DV SSL/TLS Certificate for uveitisct.org

Certificate is witin its validity period

Issued by Google Trust Services (WR1)

About the uveitisct.org DV SSL/TLS Certificate

This certificate with serial number f0:36:07:57:89:78:98:e1:0e:8d:b1:d1:e9:d0:fa:0c for uveitisct.org was issued on by Google Trust Services.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for uveitisct.org provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Google Trust Services

Organization: Google Trust Services
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): f0:36:07:57:89:78:98:e1:0e:8d:b1:d1:e9:d0:fa:0c
Serial Number (int): 319295251931003293886694212028500867596
Serial Number Length: 128 bits, 16 octets

Subject Key Identifier: fa:dc:1a:7b:7a:7e:e5:d9:03:a7:f2:80:66:47:35:e8:d3:ff:b8:ea
Authority Key Identifier: 66:69:49:d4:de:2a:9c:91:03:cf:89:0e:24:b8:0e:30:03:6e:88:2e

Fingerprint (SHA-1): ac:dd:5a:45:e9:c8:40:02:8a:27:52:b6:de:e8:d4:f3:0b:b4:ab:80
Fingerprint (SHA-256): db:39:06:26:99:5c:aa:30:2e:08:2c:b3:60:f2:8c:44:32:56:9f:39:37:d3:a0:2f:cf:aa:d0:21:db:30:7a:25

Issuing Certificate URL: http://i.pki.goog/wr1.crt

Revocation Information

OCSP Server: http://o.pki.goog/s/wr1/8DY
CRL Distribution Point: http://c.pki.goog/wr1/xx9NZPTJN50.crl

Check the revocation status for certificate uveitisct.org
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for uveitisct.org

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Key Encipherment
Digital Signature
Extended Key Usages
Server Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for uveitisct.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAn7v5aR3AlXfA1nCXnAuS
hhEdjgKcxGnFcO2lnQh5j6whNuqq/zcpaGfV9JktylkGpvxscw/tYDax8Rog/fjE
8xl0rZs+CzRXZj31t46HKDnMLwLs5As1Upr/PP4ZbZ3IcC81R+sGtRtO/U7TZGzR
nK7k5pGa0WWaZnLxmTlmpJ+/C//QVzP0qVhjqxPrI/aIrpOmqkAhODtg3HtTmM22
Se2IuQEx9K/ld+YqohQ20Ntw0ga5BR1UBea8B6l7jlP7YPcqUtCVZbH1DvupIH33
Ea/YyeI8SnGhVb75md1TTKxKxFcarsb94QUDQPfe2t37cLMVySStL2sGU3yvfcbT
EwIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 319295251931003293886694212028500867596
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'WR1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-22 06:57:16 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-20 06:57:15 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'uveitisct.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20164584052042463098757802442026332681252047346170225144613501217717089000229663435615845916228430018828799351954652694837954811299701110368854749394949706649229756469200403566211287376142162424470951416459488070623611612092621016888986150404336083680545321557760510396953880901836671218983283025221922023399341933751296217108010976381529406181589137145189134985090962114933582587779257362596278261366367023093217719737879480430148671645212164300028110790849667332052828463937136661716570549578829351600826409424353835907274227894945775369392028947436581524495300283878856684840516388658952607880238975979351492186899
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							fadc1a7b7a7ee5d903a7f280664735e8d3ffb8ea
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 666949d4de2a9c9103cf890e24b80e30036e882e
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (82 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://o.pki.goog/s/wr1/8DY'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://i.pki.goog/wr1.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'uveitisct.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.uveitisct.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (47 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://c.pki.goog/wr1/xx9NZPTJN50.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a00000196f6ff1f570000040300473045022069117483aa8e7f202944ba988422c4784cb0d8cf501e306dff6444a6ea8a889a0221009cc97b16bf3de91397d291f8b666677a9d8ed75dc67eff6f1d7c5fc20d9031c0007500ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000196f6ff1f6a000004030046304402201f31d00d323a4901da521c32006e772359c8dd6ff1d88fdaf47b248112e4cf9b022010fb1e3c61adcf3ca9bec30c7d2a4f0698faeff80b1caf8a0158158edb95223d
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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