okfit.in
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 3c:d4:1d:0a:23:fe:96:ca:13:e9:4b:60:73:75:d0:da was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=okfit.in
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 3c:d4:1d:0a:23:fe:96:ca:13:e9:4b:60:73:75:d0:daSerial Number (int): 80855035674404221457141246630116577498
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 7a:bb:09:22:36:d2:8c:ce:5b:eb:ff:0d:8d:fc:0a:bb:8b:44:19:b8
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): 44:9d:77:fd:74:00:27:7d:6c:e8:96:d5:46:37:f1:8b:26:37:55:39
Fingerprint (sha256): 94:ae:d1:97:7e:79:2e:45:fd:d0:c7:09:23:bf:1e:1e:6f:6b:f8:05:59:3b:fe:05:4b:ea:63:c0:cf:39:92:32
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/-XizRQl7SzICRL Distribution Point: http://crls.pki.goog/gts1p5/jItGRXLbI30.crl
Check the revocation status for certificate okfit.in
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for okfit.in
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
okfit.in
*.okfit.in
*.okfit.in
Other certificates including the domain name okfit.in
(limited to 100 certificates)
klinswap.com
portal.okfit.in
okfit.in
okfit.in
okfit.in
portal.okfit.in
okfit.in
okfit.in
okfit.in
okfit.in
okfit.in
okfit.in
pixel-entertainment.com
okfit.in
okfit.in
okfit.in
okfit.in
okfit.in
portal.okfit.in
hotelb7journey.com
okfit.in
okfit.in
dnbnxt.indyriot.com
okfit.in
okfit.in
www.okfit.in
portal.okfit.in
portal.okfit.in
okfit.in
okfit.in
nuxbridge.peanut.trade
portal.okfit.in
okfit.in
okfit.in
portal.okfit.in
okfit.in
portal.okfit.in
nuxbridge.peanut.trade
portal.okfit.in
okfit.in
okfit.in
okfit.in
portal.okfit.in
okfit.in
okfit.in
okfit.in
okfit.in
okfit.in
okfit.in
pixel-entertainment.com
okfit.in
okfit.in
okfit.in
okfit.in
okfit.in
portal.okfit.in
hotelb7journey.com
okfit.in
okfit.in
dnbnxt.indyriot.com
okfit.in
okfit.in
www.okfit.in
portal.okfit.in
portal.okfit.in
okfit.in
okfit.in
nuxbridge.peanut.trade
portal.okfit.in
okfit.in
okfit.in
portal.okfit.in
okfit.in
portal.okfit.in
nuxbridge.peanut.trade
Certificate
The complete raw certificate details for okfit.in in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYTCCBEmgAwIBAgIQPNQdCiP+lsoT6Utgc3XQ2jANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDAyMDUxMTU3NTJaFw0yNDA1MDUx MTU3NTFaMBMxETAPBgNVBAMTCG9rZml0LmluMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEApwsjiklsQ4R+mluNtvYE8qeQvBWZ6abtWCRMl9OZSBrrW3lm +HPem+RFdqg2/kZq7IrnLwfBVs0CvBMHfgx7b0GqLCWSLYNPU8HHJOq1bPNIfhq0 f4fZ12xCs3ntiFCjobgjFdfLZt8Twf+fytvepK7Ot20sOwXLsipJ4hsd4l4lN4vW I8Y3QkKEzyozLzyUHs79Wvmkv3Ac0xDpwpwi9a+UJohbgfJvIIytVlt370EIan1a UntMYjCf24TW12nGCgBAfab/cHAIS2rTyZLALsOl5TEmmc1PKi8DNGxvK0S599ai 1OWBcJ6vfj/zspZUsiYJcgKWKua1Fu2Eoz9bxQIDAQABo4ICfDCCAngwDgYDVR0P AQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFHq7CSI20ozOW+v/DY38CruLRBm4MB8GA1UdIwQYMBaAFNX8ng3fHsrd CJeXbivFX8Ur9ey4MHgGCCsGAQUFBwEBBGwwajA1BggrBgEFBQcwAYYpaHR0cDov L29jc3AucGtpLmdvb2cvcy9ndHMxcDUvLVhpelJRbDdTekkwMQYIKwYBBQUHMAKG JWh0dHA6Ly9wa2kuZ29vZy9yZXBvL2NlcnRzL2d0czFwNS5kZXIwHwYDVR0RBBgw FoIIb2tmaXQuaW6CCioub2tmaXQuaW4wIQYDVR0gBBowGDAIBgZngQwBAgEwDAYK KwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGgL6AthitodHRwOi8vY3Jscy5wa2kuZ29v Zy9ndHMxcDUvakl0R1JYTGJJMzAuY3JsMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDx AHYAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xaOnQAAAGNeVi0rgAABAMA