*.google.com.tj
- Google Inc -
Issued by Google Internet Authority G3
About this certificate
This digital certificate with serial number 73:1a:59:d2:63:74:90:de was issued on by Google Trust Services.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Google Inc
Organization:
Google Inc
State / Province:
California
Locality: Mountain View
Country: US
Locality: Mountain View
Country: US
Google Trust Services
Organization:
Google Trust Services
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 73:1a:59:d2:63:74:90:deSerial Number (int): 8294040423902777566
Serial Number lenght: 63 bits, 8 octets
SubjectKeyId: 23:24:4c:29:e7:d3:b0:d1:f2:5b:49:07:18:cd:12:60:78:a9:0b:3b
AuthorityKeyId: 77:c2:b8:50:9a:67:76:76:b1:2d:c2:86:d0:83:a0:7e:a6:7e:ba:4b
Fingerprint (sha1): 97:51:e8:7f:61:d1:25:13:3d:a7:31:d7:97:85:c5:f1:1c:80:5d:4e
Fingerprint (sha256): 09:34:dc:d5:36:da:d1:78:de:00:5a:8e:06:73:2f:d6:ee:82:65:c6:ae:66:9f:3e:ca:56:f2:18:71:ca:c3:9e
Issuing Certificate URL: http://pki.goog/gsr2/GTSGIAG3.crt
Revocation information
OCSP Server: http://ocsp.pki.goog/GTSGIAG3CRL Distribution Point: http://crl.pki.goog/GTSGIAG3.crl
Check the revocation status for certificate *.google.com.tj
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for *.google.com.tj
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Extended Key Usages
Server Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
*.google.com.tj
google.com.tj
google.com.tj
Other certificates including the domain name google.com.tj
(limited to 100 certificates)
*.google.com.tj
google.com
google.com
google.com
google.com
*.googleapis.com
google.com
google.com
google.com
*.googleapis.com
google.com
google.com
google.com
*.google.com.tj
*.google.com.tj
google.com
*.google.com.tj
google.com
*.googleapis.com
*.google.com.tj
google.com
google.com
google.com
*.googleapis.com
google.com
google.com
google.com
google.com
*.google.com.tj
*.google.com.tj
google.com
google.com
*.google.com.tj
*.google.com.tj
google.com
google.com
*.google.com.tj
*.google.com.tj
google.com
google.com
*.googleapis.com
*.googleapis.com
*.googleapis.com
*.googleapis.com
google.com
*.google.com.tj
*.googleapis.com
*.google.com.tj
google.com
google.com
google.com
google.com
*.google.com.tj
google.com
*.google.com.tj
google.com
*.google.com.tj
*.google.com.tj
*.google.com.tj
*.googleapis.com
*.googleapis.com
*.googleapis.com
*.googleapis.com
*.googleapis.com
*.googleapis.com
*.google.com.tj
*.google.com.tj
*.googleapis.com
google.com
*.google.com.tj
google.com
google.com
google.com
*.google.com.tj
*.google.com.tj
*.google.com.tj
*.google.com.tj
google.com
google.com
*.google.com.tj
google.com
*.google.com.tj
google.com
google.com
*.google.com.tj
*.google.com.tj
*.google.com.tj
google.com
google.com
*.googleapis.com
*.googleapis.com
*.google.com.tj
*.google.com.tj
google.com
google.com
google.com
*.googleapis.com
*.google.com.tj
google.com
*.google.com.tj
google.com
google.com
google.com
google.com
*.googleapis.com
google.com
google.com
google.com
*.googleapis.com
google.com
google.com
google.com
*.google.com.tj
*.google.com.tj
google.com
*.google.com.tj
google.com
*.googleapis.com
*.google.com.tj
google.com
google.com
google.com
*.googleapis.com
google.com
google.com
google.com
google.com
*.google.com.tj
*.google.com.tj
google.com
google.com
*.google.com.tj
*.google.com.tj
google.com
google.com
*.google.com.tj
*.google.com.tj
google.com
google.com
*.googleapis.com
*.googleapis.com
*.googleapis.com
*.googleapis.com
google.com
*.google.com.tj
*.googleapis.com
*.google.com.tj
google.com
google.com
google.com
google.com
*.google.com.tj
google.com
*.google.com.tj
google.com
*.google.com.tj
*.google.com.tj
*.google.com.tj
*.googleapis.com
*.googleapis.com
*.googleapis.com
*.googleapis.com
*.googleapis.com
*.googleapis.com
*.google.com.tj
*.google.com.tj
*.googleapis.com
google.com
*.google.com.tj
google.com
google.com
google.com
*.google.com.tj
*.google.com.tj
*.google.com.tj
*.google.com.tj
google.com
google.com
*.google.com.tj
google.com
*.google.com.tj
google.com
google.com
*.google.com.tj
*.google.com.tj
*.google.com.tj
google.com
google.com
*.googleapis.com
*.googleapis.com
*.google.com.tj
*.google.com.tj
google.com
