www.rider.edu

Issued by GTS CA 1P5

About this certificate

This digital certificate with serial number 42:05:67:07:8b:c0:8e:f0:0d:ea:7f:40:47:f2:19:6d was issued on by Google Trust Services LLC.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=www.rider.edu

Google Trust Services LLC

Organization: Google Trust Services LLC
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 42:05:67:07:8b:c0:8e:f0:0d:ea:7f:40:47:f2:19:6d
Serial Number (int): 87757098892134640598492820497144879469
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: ce:08:6f:43:1b:a0:1d:bb:52:49:c2:9f:bd:f4:b2:14:2f:79:a7:58
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8

Fingerprint (sha1): 89:74:31:e1:49:60:46:f7:98:32:56:9e:99:30:2a:4a:99:03:45:2d
Fingerprint (sha256): 06:bc:55:f2:3f:75:42:fd:ce:a0:36:6c:b9:e1:95:37:2c:13:04:0a:23:88:bc:45:f9:de:38:47:00:b5:1b:d2

Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der

Revocation information

OCSP Server: http://ocsp.pki.goog/s/gts1p5/8mqwzwoqw6g
CRL Distribution Point: http://crls.pki.goog/gts1p5/k4bFqrqCAVI.crl

Check the revocation status for certificate www.rider.edu

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.rider.edu

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.rider.edu

Other certificates including the domain name rider.edu

(limited to 100 certificates)
csgold7-wm.rider.edu
broncnation.rider.edu
serenity.rider.edu
canvas.rider.edu
sierra.rider.edu
ssl766224.cloudflaressl.com
sni.cloudflaressl.com
shibboleth-prod.rider.edu
secureforms.rider.edu
www.rider.edu
vanckohall.delhi.edu
*.ec.rider.edu
epay.rider.edu
vanckohall.delhi.edu
com-web.rider.edu
keys.rider.edu
psynch.rider.edu
online.rider.edu
admissions.rider.edu
san-2-s10.tlsprovisioning.exacttarget.com
cvp.rider.edu
easypass.rider.edu
revan.rider.edu
tatooine.rider.edu
comm.rider.edu
aruba-wcc.rider.edu
online.rider.edu
accounts.rider.edu
comm.rider.edu
webmail.rider.edu
alumni.rider.edu
appnav-prod.ec.rider.edu
*.ec.rider.edu
com-od.rider.edu
ssl766224.cloudflaressl.com
explore.rider.edu
athena.rider.edu
image.info.malesci.it
sni.cloudflaressl.com
alumni.rider.edu
aruba-fa.rider.edu
athena.rider.edu
easypass.rider.edu
ssl766222.cloudflaressl.com
*.rider.edu
aruba-fa.rider.edu
secureforms.rider.edu
amploadvance.com
guides.rider.edu
sni.cloudflaressl.com
comm.rider.edu
csgold7-wm.rider.edu
cvp.rider.edu
athena.rider.edu
explore.rider.edu
image.info.malesci.it
vanckohall.delhi.edu
vanckohall.delhi.edu
tatooine.rider.edu
mobile.rider.edu
vanckohall.delhi.edu
broncnation.rider.edu
com-advising.rider.edu
sni.cloudflaressl.com
image.info.malesci.it
ssl436522.cloudflaressl.com
alumni.rider.edu
tatooine.rider.edu
give.rider.edu
coco.rider.edu
tatooine.rider.edu
listserv.rider.edu
rider-dlcas-301.rider.edu
vanckohall.delhi.edu
epay.rider.edu
athena.rider.edu
nextcatalog.rider.edu
image.info.malesci.it
evisions-dev.rider.edu
myrider.rider.edu
myrider.rider.edu
myprintcenter-dev.rider.edu
webapps-dev.rider.edu
*.ec.rider.edu
explore.rider.edu
dw.rider.edu
vanckohall.delhi.edu
shibboleth-dev.rider.edu
map.rider.edu
sanzio.rider.edu
image.info.malesci.it
tutortrac.rider.edu
mdm.rider.edu
mdm.rider.edu
guides.rider.edu
online.rider.edu
psynch.rider.edu
webapps-dev.rider.edu
aruba-ml.rider.edu
athena.rider.edu

Certificate

The complete raw certificate details for www.rider.edu in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAs4qwzPPJrxb9NgzObDMn
wQmExXpquVnXsi5cwv7eqDEZtvpQlmxakSu+yCmJtFAjvGba82wP5rVU6y/KwmIq
Iqu6WL653dAnwphr0Cl2SVIwvDhkgFJvlarDhM3xoFVciewgmCm7jNG9XQI74+TD
dJxW5ZwFXXVOy5IxX6CSuBK/q5MnSe+9HnfbEEr9n84qXqfmRZ+SyjNOoBQ7ovCb
FWytS9Q3H3lChyyz0xVh2rR+ihm0Ifskjq6ycuhRtPcX+AQO/RPBLZ7y02GmR7g2
zNmUssuqojpLLBcAcgQXVTF8jSs8op0oc+irYzE2VZpPIe0WB4V9QVpmQMwbPFq9
xwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 87757098892134640598492820497144879469
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-04 02:47:43 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-03 02:47:42 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.rider.edu'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22665047486221535847804356974545531032396250640170920770041535303437815547486079766566618070277602136225653147084943736943810623957548465631460767645231476587030281681586078031236991260014400205115682828413337148507895541310402582781637812320397307827066947926961092403941139842825622088361327371437863920660579440189074580911528064665691786508417797430764533438046783244765909390791441098988746074768516073079859091343876859998473940198115364436641691261068001466731425763606501444289971732888182968533116829084941526291390712433257541195745879856660450796103517486863517779827336971852765953895709646249086177426887
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ce086f431ba01dbb5249c29fbdf4b2142f79a758
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/8mqwzwoqw6g'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.rider.edu'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/k4bFqrqCAVI.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018ea7383b9a000004030047304502206e3bdb592885a8bf5312677bbc92d79f2b20650b46fbb12f58d335dbaa616b00022100ad21c297fd45beac05f823729b1a9894053514982111311f6c5dc13c0ef90c310075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018ea7383b8200000403004630440220740a56a207b1772927ce452adcd35a59ab91ddd1d3ac66cafd6fcc542918339d02207363e68e2c1d0283eeb48d8dc0d772c71f16e6723a3a7d82ee0de3e064e2a0fd
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0030cfc7070e7e7a140493e9019e17666334dd0180706a206eb1199b0115bab3119282b8e0eb7e940ee28edcd150401895365abd875665b97a04fe86437e97625463d68d3f2026554604e8f6227283f09c575398f1b008db3a0d64460e1f166107fa53b8712fe3718847b6bc4e13e9271cac8128df2535c0229ae35850623321d16834c51db8ba7803922ce15a3489f1c9af055ff0bac4e17a072a99d61bf6af6d142717f50e697f99be584460ce2bfe9143478600a979b626620cff85cf872cb44099c930affebad3c655bb7cb37154e1ba3049a42b8238762e3f67d412162bb250774532bf2a39061aa5a947dd00f6df5b41515b4c4c1c02143f0f2c618bcbdd