lucy.ai
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 08:af:3d:74:4d:c3:68:01:0d:44:f9:19:08:9c:6c:0c was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=lucy.ai
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 08:af:3d:74:4d:c3:68:01:0d:44:f9:19:08:9c:6c:0cSerial Number (int): 11543722358042173661367863377793936396
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: 2b:57:2a:ea:72:1d:33:38:10:7b:68:1a:40:20:49:66:eb:c8:db:ef
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): 04:02:b9:67:35:6e:47:c7:a5:47:4a:69:f4:c5:45:75:bd:a7:36:56
Fingerprint (sha256): 7b:ae:4e:3b:c2:e0:3d:f8:3a:46:89:52:41:26:25:86:6e:c2:5b:77:3a:7e:65:c0:68:06:68:19:68:31:67:8f
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/p7fV-e1QthoCRL Distribution Point: http://crls.pki.goog/gts1p5/i-CAWIP1u2c.crl
Check the revocation status for certificate lucy.ai
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lucy.ai
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lucy.ai
*.lucy.ai
*.lucy.ai
Other certificates including the domain name lucy.ai
(limited to 100 certificates)
Certificate
The complete raw certificate details for lucy.ai in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFXjCCBEagAwIBAgIQCK89dE3DaAENRPkZCJxsDDANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDA2MDIwMTAyMDJaFw0yNDA4MzEw MTAyMDFaMBIxEDAOBgNVBAMTB2x1Y3kuYWkwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDLuOX+KjTtj0OfDexs4VpUG0YtrBiz8+TUW+5O5I7bKBYXp3QQ SgURKvsWIGebVvgCY77NrU83kZhTI/75oQ3wtxoKJ7dKBhEDtVTBLNIElvQsN4od lNNLERqLpooy2CYX2w3uzOCS2T96peU0jj9DzU9xnsou49rlZ3nh+BiPcIst3t9Y eo4LwWyPuO2d9/D4/8BY8Z4Zpvl6zZO+HAqDlaCXBq1pn2W+HY1v+8lK/ZJgZsZY kGL5lLs3n97LACetFsw+1jkDissxk1pCDPvf2ZYkxgeFKcl93zmxuknTJJlXlDEL NDTRmOwMXW+E1kj+IaL+/kNmtcFBCR7XwhN1AgMBAAGjggJ6MIICdjAOBgNVHQ8B Af8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNV HQ4EFgQUK1cq6nIdMzgQe2gaQCBJZuvI2+8wHwYDVR0jBBgwFoAU1fyeDd8eyt0I l5duK8VfxSv17LgweAYIKwYBBQUHAQEEbDBqMDUGCCsGAQUFBzABhilodHRwOi8v b2NzcC5wa2kuZ29vZy9zL2d0czFwNS9wN2ZWLWUxUXRobzAxBggrBgEFBQcwAoYl aHR0cDovL3BraS5nb29nL3JlcG8vY2VydHMvZ3RzMXA1LmRlcjAdBgNVHREEFjAU ggdsdWN5LmFpggkqLmx1Y3kuYWkwIQYDVR0gBBowGDAIBgZngQwBAgEwDAYKKwYB BAHWeQIFAzA8BgNVHR8ENTAzMDGgL6AthitodHRwOi8vY3Jscy5wa2kuZ29vZy9n dHMxcDUvaS1DQVdJUDF1MmMuY3JsMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA GZgQcQnw1lIuMIDSnj9ku4NuKMz5D1KO7t/OSj8WtMoAAAGP1q6tQwAABAMARzBF AiEApCF0q0tBFpaL7Of17gpo0TmabLzAY3IQdSiHCByVoIsCIBGunew9NEhJUVDf GPUv6b9mJ+NikJjUT9gxgYY3NGgKAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7D UUhZRnEftZsAAAGP1q6s3AAABAMASDBGAiEAs9jv2tXp/ACJp1SoQh8DX6QAhS3H 3oA5qIs+jeUeJmQCIQD+W0o+s9zuzeY+LNzgAueNSWNpLq9mmfK3yggP0XmpBzAN BgkqhkiG9w0BAQsFAAOCAQEAVQpQgd+OlY9FPrQr+tOLALBtyG3GUNjsTNkVtLWH YsaRzLnD9MUXltEf+X/uxqIx1V6sr/pPfQdhiivFwUI7qkx2i7Zy1JokpCc/NRhQ VFoA27OtUkFSkbQToayve6/X9GKALIU7Y0Ih3NJnOOj3ifhiLISkHhU2IC0a4aIY H6jiv61dUVq2M3zV46O+NoBRRoP7JW0UnOxQcreplXi0W06LdU0DmfJksOa3RiUi zw64elbu3FwIo4iJfN7U88r8Ot1u3qaDzmh8S6dFCbX8P2lVn2DzRd3lhuLl10gX REKWl392Hx9/vAylcb2jQBnz6EngOhB9xl5yjOhylzgAbQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7jl/io07Y9Dnw3sbOFa VBtGLawYs/Pk1FvuTuSO2ygWF6d0EEoFESr7FiBnm1b4AmO+za1PN5GYUyP++aEN 8LcaCie3SgYRA7VUwSzSBJb0LDeKHZTTSxEai6aKMtgmF9sN7szgktk/eqXlNI4/ Q81PcZ7KLuPa5Wd54fgYj3CLLd7fWHqOC8Fsj7jtnffw+P/AWPGeGab5es2TvhwK g5WglwataZ9lvh2Nb/vJSv2SYGbGWJBi+ZS7N5/eywAnrRbMPtY5A4rLMZNaQgz7 39mWJMYHhSnJfd85sbpJ0ySZV5QxCzQ00ZjsDF1vhNZI/iGi/v5DZrXBQQke18IT dQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 11543722358042173661367863377793936396 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-02 01:02:02 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-31 01:02:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lucy.ai' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25717552712039452718082472476746651536554246330114508708093034005718949471345492757639456996632079251005499693334593981449457302085478142825971947522435653663116782085882822210590539919829342841577928953062998097817546240826466876021766810326129756381116308480322785344270727407897325415169225525650360725964913366577606968503627303103087202191277269495972118602695784331391178427161783857258955441958206880165300882666035550002576092627358303728461044904427423471942623648330685698087628455725883249098034453316979953026974321723515808921939413714866445136963569924703647283964199241846220754633505842294356170642293 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2b572aea721d3338107b681a40204966ebc8dbef . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/p7fV-e1Qtho' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lucy.ai' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lucy.ai' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/i-CAWIP1u2c.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018fd6aead430000040300473045022100a42174ab4b4116968bece7f5ee0a68d1399a6cbcc0637210752887081c95a08b022011ae9dec3d3448495150df18f52fe9bf6627e3629098d44fd83181863734680a007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018fd6aeacdc0000040300483046022100b3d8efdad5e9fc0089a754a8421f035fa400852dc7de8039a88b3e8de51e2664022100fe5b4a3eb3dceecde63e2cdce002e78d4963692eaf6699f2b7ca080fd179a907 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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