horizontal-mock-move.id-nonprod.ecg-id.net

Issued by GTS CA 1D4

About this certificate

This digital certificate with serial number 1a:62:62:74:c2:c3:88:3f:09:3b:35:0d:5b:b2:73:64 was issued on by Google Trust Services LLC.

With 17 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=horizontal-mock-move.id-nonprod.ecg-id.net

Google Trust Services LLC

Organization: Google Trust Services LLC
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 1a:62:62:74:c2:c3:88:3f:09:3b:35:0d:5b:b2:73:64
Serial Number (int): 35070769909428711166277206527859389284
Serial Number lenght: 125 bits, 16 octets

SubjectKeyId: da:85:62:d9:a1:39:ba:9d:8a:61:46:00:fe:bf:3f:af:a1:81:4f:a1
AuthorityKeyId: 25:e2:18:0e:b2:57:91:94:2a:e5:d4:5d:86:90:83:de:53:b3:b8:92

Fingerprint (sha1): 82:22:31:e8:d8:d0:17:61:63:d4:7a:34:bb:aa:16:4a:d6:72:72:e4
Fingerprint (sha256): 67:42:12:75:a6:80:e9:16:51:f9:e4:75:bd:6b:59:ec:ec:ce:4a:08:b8:53:44:61:c3:3e:3f:98:c5:6e:9b:24

Issuing Certificate URL: http://pki.goog/repo/certs/gts1d4.der

Revocation information

OCSP Server: http://ocsp.pki.goog/s/gts1d4/6HnjRmqmDDE
CRL Distribution Point: http://crls.pki.goog/gts1d4/O18aGqNGnqY.crl

Check the revocation status for certificate horizontal-mock-move.id-nonprod.ecg-id.net

17

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for horizontal-mock-move.id-nonprod.ecg-id.net

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

horizontal-mock-move.id-nonprod.ecg-id.net
iam-move.id-nonprod.ecg-id.net
vertical-mock-move.id-nonprod.ecg-id.net
accounts-move-maildev.id-nonprod.ecg-id.net
accounts-move.id-nonprod.ecg-id.net
horizontal-mock-ca.id-nonprod.ecg-id.net
iam-ca.id-nonprod.ecg-id.net
vertical-mock-ca.id-nonprod.ecg-id.net
accounts-ca-maildev.id-nonprod.ecg-id.net
accounts-ca.id-nonprod.ecg-id.net
cis-gdpr-ca.id-nonprod.ecg-id.net
horizontal-mock-mob.id-nonprod.ecg-id.net
iam-mob.id-nonprod.ecg-id.net
accounts-mob.id-nonprod.ecg-id.net
accounts-mob-maildev.id-nonprod.ecg-id.net
lip-mock-mob.id-nonprod.ecg-id.net
id-staging.mobile.de

Other certificates including the domain name ecg-id.net

(limited to 100 certificates)
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net
horizontal-mock-move.id-nonprod.ecg-id.net

Certificate

The complete raw certificate details for horizontal-mock-move.id-nonprod.ecg-id.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAngOqC4ox7K8EOq8l1CYj
sRo4PnfQhrbv5q62dYacrEjJLFMHbB/tOR6Swrcb19zDfhKBQy8DN52QNYpkrJ0P
sLcZQ6t3fcOAlYa6/e50HiahyUybhtIIB1fUhny4VoyQXNmcQGaJp0oXHUda6sBH
i7RGbqPuEzWfzgm/Cq7XL9E5jXOebmMMLNkzVe4Ma0K8OJVIBSGBZvynI1eeZHkr
xT8o46fvtzqSsTLxATpArmryGK7ImEpne+ZEy7jd1SlpSs1Zq3qR6pYa5d3u1PmO
ZbIlHDXKNisHTeKRlAXsFNfM4OxY9IrO3SYCAXVVyc+RtGgNFnktAIlw2d70+bdh
KQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 35070769909428711166277206527859389284
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1D4'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-04 23:15:42 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-03 00:10:34 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'horizontal-mock-move.id-nonprod.ecg-id.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 19947459088027118386421349267882102859507983572168550507445736964546142928528832263649437077361078620879606440466904238102463730328788242505465004831966850086957421375826152066745605911890433452271777190059691733018876236857080269877525712648798258279007200637532087787941443710857733912322520820020986356456018817986764815354064552007833327525636569274688901910401538606546348358197636303649572559652282894971937237355254191986419117258494968903743716595617505259257050725413836837029421883351552487573858212377674908135390416881758226190448801510140810707999464616007364276800924774102042799602817273799651920142633
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							da8562d9a139ba9d8a614600febf3fafa1814fa1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 25e2180eb25791942ae5d45d869083de53b3b892
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1d4/6HnjRmqmDDE'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1d4.der'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (641 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'horizontal-mock-move.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iam-move.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vertical-mock-move.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'accounts-move-maildev.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'accounts-move.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'horizontal-mock-ca.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iam-ca.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vertical-mock-ca.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'accounts-ca-maildev.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'accounts-ca.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cis-gdpr-ca.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'horizontal-mock-mob.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iam-mob.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'accounts-mob.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'accounts-mob-maildev.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lip-mock-mob.id-nonprod.ecg-id.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'id-staging.mobile.de'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1d4/O18aGqNGnqY.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018afd30b8b40000040300473045022100e1f9532b8e48bcc7a4d2938824957268b4c637453e26f566b2325611c74d882d02207ab28ae803c764bc2fce8256b34f29601740032a20140af4d62cd00c785d80eb007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018afd30b88f00000403004630440220628f3483bc4178c983cba9d968f4696587dfa7d4827afa1b6cd3eea33e8f22a4022018797a48f8262ca87197150bf2492b5b449bc0823815aaca182cdcaf1a432580
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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