masks.yacu.org
Issued by GTS CA 1D2
About this certificate
This digital certificate with serial number 20:df:3e:81:b8:bf:18:0b:0a:00:00:00:00:22:a9:c1 was issued on by Google Trust Services.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=masks.yacu.org
Google Trust Services
Organization:
Google Trust Services
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 20:df:3e:81:b8:bf:18:0b:0a:00:00:00:00:22:a9:c1Serial Number (int): 43694445851575225416854197347536775617
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 90:4d:17:35:e4:36:82:a7:45:d8:3a:75:9e:58:3f:ef:e6:e5:fe:87
AuthorityKeyId: b1:dd:32:5d:e8:b7:37:72:d2:ce:5c:ce:26:fe:47:79:e2:01:08:e9
Fingerprint (sha1): 10:c2:b4:57:79:81:0f:23:0b:3b:17:56:e4:b9:05:6e:1e:21:84:a6
Fingerprint (sha256): 05:d3:56:d6:86:c5:f5:ae:65:23:a0:4c:25:4f:91:32:24:25:ee:e6:4b:0d:12:8c:d1:6e:97:05:4b:99:ee:19
Issuing Certificate URL: http://pki.goog/gsr2/GTS1D2.crt
Revocation information
OCSP Server: http://ocsp.pki.goog/gts1d2CRL Distribution Point: http://crl.pki.goog/GTS1D2.crl
Check the revocation status for certificate masks.yacu.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for masks.yacu.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
masks.yacu.org
Other certificates including the domain name yacu.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for masks.yacu.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFOzCCBCOgAwIBAgIQIN8+gbi/GAsKAAAAACKpwTANBgkqhkiG9w0BAQsFADBC MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMRMw EQYDVQQDEwpHVFMgQ0EgMUQyMB4XDTIwMDMzMDEzMTAxNloXDTIwMDYyODEzMTAx NlowGTEXMBUGA1UEAxMObWFza3MueWFjdS5vcmcwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCnTAL3SBe662xatnFBo0P59VOzjEloVqzIgE45c6p3VVym hn29Z5rJbVvMKkpvycEvhBbnROZ2MWvyPkjsh93xOLEBH3bpGCJzD0o9qDyJEhcf +VeMKHldoVWP0/98QJHgta9B17mHeasEH4iNIzDwAkzMneYhKPMSNdIu1t+r+nCT 6kjOKtbyH7JJDc6qlv4BicTZJyTxMt1sBpBWHQzgpqj7JlhlAc+ScNu+FZCf3Wub yva5VH+QtEUXkCm9uhFc8picdGOG/zT2o/0xvdLT6fNi+BEl/ZD5zUa1WKBiDk7i iAiZjh5gZn6Z8EMHSs8UOLAcPtj9cvFpyop3VMTTAgMBAAGjggJUMIICUDAOBgNV HQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUkE0XNeQ2gqdF2Dp1nlg/7+bl/ocwHwYDVR0jBBgwFoAUsd0yXei3 N3LSzlzOJv5HeeIBCOkwZAYIKwYBBQUHAQEEWDBWMCcGCCsGAQUFBzABhhtodHRw Oi8vb2NzcC5wa2kuZ29vZy9ndHMxZDIwKwYIKwYBBQUHMAKGH2h0dHA6Ly9wa2ku Z29vZy9nc3IyL0dUUzFEMi5jcnQwGQYDVR0RBBIwEIIObWFza3MueWFjdS5vcmcw IQYDVR0gBBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzAvBgNVHR8EKDAmMCSg IqAghh5odHRwOi8vY3JsLnBraS5nb29nL0dUUzFEMi5jcmwwggEEBgorBgEEAdZ5 AgQCBIH1BIHyAPAAdgCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAA AXErx1nuAAAEAwBHMEUCIQDm3SQyrVzHzhLQX4fYrw5nCSHAGw/nnBaBX07KRnY7 8AIgI7nAox65AiF2A+WfF2q+wY3bwGc8YTlhwoVOwASVd/EAdgBep3P531bA57U2 SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAXErx1okAAAEAwBHMEUCIG4bK4seFKU4 +tyw2FNw8+CUvOZ/CQCh6poTCPQpufCZAiEA4+aAgTKZoffcwuB548yYidLgHQzu x1nOExNPIbC1dDwwDQYJKoZIhvcNAQELBQADggEBAAgWmVM3jz4ww92YLh+4vWxd 31xCdDT0znDdLZFAw8gKGLraOQ9YGxQRFc/L7sSf0sUUf6z6WOR2u7vu/kz7wjCa XKvfuzIwH/Xajb4AdK7ceUj0NaWePuRwCZaAKwwaaBtaYG38nqQUlQvF0ThWOyAQ AyXjeusFOwIRWFGO0xS8kA1gSH8MVd9/VXHftwWZdmTW1Uw9EM1GaYWo+tOfjfSP 1K/chlxeCnv7lpUCEuV411KJQS5Ey4gD6trHj/x/KgOfltBsKuIS83EyP62LgeR7 HHEm0MdC0hJnuFROD5uVl9eMohvdb/VB2p2asgI/8E9AIbs4UVn/6GoseHw5tgg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAp0wC90gXuutsWrZxQaND +fVTs4xJaFasyIBOOXOqd1VcpoZ9vWeayW1bzCpKb8nBL4QW50TmdjFr8j5I7Ifd 8TixAR926Rgicw9KPag8iRIXH/lXjCh5XaFVj9P/fECR4LWvQde5h3mrBB+IjSMw 8AJMzJ3mISjzEjXSLtbfq/pwk+pIzirW8h+ySQ3Oqpb+AYnE2Sck8TLdbAaQVh0M 4Kao+yZYZQHPknDbvhWQn91rm8r2uVR/kLRFF5ApvboRXPKYnHRjhv809qP9Mb3S 0+nzYvgRJf2Q+c1GtVigYg5O4ogImY4eYGZ+mfBDB0rPFDiwHD7Y/XLxacqKd1TE 0wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 43694445851575225416854197347536775617 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1D2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-30 13:10:16 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-28 13:10:16 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'masks.yacu.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21119279639249044934711137117763708774061659976713194690539486657608344244024703659456686198933270220799670852862696921096918329058864537942423582772375959507760396384681771431465285258107482909070056121915964025705782242715528547426288232468754713911561396815297521804208062623746981250946459624620063358211229372670507460782948241829332549276404892730781175838030374554693906168072034292973503990844382112376394228371787172282861583706021601247228444080260456108494928862713483021391472948948994482011105248670394460014541451119151108680049331036680854345955287070852490679813238407347341039421405955930579986072787 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 904d1735e43682a745d83a759e583fefe6e5fe87 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b1dd325de8b73772d2ce5cce26fe4779e20108e9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (88 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/gts1d2' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/gsr2/GTS1D2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'masks.yacu.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.pki.goog/GTS1D2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001712bc759ee0000040300473045022100e6dd2432ad5cc7ce12d05f87d8af0e670921c01b0fe79c16815f4eca46763bf0022023b9c0a31eb902217603e59f176abec18ddbc0673c613961c2854ec0049577f10076005ea773f9df56c0e7b536487dd049e0327a919a0c84a112128418759681714558000001712bc75a24000004030047304502206e1b2b8b1e14a538fadcb0d85370f3e094bce67f0900a1ea9a1308f429b9f099022100e3e680813299a1f7dcc2e079e3cc9889d2e01d0ceec759ce13134f21b0b5743c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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