alanmallory.com

Issued by GTS CA 1P5

About this certificate

This digital certificate with serial number 37:a4:b6:99:8e:77:cb:b2:0e:c7:c5:50:6f:74:dd:6a was issued on by Google Trust Services LLC.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=alanmallory.com

Google Trust Services LLC

Organization: Google Trust Services LLC
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 37:a4:b6:99:8e:77:cb:b2:0e:c7:c5:50:6f:74:dd:6a
Serial Number (int): 73962780017518509519395845000511413610
Serial Number lenght: 126 bits, 16 octets

SubjectKeyId: 43:da:38:62:48:75:ce:b6:fa:9d:2a:2b:df:31:96:be:6a:ba:9a:2d
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8

Fingerprint (sha1): 30:8b:8b:63:3c:46:29:d6:69:cc:17:0e:18:a2:bf:5a:69:56:c6:09
Fingerprint (sha256): 81:ff:42:5a:ee:0b:d6:dd:d0:59:01:a2:7f:e7:6d:d9:9b:e9:2a:45:16:44:c0:a6:be:4f:31:7d:86:6f:36:14

Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der

Revocation information

OCSP Server: http://ocsp.pki.goog/s/gts1p5/VBo9pDq5GCA
CRL Distribution Point: http://crls.pki.goog/gts1p5/YtiCGonLJr8.crl

Check the revocation status for certificate alanmallory.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for alanmallory.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

alanmallory.com
*.alanmallory.com

Other certificates including the domain name alanmallory.com

(limited to 100 certificates)
alanmallory.com
alanmallory.com
alanmallory.com
books.alanmallory.com
alanmallory.com
alanmallory.com
alanmallory.com
alanmallory.com
workdrive.nickjacksonspeaks.com

