alanmallory.com
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 37:a4:b6:99:8e:77:cb:b2:0e:c7:c5:50:6f:74:dd:6a was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=alanmallory.com
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 37:a4:b6:99:8e:77:cb:b2:0e:c7:c5:50:6f:74:dd:6aSerial Number (int): 73962780017518509519395845000511413610
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 43:da:38:62:48:75:ce:b6:fa:9d:2a:2b:df:31:96:be:6a:ba:9a:2d
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): 30:8b:8b:63:3c:46:29:d6:69:cc:17:0e:18:a2:bf:5a:69:56:c6:09
Fingerprint (sha256): 81:ff:42:5a:ee:0b:d6:dd:d0:59:01:a2:7f:e7:6d:d9:9b:e9:2a:45:16:44:c0:a6:be:4f:31:7d:86:6f:36:14
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/VBo9pDq5GCACRL Distribution Point: http://crls.pki.goog/gts1p5/YtiCGonLJr8.crl
Check the revocation status for certificate alanmallory.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for alanmallory.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alanmallory.com
*.alanmallory.com
*.alanmallory.com
Other certificates including the domain name alanmallory.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for alanmallory.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFdjCCBF6gAwIBAgIQN6S2mY53y7IOx8VQb3TdajANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yMzEyMjExOTUwMjNaFw0yNDAzMjAx OTUwMjJaMBoxGDAWBgNVBAMTD2FsYW5tYWxsb3J5LmNvbTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBALYwQwNLCfI0S6k9V2hjphQuaNdcXacZwilYED/x ixPYj+rHXF2yliMFPrkysSgT7lNdkt2AmE/5tJOXLfDgYwp6yPFz2uHoQqiPFgLx HdXmUCtOnBgAjBIyuLsjxV9P86cmzb82kkXOQ9Jr3pxm7yRrgbFKDQk5F8QUdIgn lqsSrPZACGRf7cttR3RP8PDUd4TR/z2ij0ZMKVPPTKtjLJnp0RWZ2404I8nJKOjn JKC1dqjJkVOV77e6wwK5JwP3FmeHguv/Oku9xrsMpJbmOBuKk2GUnSuwBlMk9L7V kd6xDbodjXQfR6aqTBJXXAIERcl9et+A5hixvgb163eSzdcCAwEAAaOCAoowggKG MA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8E AjAAMB0GA1UdDgQWBBRD2jhiSHXOtvqdKivfMZa+arqaLTAfBgNVHSMEGDAWgBTV /J4N3x7K3QiXl24rxV/FK/XsuDB4BggrBgEFBQcBAQRsMGowNQYIKwYBBQUHMAGG KWh0dHA6Ly9vY3NwLnBraS5nb29nL3MvZ3RzMXA1L1ZCbzlwRHE1R0NBMDEGCCsG AQUFBzAChiVodHRwOi8vcGtpLmdvb2cvcmVwby9jZXJ0cy9ndHMxcDUuZGVyMC0G A1UdEQQmMCSCD2FsYW5tYWxsb3J5LmNvbYIRKi5hbGFubWFsbG9yeS5jb20wIQYD VR0gBBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGgL6At hitodHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMxcDUvWXRpQ0dvbkxKcjguY3JsMIIB BQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7D UUhZRnEftZsAAAGMjiTHPAAABAMASDBGAiEAwz3vn5nSw5aSjaMTU0WC8AS5hS5v z0uLnoVTGQSlOa8CIQCYOkf9mx2rWbmNZ8BOxsfgc/a79heVQ5jI9lh4UBHMGwB2 AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAABjI4kx3IAAAQDAEcw RQIhAKv2DaHFcrSoooch5GnBehIuYZ+iBZFM3rdgcOD9gVIyAiBcmPMqPZqNSmY9 t9S6xD8YycMPKWAHpNpUOtgMEIfHhjANBgkqhkiG9w0BAQsFAAOCAQEANbbdKfWe 0Rk393yfFodm2YIUiS+1Y2Gcf0lvXHVayi4H+kJQe79Tnoawau/052zNlG6sVAcH Vn5vkb7Fvcm5UTBX+ZZxmc+rS07nk6CmFxkI1ewmgPaCtBXFfp1T2JtPdC6CXecY SMLzATXFt+63FUz2WesWrkBAsor9vmRqM27Av2e10G9QF4F6TZMEwKhcff8/bc/h wZA9Fuhdl16dAVgwjzhlYrSvIq3XxhOcGlXSpwU9EGLa5fOe0NuWqE1gBAXOmxL7 ZcagNmA0H+FWal31GFJSvajmE/lZX7/vNj3IapcAcoeaIgDQhTPNXUVAi8T8/Ua9 bzsLenwe0fhvSw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjBDA0sJ8jRLqT1XaGOm FC5o11xdpxnCKVgQP/GLE9iP6sdcXbKWIwU+uTKxKBPuU12S3YCYT/m0k5ct8OBj CnrI8XPa4ehCqI8WAvEd1eZQK06cGACMEjK4uyPFX0/zpybNvzaSRc5D0mvenGbv JGuBsUoNCTkXxBR0iCeWqxKs9kAIZF/ty21HdE/w8NR3hNH/PaKPRkwpU89Mq2Ms menRFZnbjTgjycko6OckoLV2qMmRU5Xvt7rDArknA/cWZ4eC6/86S73GuwykluY4 G4qTYZSdK7AGUyT0vtWR3rENuh2NdB9HpqpMEldcAgRFyX1634DmGLG+BvXrd5LN 1wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 73962780017518509519395845000511413610 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-21 19:50:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-20 19:50:22 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'alanmallory.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22999170269108220767102019871903848244808057400278527242961539089550233558734762963923697316179416418638935401491052161212802480848156696831852076507374605396054648829107383213823662182371738529611278424739174714253389480551727756265424854652391727715390846832673029336426209973212664591506568481255616850351592449203431007459857016170570277021744754759512359346347283483991689018536390851788671641356015238015993391373243079807823048319214579507674046557926841940979734614467840532709716114786121029047143683627500218805400651818948911008571257522659276191615265991313989262251170260471284455700643404850570921692631 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 43da38624875ceb6fa9d2a2bdf3196be6aba9a2d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/VBo9pDq5GCA' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alanmallory.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alanmallory.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/YtiCGonLJr8.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c8e24c73c0000040300483046022100c33def9f99d2c396928da313534582f004b9852e6fcf4b8b9e85531904a539af022100983a47fd9b1dab59b98d67c04ec6c7e073f6bbf617954398c8f658785011cc1b007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018c8e24c7720000040300473045022100abf60da1c572b4a8a28721e469c17a122e619fa205914cdeb76070e0fd81523202205c98f32a3d9a8d4a663db7d4bac43f18c9c30f296007a4da543ad80c1087c786 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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