google.com
google.com
*.googleapis.com
*.google.com.tj
google.com
*.google.com.tj
Certificate
The complete raw certificate details for *.google.com.tj in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIEkzCCA3ugAwIBAgIIcxpZ0mN0kN4wDQYJKoZIhvcNAQELBQAwVDELMAkGA1UE BhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczElMCMGA1UEAxMc R29vZ2xlIEludGVybmV0IEF1dGhvcml0eSBHMzAeFw0xNzEyMDUxMDAyMDFaFw0x ODAyMjcwOTI5MDBaMGkxCzAJBgNVBAYTAlVTMRMwEQYDVQQIDApDYWxpZm9ybmlh MRYwFAYDVQQHDA1Nb3VudGFpbiBWaWV3MRMwEQYDVQQKDApHb29nbGUgSW5jMRgw FgYDVQQDDA8qLmdvb2dsZS5jb20udGowggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAw ggEKAoIBAQC3LRhq+Yn9TTtLK6KDQ1nIJt4Zuvc5g9I3vp/NbFepdtb7S+BJT4GY I5OvsSfBRt+5itzGAB/+gGWd8N1UJ/CB+dgwuA/Iq0JnDOwqtU9NMmMpEw8TmVVR nOpEDSLNts9nrtyGeRnOHvgwxC5Gbl5wGfhfzoN42NpdUT8UnpOYY2eTgbLc1RG9 FI1e/3gtC7PjWAO1fbcQHkta27OFOBiYZCc9hGUpkBjuovrQ9eCnS07bxJXgrYc0 xTZw6S9g2ll+JZbCBSMM4e14h1fpTpuvhDh7SHmPjAcsB9G5S/9ftEOcqDXInF81 nZxohTaBCBayuqFmZThinABfcm+gIsE9AgMBAAGjggFSMIIBTjATBgNVHSUEDDAK BggrBgEFBQcDATApBgNVHREEIjAggg8qLmdvb2dsZS5jb20udGqCDWdvb2dsZS5j b20udGowaAYIKwYBBQUHAQEEXDBaMC0GCCsGAQUFBzAChiFodHRwOi8vcGtpLmdv b2cvZ3NyMi9HVFNHSUFHMy5jcnQwKQYIKwYBBQUHMAGGHWh0dHA6Ly9vY3NwLnBr aS5nb29nL0dUU0dJQUczMB0GA1UdDgQWBBQjJEwp59Ow0fJbSQcYzRJgeKkLOzAM BgNVHRMBAf8EAjAAMB8GA1UdIwQYMBaAFHfCuFCaZ3Z2sS3ChtCDoH6mfrpLMCEG A1UdIAQaMBgwDAYKKwYBBAHWeQIFAzAIBgZngQwBAgIwMQYDVR0fBCowKDAmoCSg IoYgaHR0cDovL2NybC5wa2kuZ29vZy9HVFNHSUFHMy5jcmwwDQYJKoZIhvcNAQEL BQADggEBAFhG9jDCZORZlQr2RgHTZHQw/j6Lg3qEq69OY0UDY23UObGnfz05T7fd 5WrxFmgwXW4gnog/GIi87vtHxEp8A7s1PMRoOOGrOdCxoq9Ar3HU/zkRnA62wZ+H VKeffcppJUwzZsZVZgJYhVZEKL0QNSkLOjqVHZ+pjWXzY1KzivoqebrWalPAPTEl AfzVgRufT/tU8RC+Ba6ky4AC0C7MF8dIJNImsAJW9vjY4JuthKzJOT35SvdKLfXD n8DegXq7kt74EOZ0LIbBT2BpRytYp9fj9QXDRyYBkXTXI1dr1Z3mWh3cHYgZCB5L N8FiSNbPPwH1S1g4iMc2FjAni+BgHSQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAty0YavmJ/U07Syuig0NZ yCbeGbr3OYPSN76fzWxXqXbW+0vgSU+BmCOTr7EnwUbfuYrcxgAf/oBlnfDdVCfw gfnYMLgPyKtCZwzsKrVPTTJjKRMPE5lVUZzqRA0izbbPZ67chnkZzh74MMQuRm5e cBn4X86DeNjaXVE/FJ6TmGNnk4Gy3NURvRSNXv94LQuz41gDtX23EB5LWtuzhTgY mGQnPYRlKZAY7qL60PXgp0tO28SV4K2HNMU2cOkvYNpZfiWWwgUjDOHteIdX6U6b r4Q4e0h5j4wHLAfRuUv/X7RDnKg1yJxfNZ2caIU2gQgWsrqhZmU4YpwAX3JvoCLB PQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 8294040423902777566 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Internet Authority G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-05 10:02:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-27 09:29:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'California' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Mountain View' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'Google Inc' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.google.com.tj' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23123847170601308598169384330464536588707887306587478746019469908173534438344100198416124301710628153480648919106864777279250594487420926590705550765179303897923500964519539492043200392700405373747470624700642396411310708006154908079730390133955529379184065596773161427549552014351292599791266022739265117348670171023889054365753669274424830900243243555102098551978967784587022351863363976635430302388249741879535213238026406847602297760288523568964090228554714561094018166391567036470975063560832906388543626708841790979110469588609270305929509643967821961685725813343365903234120321328631058207755388047854022082877 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.google.com.tj' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'google.com.tj' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (92 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/gsr2/GTSGIAG3.crt' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/GTSGIAG3' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 23244c29e7d3b0d1f25b490718cd126078a90b3b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 77c2b8509a677676b12dc286d083a07ea67eba4b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.2 (Organization Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.pki.goog/GTSGIAG3.crl' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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