Certificate

The complete raw certificate details for alanmallory.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFdjCCBF6gAwIBAgIQN6S2mY53y7IOx8VQb3TdajANBgkqhkiG9w0BAQsFADBG
MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM
QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yMzEyMjExOTUwMjNaFw0yNDAzMjAx
OTUwMjJaMBoxGDAWBgNVBAMTD2FsYW5tYWxsb3J5LmNvbTCCASIwDQYJKoZIhvcN
AQEBBQADggEPADCCAQoCggEBALYwQwNLCfI0S6k9V2hjphQuaNdcXacZwilYED/x
ixPYj+rHXF2yliMFPrkysSgT7lNdkt2AmE/5tJOXLfDgYwp6yPFz2uHoQqiPFgLx
HdXmUCtOnBgAjBIyuLsjxV9P86cmzb82kkXOQ9Jr3pxm7yRrgbFKDQk5F8QUdIgn
lqsSrPZACGRf7cttR3RP8PDUd4TR/z2ij0ZMKVPPTKtjLJnp0RWZ2404I8nJKOjn
JKC1dqjJkVOV77e6wwK5JwP3FmeHguv/Oku9xrsMpJbmOBuKk2GUnSuwBlMk9L7V
kd6xDbodjXQfR6aqTBJXXAIERcl9et+A5hixvgb163eSzdcCAwEAAaOCAoowggKG
MA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNVHRMBAf8E
AjAAMB0GA1UdDgQWBBRD2jhiSHXOtvqdKivfMZa+arqaLTAfBgNVHSMEGDAWgBTV
/J4N3x7K3QiXl24rxV/FK/XsuDB4BggrBgEFBQcBAQRsMGowNQYIKwYBBQUHMAGG
KWh0dHA6Ly9vY3NwLnBraS5nb29nL3MvZ3RzMXA1L1ZCbzlwRHE1R0NBMDEGCCsG
AQUFBzAChiVodHRwOi8vcGtpLmdvb2cvcmVwby9jZXJ0cy9ndHMxcDUuZGVyMC0G
A1UdEQQmMCSCD2FsYW5tYWxsb3J5LmNvbYIRKi5hbGFubWFsbG9yeS5jb20wIQYD
VR0gBBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGgL6At
hitodHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMxcDUvWXRpQ0dvbkxKcjguY3JsMIIB
BQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcA7s3QZNXbGs7FXLedtM0TojKHRny87N7D
UUhZRnEftZsAAAGMjiTHPAAABAMASDBGAiEAwz3vn5nSw5aSjaMTU0WC8AS5hS5v
z0uLnoVTGQSlOa8CIQCYOkf9mx2rWbmNZ8BOxsfgc/a79heVQ5jI9lh4UBHMGwB2
AKLiv9Ye3i8vB6DWTm03p9xlQ7DGtS6i2reK+Jpt9RfYAAABjI4kx3IAAAQDAEcw
RQIhAKv2DaHFcrSoooch5GnBehIuYZ+iBZFM3rdgcOD9gVIyAiBcmPMqPZqNSmY9
t9S6xD8YycMPKWAHpNpUOtgMEIfHhjANBgkqhkiG9w0BAQsFAAOCAQEANbbdKfWe
0Rk393yfFodm2YIUiS+1Y2Gcf0lvXHVayi4H+kJQe79Tnoawau/052zNlG6sVAcH
Vn5vkb7Fvcm5UTBX+ZZxmc+rS07nk6CmFxkI1ewmgPaCtBXFfp1T2JtPdC6CXecY
SMLzATXFt+63FUz2WesWrkBAsor9vmRqM27Av2e10G9QF4F6TZMEwKhcff8/bc/h
wZA9Fuhdl16dAVgwjzhlYrSvIq3XxhOcGlXSpwU9EGLa5fOe0NuWqE1gBAXOmxL7
ZcagNmA0H+FWal31GFJSvajmE/lZX7/vNj3IapcAcoeaIgDQhTPNXUVAi8T8/Ua9
bzsLenwe0fhvSw==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAtjBDA0sJ8jRLqT1XaGOm
FC5o11xdpxnCKVgQP/GLE9iP6sdcXbKWIwU+uTKxKBPuU12S3YCYT/m0k5ct8OBj
CnrI8XPa4ehCqI8WAvEd1eZQK06cGACMEjK4uyPFX0/zpybNvzaSRc5D0mvenGbv
JGuBsUoNCTkXxBR0iCeWqxKs9kAIZF/ty21HdE/w8NR3hNH/PaKPRkwpU89Mq2Ms
menRFZnbjTgjycko6OckoLV2qMmRU5Xvt7rDArknA/cWZ4eC6/86S73GuwykluY4
G4qTYZSdK7AGUyT0vtWR3rENuh2NdB9HpqpMEldcAgRFyX1634DmGLG+BvXrd5LN
1wIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 73962780017518509519395845000511413610
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-21 19:50:23 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-20 19:50:22 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'alanmallory.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22999170269108220767102019871903848244808057400278527242961539089550233558734762963923697316179416418638935401491052161212802480848156696831852076507374605396054648829107383213823662182371738529611278424739174714253389480551727756265424854652391727715390846832673029336426209973212664591506568481255616850351592449203431007459857016170570277021744754759512359346347283483991689018536390851788671641356015238015993391373243079807823048319214579507674046557926841940979734614467840532709716114786121029047143683627500218805400651818948911008571257522659276191615265991313989262251170260471284455700643404850570921692631
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							43da38624875ceb6fa9d2a2bdf3196be6aba9a2d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/VBo9pDq5GCA'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alanmallory.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.alanmallory.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/YtiCGonLJr8.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018c8e24c73c0000040300483046022100c33def9f99d2c396928da313534582f004b9852e6fcf4b8b9e85531904a539af022100983a47fd9b1dab59b98d67c04ec6c7e073f6bbf617954398c8f658785011cc1b007600a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018c8e24c7720000040300473045022100abf60da1c572b4a8a28721e469c17a122e619fa205914cdeb76070e0fd81523202205c98f32a3d9a8d4a663db7d4bac43f18c9c30f296007a4da543ad80c1087c786
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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