RzBFAiBwroeZmvBxSj80xaZczrymfqvOGnRhaqlGjtMl6Re9zwIhALe5Ux4tGhzU tYpMNgwFowVXVBndRFXpPGAk7mTnERldAHcA2ra/az+1tiKfm8K7XGvocJFxbLtR hIU0vaQ9MEjX+6sAAAGNeVi0wgAABAMASDBGAiEAjD5GY7V6BZIhfajKOIqBFK3e XopmW94CVy5RkAiGC4cCIQDu0QFJ4kV3VFiJWi4trgk0mKs+0Ju7HH4F/gBdqGij zTANBgkqhkiG9w0BAQsFAAOCAQEAA9xV8nTXYSgUWyEi8ih5p+zPHYYKU078B7m8 pOrfpZ7TsxTT7AR8f47K0QMyCKExR1HPCBAWh1ZSWuY+8BT5/EfDCR+FlJkLCa4d WAczMGZDwZteOoPORMSAGdMOP0htswXzFVYl70za6p5NB0s/CkS39+Ua283IsoUr 377CDEGNDf6mTGiPNmIfN7jGnjqtdpIS/XyZ3eo7miIzP7Oa8cnZMPWTLHF+wBOm 0csMkSoSVy3kjsRxn9CRf7oCg0vACyItFRjI2ww6xwjcoT9zgP7BOKppsGex5S9K mL/iYNiM2IfOfnTR3iCXvYQE+5BYLe1NlnOS2G9UuuW3bEgR5Q== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApwsjiklsQ4R+mluNtvYE 8qeQvBWZ6abtWCRMl9OZSBrrW3lm+HPem+RFdqg2/kZq7IrnLwfBVs0CvBMHfgx7 b0GqLCWSLYNPU8HHJOq1bPNIfhq0f4fZ12xCs3ntiFCjobgjFdfLZt8Twf+fytve pK7Ot20sOwXLsipJ4hsd4l4lN4vWI8Y3QkKEzyozLzyUHs79Wvmkv3Ac0xDpwpwi 9a+UJohbgfJvIIytVlt370EIan1aUntMYjCf24TW12nGCgBAfab/cHAIS2rTyZLA LsOl5TEmmc1PKi8DNGxvK0S599ai1OWBcJ6vfj/zspZUsiYJcgKWKua1Fu2Eoz9b xQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 80855035674404221457141246630116577498 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-05 11:57:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-05 11:57:51 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'okfit.in' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21087289690550431735966935567817703116304573794959002572976218586327366318347165088844581248035613631601666655274777472157684617493551495351457508784604718943045306493916532676143762714000191189709601039342918810495017325779041325058148849298599260296586788362879907376573429202187196172922151294399606434579290683163448148040859362139024021615565077264504611443649304686161176140615520758142159081108974952357926049041673027897479334240451548517264573262310233785404719890735682936852794152438620677799755853005383228492773381736778501369518055166285439664540707244223252283592797523430748311657258499837211296357317 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7abb092236d28cce5bebff0d8dfc0abb8b4419b8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/-XizRQl7SzI' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'okfit.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.okfit.in' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/jItGRXLbI30.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f100760076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018d7958b4ae0000040300473045022070ae87999af0714a3f34c5a65ccebca67eabce1a74616aa9468ed325e917bdcf022100b7b9531e2d1a1cd4b58a4c360c05a305575419dd4455e93c6024ee64e711195d007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018d7958b4c200000403004830460221008c3e4663b57a0592217da8ca388a8114adde5e8a665bde02572e519008860b87022100eed10149e245775458895a2e2dae093498ab3ed09bbb1c7e05fe005da868a3cd . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0003dc55f274d76128145b2122f22879a7eccf1d860a534efc07b9bca4eadfa59ed3b314d3ec047c7f8ecad1033208a1314751cf0810168756525ae63ef014f9fc47c3091f8594990b09ae1d580733306643c19b5e3a83ce44c48019d30e3f486db305f3155625ef4cdaea9e4d074b3f0a44b7f7e51adbcdc8b2852bdfbec20c418d0dfea64c688f36621f37b8c69e3aad769212fd7c99ddea3b9a22333fb39af1c9d930f5932c717ec013a6d1cb0c912a12572de48ec4719fd0917fba02834bc00b222d1518c8db0c3ac708dca13f7380fec138aa69b067b1e52f4a98bfe260d88cd887ce7e74d1de2097bd8404fb90582ded4d967392d86f54bae5b76c4811e5