powerdmarc.com
Issued by GTS CA 2A1
About this certificate
This digital certificate with serial number d2:9b:18:9f:c5:2c:70:fa:0d:5f:3d:c0:a4:0d:9d:7c was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=powerdmarc.com
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): d2:9b:18:9f:c5:2c:70:fa:0d:5f:3d:c0:a4:0d:9d:7cSerial Number (int): 279943184564035832188905240490417167740
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: a2:80:ba:f1:a1:e0:71:74:6b:e0:69:15:92:12:e3:1b:b8:36:5a:2d
AuthorityKeyId: 93:18:63:91:17:76:9a:5a:e6:3b:7f:2e:33:83:84:86:6b:1e:d4:f9
Fingerprint (sha1): 96:66:ee:f1:5c:c3:a9:8a:fa:cf:ee:5d:76:63:42:eb:9c:44:d8:8f
Fingerprint (sha256): 3e:32:36:4e:1a:ab:58:c5:51:d9:3d:d4:9f:22:fc:12:fe:81:b3:68:c8:98:cb:6f:1f:64:1b:7f:8c:02:be:38
Issuing Certificate URL: http://pki.goog/repo/certs/gts2a1.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts2a1/E6bl7ecgjQwCRL Distribution Point: http://crls.pki.goog/gts2a1/TueoHxVY3Ks.crl
Check the revocation status for certificate powerdmarc.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for powerdmarc.com
Public Key Algorithm
ECDSA
Key Size
256
Signature Algorithm
ECDSA with SHA256
Key Usage
Digital Signature
Extended Key Usages
Server Authentication
Extensions
11 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
powerdmarc.com
*.powerdmarc.com
*.powerdmarc.com
Other certificates including the domain name powerdmarc.com
(limited to 100 certificates)
powerdmarc.com
app.powerdmarc.com
MENAINFOSEC, Inc
MENAINFOSEC, Inc
sni.cloudflaressl.com
systemstatus.rrc.ca
support.powerdmarc.com
systemstatus.rrc.ca
systemstatus.rrc.ca
sni.cloudflaressl.com
status.powerdmarc.com
powerdmarc.com
status.powerdmarc.com
subscription.ronati.com
billing.docnowmd.com
abonnement.amisgest.ca
billing.protected.site
sni.cloudflaressl.com
payments.nicenetworkingagency.com
subscription.247bookingapp.com
systemstatus.rrc.ca
account.rmgprotection.com
status.powerdmarc.com
powerdmarc.com
sni.cloudflaressl.com
support.powerdmarc.com
MENAINFOSEC, Inc
app.powerdmarc.com
support.powerdmarc.com
MENAINFOSEC, Inc
dev.powerdmarc.com
status.powerdmarc.com
dev.powerdmarc.com
billing.liftoffagent.com
powerdmarc.com
support.powerdmarc.com
powerdmarc.com
auth.powerdmarc.com
payments.nicenetworkingagency.com
app.powerdmarc.com
MENAINFOSEC, Inc
MENAINFOSEC, Inc
sni.cloudflaressl.com
systemstatus.rrc.ca
support.powerdmarc.com
systemstatus.rrc.ca
systemstatus.rrc.ca
sni.cloudflaressl.com
status.powerdmarc.com
powerdmarc.com
status.powerdmarc.com
subscription.ronati.com
billing.docnowmd.com
abonnement.amisgest.ca
billing.protected.site
sni.cloudflaressl.com
payments.nicenetworkingagency.com
subscription.247bookingapp.com
systemstatus.rrc.ca
account.rmgprotection.com
status.powerdmarc.com
powerdmarc.com
sni.cloudflaressl.com
support.powerdmarc.com
MENAINFOSEC, Inc
app.powerdmarc.com
support.powerdmarc.com
MENAINFOSEC, Inc
dev.powerdmarc.com
status.powerdmarc.com
dev.powerdmarc.com
billing.liftoffagent.com
powerdmarc.com
support.powerdmarc.com
powerdmarc.com
auth.powerdmarc.com
payments.nicenetworkingagency.com
Certificate
