pathwaysts.ca

Issued by GTS CA 1P5

About this certificate

This digital certificate with serial number 4a:d0:bf:a8:49:73:3a:2d:0e:c7:e0:7b:04:1f:d6:b5 was issued on by Google Trust Services LLC.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=pathwaysts.ca

Google Trust Services LLC

Organization: Google Trust Services LLC
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 4a:d0:bf:a8:49:73:3a:2d:0e:c7:e0:7b:04:1f:d6:b5
Serial Number (int): 99446756707956325521714184121806214837
Serial Number lenght: 127 bits, 16 octets

SubjectKeyId: 09:fe:3c:f0:fa:c1:d2:cd:9d:7f:9b:48:ec:a4:74:2e:5a:ce:c1:7f
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8

Fingerprint (sha1): 76:86:7f:04:61:cc:e8:e9:f4:a0:28:ff:9b:85:8b:b8:26:49:28:36
Fingerprint (sha256): 15:e6:af:9c:c4:db:8a:bd:37:44:69:46:f0:ef:59:6f:39:ee:0c:29:0f:bd:d8:f6:52:b5:a0:9c:8c:6c:a0:07

Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der

Revocation information

OCSP Server: http://ocsp.pki.goog/s/gts1p5/-rp1sXMwb9I
CRL Distribution Point: http://crls.pki.goog/gts1p5/VyUis99MWjg.crl

Check the revocation status for certificate pathwaysts.ca

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for pathwaysts.ca

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

pathwaysts.ca
*.pathwaysts.ca

Other certificates including the domain name pathwaysts.ca

(limited to 100 certificates)
pathwaysts.ca
pathwaysts.ca
pathwaysts.ca
pathwaysts.ca
pathwaysts.ca
sni.cloudflaressl.com
pathwaysts.ca
pathwaysts.ca
sni.cloudflaressl.com
pathwaysts.ca
pathwaysts.ca
pathwaysts.ca
pathwaysts.ca

Certificate

The complete raw certificate details for pathwaysts.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoDYN6/MMs6JSe8E3Bz5m
GeaPDuPIDTgrcD/MjnlPINzegs5QrdIVvnHuJHyYAKFPkKN7my3zarHZQduHC+37
A0Bx9SddUcIvs5KznNWjzUdoih4LG1tDcAZWw7zTjAGL4ls1nunWLtszte0ypqiv
+ik0v4aiZShT1utc3W4Hu4mQU7gazR2aVmuJCejygEXvOqD/ut6NqX0Auj7G1Y8r
WDCKXZPkSz+J78N/1v0+uSvMjN2t4JRqqW+Vzj6rPWFE6WtoZcGObW9kTV0W1/Kz
ODrPg5McAIjzqp694e7LqYtCFnu/cf80paRFYmF02i8qDLJPxuneQRwFVgOc92bl
iQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 99446756707956325521714184121806214837
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-05 10:24:20 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-03 10:24:19 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pathwaysts.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20224784003566070672752446636619855848081815546544328230465752931881880974417943154340600132257879056702470797881272431062079172727545365706319196251895964014948354327459376796358240138265117661039978978408130944946164184847142571452308282323592971186817648677940899043181566867784305429338771084531147558231660805199612296598597924618587488123439720837785690986650355342609591935302607857749375189457697713459574782518649344262850688102147447117560760599069668270620240909136950201188792477743716071616693923475779331484721768187635410618195466946695617669707278413995404885698219373788090063169792852853768879269257
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							09fe3cf0fac1d2cd9d7f9b48eca4742e5acec17f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/-rp1sXMwb9I'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pathwaysts.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.pathwaysts.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/VyUis99MWjg.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018f487f6a42000004030046304402203118900695bde00fee7739ce404f5e7826b7055f4b2dab5a0c529b497b97721502201ac4af65f84cb67ad134216eb3484c4bda6e6e6f77fec5e91e7764a12d07d2dd007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018f487f6a8c000004030047304502210098f1ba15cdd18011ef12999ff1c5dd40cbb634cab5f1eed87d9024d82f9a6a3902201bcc56b579d5615fced0e81128c7b42a641f2c419e05a8f5820f84ea2595a3c9
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		006a20b65c81f51b11890e50640240cbd310cf69c38bf89accb42237314ff4f0b5845cb808da3224d5ce8fc9351f97e217a953ad50405b7d31224e9111e7f28ea00cdfac1c29c21ddd08a12e683eb6c4bf9fa3733f5ea0dc94303017f19d3057ed864f14b30786a52d21cc599fc4719d875e91450462440b9a15adc791dfa9b426b30655ac90d468671cd6034d711152666614294a21dc3e6c576583dd78bc76581986dbedcae375aa6e44509312ea75db6c578993010cdeb88a0d2c6327ea291981c06e69cbed2ffb535b292a0c9fc75b54b66b5cd5d85d52cabc4b24525aa16caf798cad7ed1ff4d1f2754d5f7c20610a889f476755688b62fe57b23eeca317b