sailing.boston

Issued by GTS CA 1P5

About this certificate

This digital certificate with serial number 11:ca:af:20:0a:e2:a0:ea:0e:2c:f6:28:8e:d5:5b:6a was issued on by Google Trust Services LLC.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=sailing.boston

Google Trust Services LLC

Organization: Google Trust Services LLC
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 11:ca:af:20:0a:e2:a0:ea:0e:2c:f6:28:8e:d5:5b:6a
Serial Number (int): 23649271854118271748754065187212188522
Serial Number lenght: 125 bits, 16 octets

SubjectKeyId: d7:64:34:47:2c:35:85:98:39:d6:44:cd:3e:86:41:26:21:26:f6:4b
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8

Fingerprint (sha1): 11:a8:14:11:d7:0e:ee:58:a9:63:a5:cd:ee:31:2d:3b:f7:d0:ed:a0
Fingerprint (sha256): 5a:46:82:a4:4a:d3:22:b1:16:d5:28:93:32:fe:af:6a:4e:3f:8e:b9:d7:56:a9:49:23:5a:0b:b2:01:9b:e1:5c

Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der

Revocation information

OCSP Server: http://ocsp.pki.goog/s/gts1p5/cZM4xFpNI0w
CRL Distribution Point: http://crls.pki.goog/gts1p5/8sxnX1xSX28.crl

Check the revocation status for certificate sailing.boston

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for sailing.boston

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

sailing.boston
*.sailing.boston

Other certificates including the domain name sailing.boston

(limited to 100 certificates)

Certificate

The complete raw certificate details for sailing.boston in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFczCCBFugAwIBAgIQEcqvIArioOoOLPYojtVbajANBgkqhkiG9w0BAQsFADBG
MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM
QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yMzEwMTYwODU3NTFaFw0yNDAxMTQw
ODU3NTBaMBkxFzAVBgNVBAMTDnNhaWxpbmcuYm9zdG9uMIIBIjANBgkqhkiG9w0B
AQEFAAOCAQ8AMIIBCgKCAQEA4n6B8RTW6iow8B1rC/ZI+TBppO6XZfXeqJSqnrc1
6c1QlJ+TMl5I3vyNxgnf/W/UAU/IM7UDtLRJAPdZSXY+7PBcus1WfbUUZTWJAY3Z
tihv4Q5ixOtVKL2sj13vvu1qd1G1I1FkFuum8PDzZOA7GyAKO+abrhAl9J61yXM4
dNgqHS91vLQWpk1N1bFsaSKZ0Udm8V8VvNceeI8ETb0s9M5EjvIWYi/vMig+AHO9
+zGWM5Rvs27NwUJv3C7nFfX86k2GtDeGBrUofidabRBYdIsT09/2HieIQvppinre
pzhjaDkTpyOvDFkxLN8g2YL10mCQhAlfaiEnjwt7UEakXQIDAQABo4ICiDCCAoQw
DgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQC
MAAwHQYDVR0OBBYEFNdkNEcsNYWYOdZEzT6GQSYhJvZLMB8GA1UdIwQYMBaAFNX8
ng3fHsrdCJeXbivFX8Ur9ey4MHgGCCsGAQUFBwEBBGwwajA1BggrBgEFBQcwAYYp
aHR0cDovL29jc3AucGtpLmdvb2cvcy9ndHMxcDUvY1pNNHhGcE5JMHcwMQYIKwYB
BQUHMAKGJWh0dHA6Ly9wa2kuZ29vZy9yZXBvL2NlcnRzL2d0czFwNS5kZXIwKwYD
VR0RBCQwIoIOc2FpbGluZy5ib3N0b26CECouc2FpbGluZy5ib3N0b24wIQYDVR0g
BBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGgL6Athito
dHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMxcDUvOHN4blgxeFNYMjguY3JsMIIBBQYK
KwYBBAHWeQIEAgSB9gSB8wDxAHYA2ra/az+1tiKfm8K7XGvocJFxbLtRhIU0vaQ9
MEjX+6sAAAGLN+uj2QAABAMARzBFAiAqVdaxqSGccH5qdfl3Fdn614qnu6cwZOpC
yrcFGCYv8gIhAIgKD6PfhesWKjZlWMp+cMgFyVMD8n6TwXMFZmRAxlWvAHcA7s3Q
ZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEftZsAAAGLN+uiowAABAMASDBGAiEA
hy33aehA3YRyXmFiXqevMq4ETR8uCmOEKrYCwXC2QsYCIQCydR601Ob9bGDDi731
tLCVOaykl3jaD0Vl3N+8LDv1NDANBgkqhkiG9w0BAQsFAAOCAQEAdc43/68qQRwU
5trPTJasuZy4migZGZSmFqNSY8EoHXBx9A9PBLIw2AmIE3EtmshOdKbDi15xeyM5
BoIGPClLCaZsKPVs785n3JFYUBfh4JNkZyELiK+Hwyrhz6MqKWDsC3uPekeUVf8C
kPoVZ0dnAD5+aHUJ45gpq5EXl5nN2NTUXJ3XfglYX5rmhEW9v62rWnSyhZVfHcwE
6b/PIOyR/dPIj62ZvF2lHprnSQ7nrmHmp85N2qa64xvmuq6KkEL+NXSuZX6UVO8X
YF+Gu0KFI4fAKznwayWpqPEd7g/CAw0LSLdHQ1TEulbPjyOFESAtNH32eLw8AfwL
31NWBgXYwQ==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4n6B8RTW6iow8B1rC/ZI
+TBppO6XZfXeqJSqnrc16c1QlJ+TMl5I3vyNxgnf/W/UAU/IM7UDtLRJAPdZSXY+
7PBcus1WfbUUZTWJAY3Ztihv4Q5ixOtVKL2sj13vvu1qd1G1I1FkFuum8PDzZOA7
GyAKO+abrhAl9J61yXM4dNgqHS91vLQWpk1N1bFsaSKZ0Udm8V8VvNceeI8ETb0s
9M5EjvIWYi/vMig+AHO9+zGWM5Rvs27NwUJv3C7nFfX86k2GtDeGBrUofidabRBY
dIsT09/2HieIQvppinrepzhjaDkTpyOvDFkxLN8g2YL10mCQhAlfaiEnjwt7UEak
XQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 23649271854118271748754065187212188522
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-16 08:57:51 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-14 08:57:50 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'sailing.boston'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28592240137478129678181575522657134000248727355260979761943182156119322784485807089294956651161025560747943524892586581167606751123179855143816346436195262526886038533486733150161814368881144557895863356293099856627515692900300892297358089952876412146310740248812133327142753934224413023125914140169399638168120634014949340937950891165984479966087666795881647999283591885893790668304962287851650474587146206422981281544819801838310476154053701917239091190745992960499434242613078645913989522850760113257434349444164064092579804277106847685907312188846785612578205547581305226160680990788476041525065153726625220043869
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d76434472c35859839d644cd3e8641262126f64b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/cZM4xFpNI0w'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sailing.boston'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.sailing.boston'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/8sxnX1xSX28.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b37eba3d9000004030047304502202a55d6b1a9219c707e6a75f97715d9fad78aa7bba73064ea42cab70518262ff2022100880a0fa3df85eb162a366558ca7e70c805c95303f27e93c17305666440c655af007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018b37eba2a30000040300483046022100872df769e840dd84725e61625ea7af32ae044d1f2e0a63842ab602c170b642c6022100b2751eb4d4e6fd6c60c38bbdf5b4b09539aca49778da0f4565dcdfbc2c3bf534
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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