lucy.ai

Issued by GTS CA 1P5

About this certificate

This digital certificate with serial number 08:af:3d:74:4d:c3:68:01:0d:44:f9:19:08:9c:6c:0c was issued on by Google Trust Services LLC.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=lucy.ai

Google Trust Services LLC

Organization: Google Trust Services LLC
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 08:af:3d:74:4d:c3:68:01:0d:44:f9:19:08:9c:6c:0c
Serial Number (int): 11543722358042173661367863377793936396
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 2b:57:2a:ea:72:1d:33:38:10:7b:68:1a:40:20:49:66:eb:c8:db:ef
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8

Fingerprint (sha1): 04:02:b9:67:35:6e:47:c7:a5:47:4a:69:f4:c5:45:75:bd:a7:36:56
Fingerprint (sha256): 7b:ae:4e:3b:c2:e0:3d:f8:3a:46:89:52:41:26:25:86:6e:c2:5b:77:3a:7e:65:c0:68:06:68:19:68:31:67:8f

Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der

Revocation information

OCSP Server: http://ocsp.pki.goog/s/gts1p5/p7fV-e1Qtho
CRL Distribution Point: http://crls.pki.goog/gts1p5/i-CAWIP1u2c.crl

Check the revocation status for certificate lucy.ai

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for lucy.ai

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

lucy.ai
*.lucy.ai

Other certificates including the domain name lucy.ai

(limited to 100 certificates)
lucy.ai
www.lucy.ai
www.lucy.ai
*.lucy.ai
*.lucy.ai
lucy.ai
sni.cloudflaressl.com
sni.cloudflaressl.com
www.lucy.ai
www.lucy.ai
lucy.ai
5g.ai
*.lucy.ai
*.lucy.ai
lucy.ai.trouble-free.net
sni.cloudflaressl.com
sni.cloudflaressl.com
lucy.ai
2045.ai
sni.cloudflaressl.com
*.lucy.ai

