. gg8qLmdvb2dsZWFwaXMuY26CFCouZ29vZ2xlY29tbWVyY2UuY29tgg0qLmdzdGF0
  177. aWMuY29tggwqLnVyY2hpbi5jb22CECoudXJsLmdvb2dsZS5jb22CFioueW91dHVi
  178. ZS1ub2Nvb2tpZS5jb22CDSoueW91dHViZS5jb22CCyoueXRpbWcuY29tggthbmRy
  179. b2lkLmNvbYIEZy5jb4IGZ29vLmdsghRnb29nbGUtYW5hbHl0aWNzLmNvbYIKZ29v
  180. Z2xlLmNvbYISZ29vZ2xlY29tbWVyY2UuY29tggp1cmNoaW4uY29tggh5b3V0dS5i
  181. ZYILeW91dHViZS5jb20wDwYDVR0TAQH/BAUwAwEBADANBgkqhkiG9w0BAQUFAAOC
  182. AQEAE9hy/EupOVhpJvcDLGkfFdWGUDw93eLzebKguOuaVSJ5xIxaiNU3MWO4ciJq
  183. e8EZ9rPGGhiFfqEAPuEd0Svzn8zL523OHgwfQZ0zXHPDhN/KZDI3ohQH6t0EbA3k
  184. hXMo9oeHWRfCbzEQcZTZ3TtC04D0MJGThjfx1jmq5WHvmWKwtujfYNSBLAyETnlq
  185. lbEZFH4LDdaYayZk3VnRw4SQx7ykbDSOjbbCsUoBSV04sFEcCWNvU6IhyEMAPCRy
  186. MlDakG1cc9G3U0yeGXM7SAvqPs90TDlgBvDtgTfzLv9vZTmYw3ziDSORUBE55kGH
  187. /gF9p4SAOb3230ExWmWAayoyZg==
  188. -----END CERTIFICATE-----