api.candy.ac
Issued by GTS CA 1D2
About this certificate
This digital certificate with serial number 01:96:81:90:1f:35:15:1e:0a:00:00:00:00:15:c4:b8 was issued on by Google Trust Services.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=api.candy.ac
Google Trust Services
Organization:
Google Trust Services
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 01:96:81:90:1f:35:15:1e:0a:00:00:00:00:15:c4:b8Serial Number (int): 2110700373917621233452995066352485560
Serial Number lenght: 121 bits, 16 octets
SubjectKeyId: 57:30:e9:6b:df:38:d8:a7:9b:b5:cc:66:59:40:0f:94:b3:2c:fd:b0
AuthorityKeyId: b1:dd:32:5d:e8:b7:37:72:d2:ce:5c:ce:26:fe:47:79:e2:01:08:e9
Fingerprint (sha1): 53:a9:79:3f:fb:46:15:38:6e:6b:71:c2:73:4a:d7:9d:b3:c7:28:d7
Fingerprint (sha256): 9b:a8:61:e2:2c:1e:f4:d0:2b:e7:87:47:27:90:ea:df:31:45:ba:d1:98:09:a9:72:2c:5c:11:a5:62:cf:d1:cb
Issuing Certificate URL: http://pki.goog/gsr2/GTS1D2.crt
Revocation information
OCSP Server: http://ocsp.pki.goog/gts1d2CRL Distribution Point: http://crl.pki.goog/GTS1D2.crl
Check the revocation status for certificate api.candy.ac
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for api.candy.ac
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
api.candy.ac
Other certificates including the domain name candy.ac
(limited to 100 certificates)
blog.candy.ac
warrantify.siaarzh.com
app.production.pro
www.shedcloud.com.br
mobypod.app
www.plogga.se
app.production.pro
api.candy.ac
piroosf.com
vusoccer.com
dev.stellarjaysoftware.com
www.leafytech.ca
orexin.cz
technoabhi.ml
www.10v3.us
shield128.tracknstop.com
www.civictechvancouver.ca
dev.soundfyr.net
featherlessagency.com
www.mk.ae
api.candy.ac
natetrades.net
www.expluto.tk
aawishcar.in
vusoccer.com
pranatitech.com
www.slpdbuildcon.com
api.candy.ac
link.broder.app
twinrivers.electriphi.io
proll.com.au
mybroodminder.com
campuson.childcareon.com
vrkarthik.com
orexin.cz
dev.stellarjaysoftware.com
octoapp.eu
mobypod.app
staging.kojo-shin.com
candy.ac
mybroodminder.com
www.maodino.com
www.shedcloud.com.br
www.10v3.us
warrantify.siaarzh.com
app.production.pro
www.shedcloud.com.br
mobypod.app
www.plogga.se
app.production.pro
api.candy.ac
piroosf.com
vusoccer.com
dev.stellarjaysoftware.com
www.leafytech.ca
orexin.cz
technoabhi.ml
www.10v3.us
shield128.tracknstop.com
www.civictechvancouver.ca
dev.soundfyr.net
featherlessagency.com
www.mk.ae
api.candy.ac
natetrades.net
www.expluto.tk
aawishcar.in
vusoccer.com
pranatitech.com
www.slpdbuildcon.com
api.candy.ac
link.broder.app
twinrivers.electriphi.io
proll.com.au
mybroodminder.com
campuson.childcareon.com
vrkarthik.com
orexin.cz
dev.stellarjaysoftware.com
octoapp.eu
mobypod.app
staging.kojo-shin.com
candy.ac
mybroodminder.com
www.maodino.com
www.shedcloud.com.br
www.10v3.us
Certificate
The complete raw certificate details for api.candy.ac in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFODCCBCCgAwIBAgIQAZaBkB81FR4KAAAAABXEuDANBgkqhkiG9w0BAQsFADBC MQswCQYDVQQGEwJVUzEeMBwGA1UEChMVR29vZ2xlIFRydXN0IFNlcnZpY2VzMRMw EQYDVQQDEwpHVFMgQ0EgMUQyMB4XDTIwMDIxNjIwMDQ0NloXDTIwMDUxNjIwMDQ0 NlowFzEVMBMGA1UEAxMMYXBpLmNhbmR5LmFjMIIBIjANBgkqhkiG9w0BAQEFAAOC AQ8AMIIBCgKCAQEAoUrWgJiZ2od4ZoHh119NBPSPhjYblifKc5tZkDXNhCt18hA8 6qHPonllnPKJdGAOI/psmwBSDxHpGsPbiGvdh/G/mDTcRT+RTZFYX/X9mammwZVT RynYoRcUvVCZxunzl4MYt5C9ch4q2Hh0vEDkNR4ONmprUtbsgdyWf5vYSqVwgSWh Pi03DFgAZjdG3jP1WeE+QK6/yWnxwpMEQO5SNlJKCkZQPVonvi/W7NuRYgfMsdmJ CTsECv7GBNXXlGbmY2r6DobxzxNVD6BgsXZX6jOvH53fbrvPkT3Mt6ccDiB5wmAb lC0u8ed16ydWGnIhW148i2YAjAktuOd+Q1aHJwIDAQABo4ICUzCCAk8wDgYDVR0P AQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFFcw6WvfONinm7XMZllAD5SzLP2wMB8GA1UdIwQYMBaAFLHdMl3otzdy 