The complete raw certificate details for powerdmarc.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIDBzCCAq2gAwIBAgIRANKbGJ/FLHD6DV89wKQNnXwwCgYIKoZIzj0EAwIwRjEL MAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBMTEMx EzARBgNVBAMTCkdUUyBDQSAyQTEwHhcNMjMxMTI5MDQxMDIwWhcNMjQwMTEzMDQx MDE5WjAZMRcwFQYDVQQDEw5wb3dlcmRtYXJjLmNvbTBZMBMGByqGSM49AgEGCCqG SM49AwEHA0IABHuULBN2OK366WQ6CfexfARKD/c5I3tI6gI7XNhzLoPDsuoNWJav uE+JJN4ZjXIOQN0A+6CMt6iMhPMvQHrRWk6jggGnMIIBozAOBgNVHQ8BAf8EBAMC B4AwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU ooC68aHgcXRr4GkVkhLjG7g2Wi0wHwYDVR0jBBgwFoAUkxhjkRd2mlrmO38uM4OE hmse1PkweAYIKwYBBQUHAQEEbDBqMDUGCCsGAQUFBzABhilodHRwOi8vb2NzcC5w a2kuZ29vZy9zL2d0czJhMS9FNmJsN2VjZ2pRdzAxBggrBgEFBQcwAoYlaHR0cDov L3BraS5nb29nL3JlcG8vY2VydHMvZ3RzMmExLmRlcjArBgNVHREEJDAigg5wb3dl cmRtYXJjLmNvbYIQKi5wb3dlcmRtYXJjLmNvbTAiBgNVHSAEGzAZMAgGBmeBDAEC ATANBgsrBgEEAdZ5AgUDATA8BgNVHR8ENTAzMDGgL6AthitodHRwOi8vY3Jscy5w a2kuZ29vZy9ndHMyYTEvVHVlb0h4VlkzS3MuY3JsMBAGCisGAQQB1nkCARYEAgUA MBMGCisGAQQB1nkCBAMBAf8EAgUAMAoGCCqGSM49BAMCA0gAMEUCIQC43hYcGa9L OOSBJB8fLQo3K3lSL7BwwFrP1Vcjs4tgrAIgaZcDca9LJL7/GPV39oF826u0++/+ Lsp5O9HnP9RdE2Q= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MFkwEwYHKoZIzj0CAQYIKoZIzj0DAQcDQgAEe5QsE3Y4rfrpZDoJ97F8BEoP9zkj e0jqAjtc2HMug8Oy6g1Ylq+4T4kk3hmNcg5A3QD7oIy3qIyE8y9AetFaTg== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 279943184564035832188905240490417167740 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.4.3.2 (ecdsaWithSHA256) . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 2A1' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-29 04:10:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-13 04:10:19 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'powerdmarc.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.2.1 (ecPublicKey) . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.3.1.7 (prime256v1) . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (520 bits) 00047b942c137638adfae9643a09f7b17c044a0ff739237b48ea023b5cd8732e83c3b2ea0d5896afb84f8924de198d720e40dd00fba08cb7a88c84f32f407ad15a4e . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (1 bits) 0780 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a280baf1a1e071746be069159212e31bb8365a2d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 9318639117769a5ae63b7f2e338384866b1ed4f9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts2a1/E6bl7ecgjQw' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts2a1.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'powerdmarc.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.powerdmarc.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3.1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts2a1/TueoHxVY3Ks.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.1.22 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.4.3.2 (ecdsaWithSHA256) . . . . [c:0|t:3|false] BIT STRING (568 bits) . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:2|false] INTEGER 83617956783704871848051037366242390547347591766808459763232003540530773057708 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 47759666778198083873800949567520260236302808330435143339402995446681245127524