I know that similar questions has been asked several times, but this question focuses on one aspect I did not found answered yet.
Recently when I was connecting my iPhone to my school wifi (eduroam), it asked me to trust a wifi certificate. How do I differentiate between those that are able to MITM me and those that aren’t? Are there any parameters/description on the details of the certificate that makes them distinct?
The certificate I was presented with was:
>Issuer Name
>Organization: QuoVadis Limited
>Common Name: QuoVadis Global SSL ICA G3
>Basic Constraints
>Critical: No
>Certificate Authority: No
>Certificate Authority Info Access
>Critical: No
>Access Method: CA Issuers
>URI:http://trust.quovadisglobal.com/qvsslg3.crt
>Access Method: Online Certificate Status Protocol
>URI: http://ocdp.quovadisglobal.com
>Extended Key Usage
>Critical: No
>Purpose: Client Authentication
>Purpose: Server Authentication
>Key Usage
>Critical: No
>Usage: Digital Signature, Key Encipherment