blog.mainstaytherapy.com

Issued by GTS CA 1D2

About this certificate

This digital certificate with serial number c9:39:d9:5f:1f:53:47:6f:0a:00:00:00:00:1c:1f:07 was issued on by Google Trust Services.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=blog.mainstaytherapy.com

Google Trust Services

Organization: Google Trust Services
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): c9:39:d9:5f:1f:53:47:6f:0a:00:00:00:00:1c:1f:07
Serial Number (int): 267475196892958720379904688566239502087
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 51:ef:7d:2e:5a:42:6e:df:c8:cb:5f:84:44:ce:74:ac:77:c6:01:8c
AuthorityKeyId: b1:dd:32:5d:e8:b7:37:72:d2:ce:5c:ce:26:fe:47:79:e2:01:08:e9

Fingerprint (sha1): 51:a2:3c:02:91:bb:58:e4:f4:6e:04:31:41:d2:bb:e2:c3:ce:84:e9
Fingerprint (sha256): 14:aa:38:36:2e:8f:6d:9c:db:76:59:1c:4b:59:29:e5:eb:67:39:da:75:47:e7:c7:69:31:f7:fc:61:ac:3c:2e

Issuing Certificate URL: http://pki.goog/gsr2/GTS1D2.crt

Revocation information

OCSP Server: http://ocsp.pki.goog/gts1d2
CRL Distribution Point: http://crl.pki.goog/GTS1D2.crl

Check the revocation status for certificate blog.mainstaytherapy.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for blog.mainstaytherapy.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

blog.mainstaytherapy.com

Other certificates including the domain name mainstaytherapy.com

(limited to 100 certificates)

