regthink.org

Issued by GTS CA 1P5

About this certificate

This digital certificate with serial number b7:33:df:1f:00:3c:a1:1a:0e:06:37:6b:95:2f:f7:a2 was issued on by Google Trust Services LLC.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=regthink.org

Google Trust Services LLC

Organization: Google Trust Services LLC
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): b7:33:df:1f:00:3c:a1:1a:0e:06:37:6b:95:2f:f7:a2
Serial Number (int): 243518055801912829545957274762397874082
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 63:2a:d1:94:86:2b:6f:a6:58:9b:c1:bd:02:fd:24:0e:5b:aa:fa:3c
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8

Fingerprint (sha1): b6:31:68:d6:4f:29:cc:4f:fc:16:01:3c:f8:ba:38:fe:31:06:09:b6
Fingerprint (sha256): 00:64:0e:73:70:33:e3:e1:fb:70:3e:08:53:1d:d8:0d:9e:31:84:f1:a6:9c:74:2e:b7:13:62:9d:37:22:2c:57

Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der

Revocation information

OCSP Server: http://ocsp.pki.goog/s/gts1p5/kRETYS88jVM
CRL Distribution Point: http://crls.pki.goog/gts1p5/Jpm9AsZrdX4.crl

Check the revocation status for certificate regthink.org

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for regthink.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

regthink.org
*.regthink.org

Other certificates including the domain name regthink.org

(limited to 100 certificates)
regthink.org
regthink.org
regthink.org
regthink.org
regthink.org
regthink.org
regthink.org
regthink.org
regthink.org
regthink.org
regthink.org
regthink.org
regthink.org
regthink.org
regthink.org

Certificate

The complete raw certificate details for regthink.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA6uLWBrtm9ZOdnUyvtf7p
diZ58qHUjzz/eNXH3KJPCFcAES0TpNDUpIfZ8ILtXju08g19M0N3n0bE9cQt/gev
+VIl9oWD9D3XjPWY3YpFWWi8HmwuRA77ftVHzGbKLan0/KiYZXw39bhHPnp0nsgT
uCdkI5s3CngCC9NGF47xi6ZLn0IveLyac6K2FSQ8Ras5XrJk30DLAI8uNP+oxreW
qr2gnFzHmMu8Pr2XnF9UwIR0sV9zH5FQAf8nsPzq0ONWJs0MfuUwOP/c/hdrTB0/
Cp8ksoQXGuKN7UFmk2kBpSH0rmxJGPc+CPj98tW/4dnv24NQVpot5mar0Fg5ujeX
LwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 243518055801912829545957274762397874082
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-16 07:29:52 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-14 07:29:51 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'regthink.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29651620382459810633224653996278772885698826311818920435806260702644363479353715148591097440811675646347280083857809709349838679452290777122105929597747441744222623931864782040096096137438030600584813148633215066699791555408815682978076536846302271335881136387094340957621291423329709602313525712922079227851232507734444749790153973519534919553017519125744278955826293388831359358531885706060809290516375768456985911315319926808694171616454113070880226476652863733034696434100684620907493566030627895481431268805112188247700925872253443066542723576758780232982646245677825333732267427739700934751787332000136683820847
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							632ad194862b6fa6589bc1bd02fd240e5baafa3c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/kRETYS88jVM'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'regthink.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.regthink.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/Jpm9AsZrdX4.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b379b17300000040300483046022100a504b9e475331f6cecd9c40f1e33fea5fe53e486fff4cc9708f0e1a1d42fb1ef0221008ac08063de07bc3dbbb9547e7b27bde5997e26bb550003bc7641fab28417fe3500770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018b379b172a0000040300483046022100ba63203ff8028655eee946f5eb9963851b4ab27eb61495adf74d91d20bcc99230221009ef5c236665fb8d61bd9e5c1587a22e4c4a3e92d99897ca23657028428502018
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		002ca4d806fa9877a6a87f71ad3129d4a4c3b776105b5d4808651cfb6d2720ee72d478cfc38e6c3b79db6aec0f5e2d87b3f5bd4c147f0be803324bd5ac6beeaf325c18d2980e190556e0cda6fdd53801595241af12663150b43ce4198851e5afd280770a242e254a067c4f6fea4d77fc3bcd4d0b73c596e6146446c1ef1074f7ad4cbe00fac9d50578e0a3e866f9de64cad0b1ac5b638a7555ca2a9c3e204ee339c3c4711c2c2fdc9c8518590aa68f49e72645388e17582a7ed9c0669570f4b60f5933cea5e5431b4e5da3befdf6389db48877958289ef79faddb84674682cb442e49aff24d123688e232e284b798fade3bff106b34412f9c477d33dcb6a152845