piinsurancegroup.com
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 62:ad:b8:92:17:b0:cb:25:11:1e:1b:60:6d:98:96:46 was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=piinsurancegroup.com
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 62:ad:b8:92:17:b0:cb:25:11:1e:1b:60:6d:98:96:46Serial Number (int): 131166354481458965208562280753647883846
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: 7c:9b:ac:ef:37:79:a7:6e:d8:b4:32:0a:de:e1:65:fc:52:f6:c1:54
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): c9:6f:db:f5:30:85:d0:4f:e3:22:1a:c6:b0:99:87:0c:5e:4b:b5:df
Fingerprint (sha256): 2a:df:16:be:03:58:c1:9c:67:48:cf:5b:a1:ff:b9:22:07:c0:66:1b:53:6f:2d:a7:ec:5a:bd:c9:cc:40:3b:73
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/OXOnbTX8fcoCRL Distribution Point: http://crls.pki.goog/gts1p5/aFc1AiTzyJc.crl
Check the revocation status for certificate piinsurancegroup.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for piinsurancegroup.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
piinsurancegroup.com
*.piinsurancegroup.com
*.piinsurancegroup.com
Other certificates including the domain name piinsurancegroup.com
(limited to 100 certificates)
www.piinsurancegroup.com
www.piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
www.piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
prestigetrucking.com
piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
www.piinsurancegroup.com
www.piinsurancegroup.com
*.piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
www.piinsurancegroup.com
www.piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
www.piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
prestigetrucking.com
piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
www.piinsurancegroup.com
www.piinsurancegroup.com
*.piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
piinsurancegroup.com
www.piinsurancegroup.com
Certificate
The complete raw certificate details for piinsurancegroup.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFhDCCBGygAwIBAgIQYq24khewyyURHhtgbZiWRjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDAzMDYxMTE2MjZaFw0yNDA2MDQx MTE2MjVaMB8xHTAbBgNVBAMTFHBpaW5zdXJhbmNlZ3JvdXAuY29tMIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOxLZig5aJ+BS1KdaUU+MRzNijowU2BE D/he62GJaCAuNvp0ExaTDQPLABy3t3+1ZcAdvq9xyENtb24fsHnui+n45shT/KnD HkRQIoOY7+bYVxF1Nn7ah6bR2xnaR2CPacBjFvYYXLbbr4TjiBQIRoRGiVh0R2sO 2wDuUJMiZ0/pZyp6tr2+hod9cyZzVQhxF7xbd6V+/OC/IqgAq2DSfOZjmstK0ZlE nmd58Qa/Lo9oUqmAPszlMgizpcwV3DmgO49TkZ1zPMuF3ojcowePmGIKd4lNrx7I O049zpO/QiDPO++/Yw7BZi2S4st4bzR3nHRTEi1AknH+ElDA42zRrwIDAQABo4IC kzCCAo8wDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1Ud EwEB/wQCMAAwHQYDVR0OBBYEFHybrO83eadu2LQyCt7hZfxS9sFUMB8GA1UdIwQY MBaAFNX8ng3fHsrdCJeXbivFX8Ur9ey4MHgGCCsGAQUFBwEBBGwwajA1BggrBgEF BQcwAYYpaHR0cDovL29jc3AucGtpLmdvb2cvcy9ndHMxcDUvT1hPbmJUWDhmY28w MQYIKwYBBQUHMAKGJWh0dHA6Ly9wa2kuZ29vZy9yZXBvL2NlcnRzL2d0czFwNS5k ZXIwNwYDVR0RBDAwLoIUcGlpbnN1cmFuY2Vncm91cC5jb22CFioucGlpbnN1cmFu Y2Vncm91cC5jb20wIQYDVR0gBBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzA8 BgNVHR8ENTAzMDGgL6AthitodHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMxcDUvYUZj MUFpVHp5SmMuY3JsMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcAdv+IPwq2+5VR wmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGOE7GMnwAABAMASDBGAiEA5z572wsf 12NW9NEGJ51emqweAGBg0+pT5peyHQwAADgCIQDYSWgyo6c4aZm/JT/r4dLvct9t JF1rpPqGpiVmkPYMoAB1AEiw42vapkc0D+VqAvqdMOscUgHLVt0sgdm7v6s52IRz AAABjhOxjI4AAAQDAEYwRAIgdxI+xDpjEciCSiYGltAzQA6nQUcwB4rllfwuvrfc Bl8CIE46NU6UEfiN+v1nBwInqEBvpdwx6BQuOjypVJEaq6Q4MA0GCSqGSIb3DQEB CwUAA4IBAQBvBfJlWVasfke3GeFXajyDI/9IcHyqt+eFRouijvT38udMKv2AE88g efutVWx7Xyh/Xnp/Ga9L0DB84koU8OZXrbsg5eYihxzmBj69uSjhwaBVX/UcPv5j lvkEBB5RcFMP8oRVhhUzlGNVHp7oHr+t8VgPSNA4lytFNUlDv0chfHkFaMwPSpyO W9Vi44tIfepcos8fi44nwSH1uQIg4ndkPXsvWIil1CO6Lj7xJtEnyDvwA1hWhXB1 zij5QVaXK7ZlmRCmsGekLxeaFdcjoX4rv8zYmKNcudsJQdvmDefENPQnOd+Neh23 UkdYn62Ri/7iNTYSJwB7ltZJTSK0G2iU -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqOxLZig5aJ+BS1KdaUU+ MRzNijowU2BED/he62GJaCAuNvp0ExaTDQPLABy3t3+1ZcAdvq9xyENtb24fsHnu i+n45shT/KnDHkRQIoOY7+bYVxF1Nn7ah6bR2xnaR2CPacBjFvYYXLbbr4TjiBQI RoRGiVh0R2sO2wDuUJMiZ0/pZyp6tr2+hod9cyZzVQhxF7xbd6V+/OC/IqgAq2DS fOZjmstK0ZlEnmd58Qa/Lo9oUqmAPszlMgizpcwV3DmgO49TkZ1zPMuF3ojcoweP mGIKd4lNrx7IO049zpO/QiDPO++/Yw7BZi2S4st4bzR3nHRTEi1AknH+ElDA42zR rwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 131166354481458965208562280753647883846 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-06 11:16:26 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-04 11:16:25 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'piinsurancegroup.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21324556408633453384309072975616199888324905901211214248181972967096050410430792727819737074657222083487796535323927890649533669435978925549972032414254691504597963687658918044063677464542628304971977728109569043702052715847718299573597880067040116347603074043767873950672668285690184388436379759131387381516089234787862328120947658415173272198648956058381095214561735576024893673404694015460932034606023011608947778544922602384071224124367995296773932243785559184110282985042376818867621653567165216588015154033205438549638538263187662662656981891862508334200714741543002772537728294282272088456921146806838840054191 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7c9bacef3779a76ed8b4320adee165fc52f6c154 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/OXOnbTX8fco' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (48 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'piinsurancegroup.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.piinsurancegroup.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/aFc1AiTzyJc.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e13b18c9f0000040300483046022100e73e7bdb0b1fd76356f4d106279d5e9aac1e006060d3ea53e697b21d0c000038022100d8496832a3a7386999bf253febe1d2ef72df6d245d6ba4fa86a6256690f60ca000750048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e13b18c8e0000040300463044022077123ec43a6311c8824a260696d033400ea7414730078ae595fc2ebeb7dc065f02204e3a354e9411f88dfafd67070227a8406fa5dc31e8142e3a3ca954911aaba438 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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