Certificate

The complete raw certificate details for blog.mainstaytherapy.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFUjCCBDqgAwIBAgIRAMk52V8fU0dvCgAAAAAcHwcwDQYJKoZIhvcNAQELBQAw
QjELMAkGA1UEBhMCVVMxHjAcBgNVBAoTFUdvb2dsZSBUcnVzdCBTZXJ2aWNlczET
MBEGA1UEAxMKR1RTIENBIDFEMjAeFw0yMDAzMDkxNDQxMjdaFw0yMDA2MDcxNDQx
MjdaMCMxITAfBgNVBAMTGGJsb2cubWFpbnN0YXl0aGVyYXB5LmNvbTCCASIwDQYJ
KoZIhvcNAQEBBQADggEPADCCAQoCggEBAON0lCz9WvIELIDMiEeuf7Fa2HIEizZx
xtt2fEmksBh2pum9xG5OshFoRe989uK97IL4LEJm6ac2PO10wzHTMQJ93q92U2c2
+Nt9WSrepNZCmSaFzJs+X3WHyhfGkA4cXucAVkETBUz1yfzxEYNW1UlGhQfsbc0B
njK+25rzeNvRfkwLHnSDR510PpaPAa8WYNC2vprof89hc72I5mrcvbqDu79axTri
+J7zJVEgI/DUqkp7jWUxYQyWzu8PthYwWBTsT4jeplDZ4FkZXz2rx9KHpdjFEALP
E2EZqDswA93n3m/G7xnHPGrnDmHr99ju13JUstQsUmbe+mrqy1yvsDsCAwEAAaOC
AmAwggJcMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNV
HRMBAf8EAjAAMB0GA1UdDgQWBBRR730uWkJu38jLX4REznSsd8YBjDAfBgNVHSME
GDAWgBSx3TJd6Lc3ctLOXM4m/kd54gEI6TBkBggrBgEFBQcBAQRYMFYwJwYIKwYB
BQUHMAGGG2h0dHA6Ly9vY3NwLnBraS5nb29nL2d0czFkMjArBggrBgEFBQcwAoYf
aHR0cDovL3BraS5nb29nL2dzcjIvR1RTMUQyLmNydDAjBgNVHREEHDAaghhibG9n
Lm1haW5zdGF5dGhlcmFweS5jb20wIQYDVR0gBBowGDAIBgZngQwBAgEwDAYKKwYB
BAHWeQIFAzAvBgNVHR8EKDAmMCSgIqAghh5odHRwOi8vY3JsLnBraS5nb29nL0dU
UzFEMi5jcmwwggEGBgorBgEEAdZ5AgQCBIH3BIH0APIAdwCyHgXMi6LNiiBOh2b5
K7mKJSBna9r6cOeySVMt74uQXgAAAXC/9UhzAAAEAwBIMEYCIQCvx1qFvyJnxtKK
4Igz70KA0w1drOtNhNrh0iwosDOerQIhALa7bU+n+AN/e/NpsZ7mW31wsBe8InCM
jxxOs0Erak/pAHcAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFw
v/VInQAABAMASDBGAiEA+vcocUkNqymXyQvlZWMgISLFtuTSVFlUCEopIN5U9hIC
IQCu7HVOp+pjGWgSrMhkGad9mDKrqhxed1DxzEMTXFOaOjANBgkqhkiG9w0BAQsF
AAOCAQEAoLAEDZ1CuetWBTJvGJJWntWqj7htKgpv3bpWw22wojS4XwcUiWfsC+tM
PIPJ6PVWBd2/3d7HrCATWtHKf9HgRw4wBltpanSqat1J3G7yo5skWgvvapXybI2O
vowLucl1AKYC5GCC9ZCHcvR4cr80vHkoFF7o5J85lLSTA7gXfTJdkOet7DSKBdsI
eaBRP8UQPGjTfVfp9CTMTC7NK8T3c9mr5qPToY9QUgEHvjjwtztYETCpiyxBFdpB
Tj99b6w8K6+IejZLyWLKUxVH5ybvRGCLVmLYvqPLRX2sk09+BcKEN9E/DlJO4Wrl
uqY05ne1Zdp8/wCET2VgQvOHvdhSRg==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA43SULP1a8gQsgMyIR65/
sVrYcgSLNnHG23Z8SaSwGHam6b3Ebk6yEWhF73z24r3sgvgsQmbppzY87XTDMdMx
An3er3ZTZzb4231ZKt6k1kKZJoXMmz5fdYfKF8aQDhxe5wBWQRMFTPXJ/PERg1bV
SUaFB+xtzQGeMr7bmvN429F+TAsedINHnXQ+lo8BrxZg0La+muh/z2FzvYjmaty9
uoO7v1rFOuL4nvMlUSAj8NSqSnuNZTFhDJbO7w+2FjBYFOxPiN6mUNngWRlfPavH
0oel2MUQAs8TYRmoOzAD3efeb8bvGcc8aucOYev32O7XclSy1CxSZt76aurLXK+w
OwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 267475196892958720379904688566239502087
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1D2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-09 14:41:27 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-06-07 14:41:27 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'blog.mainstaytherapy.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28713582381815565979210877691451127648327378268822610799175427434920514875224701796883416388518699731307742992269887560000720588183229779947030006730340419957840089887412053693370166334602148699193975569191270520304801315593875738067944376268332966236515377025550893101681798246151522434872043367841850385256599699350353793372277604373613693969682036216442530330131525247854082910126540786637979032542642436930119442551687196096874195789201872243778583492812018113351046118408370279584438905091598366567547263490745555636092722790547513460744628615922511830556342583720698210699515699128593008475400548473033011998779
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							51ef7d2e5a426edfc8cb5f8444ce74ac77c6018c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b1dd325de8b73772d2ce5cce26fe4779e20108e9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (88 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/gts1d2'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/gsr2/GTS1D2.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'blog.mainstaytherapy.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.pki.goog/GTS1D2.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f2007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170bff548730000040300483046022100afc75a85bf2267c6d28ae08833ef4280d30d5daceb4d84dae1d22c28b0339ead022100b6bb6d4fa7f8037f7bf369b19ee65b7d70b017bc22708c8f1c4eb3412b6a4fe90077005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000170bff5489d0000040300483046022100faf72871490dab2997c90be56563202122c5b6e4d2545954084a2920de54f612022100aeec754ea7ea63196812acc86419a77d9832abaa1c5e7750f1cc43135c539a3a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		00a0b0040d9d42b9eb5605326f1892569ed5aa8fb86d2a0a6fddba56c36db0a234b85f07148967ec0beb4c3c83c9e8f55605ddbfdddec7ac20135ad1ca7fd1e0470e30065b696a74aa6add49dc6ef2a39b245a0bef6a95f26c8d8ebe8c0bb9c97500a602e46082f5908772f47872bf34bc7928145ee8e49f3994b49303b8177d325d90e7adec348a05db0879a0513fc5103c68d37d57e9f424cc4c2ecd2bc4f773d9abe6a3d3a18f50520107be38f0b73b581130a98b2c4115da414e3f7d6fac3c2baf887a364bc962ca531547e726ef44608b5662d8bea3cb457dac934f7e05c28437d13f0e524ee16ae5baa634e677b565da7cff00844f656042f387bdd85246