Certificate

The complete raw certificate details for lucy.ai in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFXjCCBEagAwIBAgIQCK89dE3DaAENRPkZCJxsDDANBgkqhkiG9w0BAQsFADBG
MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM
QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDA2MDIwMTAyMDJaFw0yNDA4MzEw
MTAyMDFaMBIxEDAOBgNVBAMTB2x1Y3kuYWkwggEiMA0GCSqGSIb3DQEBAQUAA4IB
DwAwggEKAoIBAQDLuOX+KjTtj0OfDexs4VpUG0YtrBiz8+TUW+5O5I7bKBYXp3QQ
SgURKvsWIGebVvgCY77NrU83kZhTI/75oQ3wtxoKJ7dKBhEDtVTBLNIElvQsN4od
lNNLERqLpooy2CYX2w3uzOCS2T96peU0jj9DzU9xnsou49rlZ3nh+BiPcIst3t9Y
eo4LwWyPuO2d9/D4/8BY8Z4Zpvl6zZO+HAqDlaCXBq1pn2W+HY1v+8lK/ZJgZsZY
kGL5lLs3n97LACetFsw+1jkDissxk1pCDPvf2ZYkxgeFKcl93zmxuknTJJlXlDEL
NDTRmOwMXW+E1kj+IaL+/kNmtcFBCR7XwhN1AgMBAAGjggJ6MIICdjAOBgNVHQ8B
Af8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAdBgNV
HQ4EFgQUK1cq6nIdMzgQe2gaQCBJZuvI2+8wHwYDVR0jBBgwFoAU1fyeDd8eyt0I
l5duK8VfxSv17LgweAYIKwYBBQUHAQEEbDBqMDUGCCsGAQUFBzABhilodHRwOi8v
b2NzcC5wa2kuZ29vZy9zL2d0czFwNS9wN2ZWLWUxUXRobzAxBggrBgEFBQcwAoYl
aHR0cDovL3BraS5nb29nL3JlcG8vY2VydHMvZ3RzMXA1LmRlcjAdBgNVHREEFjAU
ggdsdWN5LmFpggkqLmx1Y3kuYWkwIQYDVR0gBBowGDAIBgZngQwBAgEwDAYKKwYB
BAHWeQIFAzA8BgNVHR8ENTAzMDGgL6AthitodHRwOi8vY3Jscy5wa2kuZ29vZy9n
dHMxcDUvaS1DQVdJUDF1MmMuY3JsMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHYA
GZgQcQnw1lIuMIDSnj9ku4NuKMz5D1KO7t/OSj8WtMoAAAGP1q6tQwAABAMARzBF
AiEApCF0q0tBFpaL7Of17gpo0TmabLzAY3IQdSiHCByVoIsCIBGunew9NEhJUVDf
GPUv6b9mJ+NikJjUT9gxgYY3NGgKAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7D
UUhZRnEftZsAAAGP1q6s3AAABAMASDBGAiEAs9jv2tXp/ACJp1SoQh8DX6QAhS3H
3oA5qIs+jeUeJmQCIQD+W0o+s9zuzeY+LNzgAueNSWNpLq9mmfK3yggP0XmpBzAN
BgkqhkiG9w0BAQsFAAOCAQEAVQpQgd+OlY9FPrQr+tOLALBtyG3GUNjsTNkVtLWH
YsaRzLnD9MUXltEf+X/uxqIx1V6sr/pPfQdhiivFwUI7qkx2i7Zy1JokpCc/NRhQ
VFoA27OtUkFSkbQToayve6/X9GKALIU7Y0Ih3NJnOOj3ifhiLISkHhU2IC0a4aIY
H6jiv61dUVq2M3zV46O+NoBRRoP7JW0UnOxQcreplXi0W06LdU0DmfJksOa3RiUi
zw64elbu3FwIo4iJfN7U88r8Ot1u3qaDzmh8S6dFCbX8P2lVn2DzRd3lhuLl10gX
REKWl392Hx9/vAylcb2jQBnz6EngOhB9xl5yjOhylzgAbQ==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy7jl/io07Y9Dnw3sbOFa
VBtGLawYs/Pk1FvuTuSO2ygWF6d0EEoFESr7FiBnm1b4AmO+za1PN5GYUyP++aEN
8LcaCie3SgYRA7VUwSzSBJb0LDeKHZTTSxEai6aKMtgmF9sN7szgktk/eqXlNI4/
Q81PcZ7KLuPa5Wd54fgYj3CLLd7fWHqOC8Fsj7jtnffw+P/AWPGeGab5es2TvhwK
g5WglwataZ9lvh2Nb/vJSv2SYGbGWJBi+ZS7N5/eywAnrRbMPtY5A4rLMZNaQgz7
39mWJMYHhSnJfd85sbpJ0ySZV5QxCzQ00ZjsDF1vhNZI/iGi/v5DZrXBQQke18IT
dQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 11543722358042173661367863377793936396
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-02 01:02:02 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-31 01:02:01 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lucy.ai'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25717552712039452718082472476746651536554246330114508708093034005718949471345492757639456996632079251005499693334593981449457302085478142825971947522435653663116782085882822210590539919829342841577928953062998097817546240826466876021766810326129756381116308480322785344270727407897325415169225525650360725964913366577606968503627303103087202191277269495972118602695784331391178427161783857258955441958206880165300882666035550002576092627358303728461044904427423471942623648330685698087628455725883249098034453316979953026974321723515808921939413714866445136963569924703647283964199241846220754633505842294356170642293
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							2b572aea721d3338107b681a40204966ebc8dbef
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/p7fV-e1Qtho'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lucy.ai'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.lucy.ai'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/i-CAWIP1u2c.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f10076001998107109f0d6522e3080d29e3f64bb836e28ccf90f528eeedfce4a3f16b4ca0000018fd6aead430000040300473045022100a42174ab4b4116968bece7f5ee0a68d1399a6cbcc0637210752887081c95a08b022011ae9dec3d3448495150df18f52fe9bf6627e3629098d44fd83181863734680a007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018fd6aeacdc0000040300483046022100b3d8efdad5e9fc0089a754a8421f035fa400852dc7de8039a88b3e8de51e2664022100fe5b4a3eb3dceecde63e2cdce002e78d4963692eaf6699f2b7ca080fd179a907
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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