0s5czib+R3niAQjpMGQGCCsGAQUFBwEBBFgwVjAnBggrBgEFBQcwAYYbaHR0cDov L29jc3AucGtpLmdvb2cvZ3RzMWQyMCsGCCsGAQUFBzAChh9odHRwOi8vcGtpLmdv b2cvZ3NyMi9HVFMxRDIuY3J0MBcGA1UdEQQQMA6CDGFwaS5jYW5keS5hYzAhBgNV HSAEGjAYMAgGBmeBDAECATAMBgorBgEEAdZ5AgUDMC8GA1UdHwQoMCYwJKAioCCG Hmh0dHA6Ly9jcmwucGtpLmdvb2cvR1RTMUQyLmNybDCCAQUGCisGAQQB1nkCBAIE gfYEgfMA8QB2ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJUy3vi5BeAAABcE/R YIEAAAQDAEcwRQIhAMbkZG8lDMO3Vd4hl10eywEsa0M6m6O7aFIuNE7lvQeCAiBK LvMKpXerHOoEnTfMrZ1+cHijVtkST8KC3ySJKZVQ6gB3AF6nc/nfVsDntTZIfdBJ 4DJ6kZoMhKESEoQYdZaBcUVYAAABcE/RYg0AAAQDAEgwRgIhAPqG7t3jRONLARie G4IMEJo0GUEeocVz96sufXqaM8vGAiEA5RQnT2AhDyjjkX5/vOFkgRumZqN+wKHR 2lSkQNllKfwwDQYJKoZIhvcNAQELBQADggEBAItvAK+kf46eJD4WR7pcW/ntt8P9 icdo14TSkWdJ8PY1TlQAHY5aSMC94FM+XG7ilHQxNn5OUpFqdgV9j2fa/PkMlq9Y Y3LHlx0mJwSagP7GL0M3hby6ZOJMINz6mtDl5avTPSPXnlUX6g5rMpWOaTKT628f +a15WensxWvAMPki4sz0XuV+asvntkM44HAW6Y7nq9HAgZP1uahfZRJAsslA/zU9 IwJHE9+nVr8pff26rALqD/+ex0ZiF7r58pPzBNJXK8rmjs+SmVLn/0TYe5r3Ctb/ ra8G3ZpPCvwvnDy3eeW2jHLlJO23xT8rBewNH1tNhTBUCZuVZUkSkNmlaYs= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAoUrWgJiZ2od4ZoHh119N BPSPhjYblifKc5tZkDXNhCt18hA86qHPonllnPKJdGAOI/psmwBSDxHpGsPbiGvd h/G/mDTcRT+RTZFYX/X9mammwZVTRynYoRcUvVCZxunzl4MYt5C9ch4q2Hh0vEDk NR4ONmprUtbsgdyWf5vYSqVwgSWhPi03DFgAZjdG3jP1WeE+QK6/yWnxwpMEQO5S NlJKCkZQPVonvi/W7NuRYgfMsdmJCTsECv7GBNXXlGbmY2r6DobxzxNVD6BgsXZX 6jOvH53fbrvPkT3Mt6ccDiB5wmAblC0u8ed16ydWGnIhW148i2YAjAktuOd+Q1aH JwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 2110700373917621233452995066352485560 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1D2' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-16 20:04:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-16 20:04:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'api.candy.ac' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20361271043316549728791216250786030059948538493594962105698197530326295725159886323201546952363324712023920640199229168891832186517489322624807519784586520217352589181700583129271438000785621367015592382659138080425338464889088499362534790136591304026102499716084894994803111476411269346566157370609036187145379489761441976842752598024656158031404072691610949661724707499785015800636880079301765516036050314108005646360012614772134792141817814924699313058865243885759051168909230827446613029312034965794522179379639418439610498968053952468975361258833803900172011321278212679035130324830112930716557527589129131820839 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5730e96bdf38d8a79bb5cc6659400f94b32cfdb0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName b1dd325de8b73772d2ce5cce26fe4779e20108e9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (88 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/gts1d2' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/gsr2/GTS1D2.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'api.candy.ac' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.pki.goog/GTS1D2.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001704fd160810000040300473045022100c6e4646f250cc3b755de21975d1ecb012c6b433a9ba3bb68522e344ee5bd078202204a2ef30aa577ab1cea049d37ccad9d7e7078a356d9124fc282df2489299550ea0077005ea773f9df56c0e7b536487dd049e0327a919a0c84a112128418759681714558000001704fd1620d0000040300483046022100fa86eedde344e34b01189e1b820c109a3419411ea1c573f7ab2e7d7a9a33cbc6022100e514274f60210f28e3917e7fbce164811ba666a37ec0a1d1da54a440d96529fc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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