pontculturalbridge.ca
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 43:ba:54:60:90:fa:cf:96:11:f1:8f:af:54:75:b3:ba was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pontculturalbridge.ca
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 43:ba:54:60:90:fa:cf:96:11:f1:8f:af:54:75:b3:baSerial Number (int): 90025754306456202700497650719613367226
Serial Number lenght: 127 bits, 16 octets
SubjectKeyId: b2:af:6a:76:f8:12:bc:32:fc:18:fb:e8:59:76:a6:d4:88:a8:5f:41
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): 54:15:28:3a:9d:bd:7b:06:b0:24:67:c7:fc:08:58:1e:6c:e8:b4:ec
Fingerprint (sha256): be:09:b8:f2:8e:64:cc:79:51:87:71:65:52:19:29:00:71:58:08:31:af:f9:a3:c5:43:08:2d:0d:c0:78:e1:7f
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/Ay5sb0jPOn4CRL Distribution Point: http://crls.pki.goog/gts1p5/cPaxteX-quo.crl
Check the revocation status for certificate pontculturalbridge.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pontculturalbridge.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pontculturalbridge.ca
www.pontculturalbridge.ca
www.pontculturalbridge.ca
Other certificates including the domain name pontculturalbridge.ca
(limited to 100 certificates)
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.acces224.com
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.acces224.com
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.acces224.com
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.ca
pontculturalbridge.acces224.com
Certificate
The complete raw certificate details for pontculturalbridge.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFijCCBHKgAwIBAgIQQ7pUYJD6z5YR8Y+vVHWzujANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDA0MjYwMTAzMDNaFw0yNDA3MjUw MTAzMDJaMCAxHjAcBgNVBAMTFXBvbnRjdWx0dXJhbGJyaWRnZS5jYTCCASIwDQYJ KoZIhvcNAQEBBQADggEPADCCAQoCggEBALwChn77VJXDx82L/WFDafV+p3b0K8f5 zqr/yb7g5w7LJGkfZWh3yjTGEUeHJpL8tcrFp8XjiNx336wvaQWCi0ScET4zaRpA ggXjTQpqzp/nBICj5WPp55nBISs12+nHb9yWUoxpV4OV7aKITo9Li+o/Ga11uFSx UWMk8z+b5T9RShg4EMjzmDTx3DsgPMxtoAyWdo5h1WP31rQ29OSR8hPTL6SMJlw+ 9D05qEm/wKHry6uYECd8VknsTXVqRp2TQz8AGu5w+bxEZhZLGdWvprpN2OJyuxIQ xMR/RvVa0dY8R73WXNocynvXCuot8bA84hy0kalQrXYp0ub03XI3e+0CAwEAAaOC ApgwggKUMA4GA1UdDwEB/wQEAwIFoDATBgNVHSUEDDAKBggrBgEFBQcDATAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBSyr2p2+BK8MvwY++hZdqbUiKhfQTAfBgNVHSME GDAWgBTV/J4N3x7K3QiXl24rxV/FK/XsuDB4BggrBgEFBQcBAQRsMGowNQYIKwYB BQUHMAGGKWh0dHA6Ly9vY3NwLnBraS5nb29nL3MvZ3RzMXA1L0F5NXNiMGpQT240 MDEGCCsGAQUFBzAChiVodHRwOi8vcGtpLmdvb2cvcmVwby9jZXJ0cy9ndHMxcDUu ZGVyMDsGA1UdEQQ0MDKCFXBvbnRjdWx0dXJhbGJyaWRnZS5jYYIZd3d3LnBvbnRj dWx0dXJhbGJyaWRnZS5jYTAhBgNVHSAEGjAYMAgGBmeBDAECATAMBgorBgEEAdZ5 AgUDMDwGA1UdHwQ1MDMwMaAvoC2GK2h0dHA6Ly9jcmxzLnBraS5nb29nL2d0czFw NS9jUGF4dGVYLXF1by5jcmwwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgDuzdBk 1dsazsVct520zROiModGfLzs3sNRSFlGcR+1mwAAAY8YJFEJAAAEAwBHMEUCIQDU IeznwjAVCZDChpHavfy5H/imVM4S2ppUDo1ZFGVOcgIgZYT95iNUDDD3Ug98RW6b 6LZ3SCMrEgTR2esLhYAVqbYAdwBIsONr2qZHNA/lagL6nTDrHFIBy1bdLIHZu7+r OdiEcwAAAY8YJFEuAAAEAwBIMEYCIQDGTAbsFvW4P9nBE7zXqvBwQKVcpB0/gv/X lQ4gCsuqdwIhAMfUo3QcJ+Ri7aOgEHnVrPWggeZ8y9+4xKuyb8v+jXKdMA0GCSqG SIb3DQEBCwUAA4IBAQCRyrzZeGFHrSGJdc9f+V13vM8BIZPBhxAm+OOEhTKghTtE Wut70rSJ8mmPnUa9W3YVhvWJHOCJf4iXzJR31tLKpYtle8DHFD5oGXv+l1og6E0C s5AkprW5ij+ktxM0OktZnHE65OMFz6uTNzw27k15VIiValfY10iZXflgzWX6GJDh ocjXTAo6WJlDrvT94S4GJf8q8CHzKN2fMcnNcHqRj4oVSmEdQgkVVfkOd72xSw7Q iXuUOArJi6/83F5qD8y5OeZawRxKZRtjYlDSGKqeDVvuIfJeqi6ONZosGcgwTLvY xtUex1pasz3VifzgMaDau2xU9Ai1LX0D4hvtcNbX -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvAKGfvtUlcPHzYv9YUNp 9X6ndvQrx/nOqv/JvuDnDsskaR9laHfKNMYRR4cmkvy1ysWnxeOI3HffrC9pBYKL RJwRPjNpGkCCBeNNCmrOn+cEgKPlY+nnmcEhKzXb6cdv3JZSjGlXg5XtoohOj0uL 6j8ZrXW4VLFRYyTzP5vlP1FKGDgQyPOYNPHcOyA8zG2gDJZ2jmHVY/fWtDb05JHy E9MvpIwmXD70PTmoSb/AoevLq5gQJ3xWSexNdWpGnZNDPwAa7nD5vERmFksZ1a+m uk3Y4nK7EhDExH9G9VrR1jxHvdZc2hzKe9cK6i3xsDziHLSRqVCtdinS5vTdcjd7 7QIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 90025754306456202700497650719613367226 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-26 01:03:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-25 01:03:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pontculturalbridge.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23734046642488152614901070087099939149002291971532502293222063531032026855738416884460820477213529662160096950853587216607156832964973464879688478563287964653001231718697690437746132721100046304481288298798961122957341505372762912062388851208923247209474847588894008827264623924344327866917741336382167982618907498462528342899173966318616498956834139593910436392249628807558805708726990610172419924391924379749663988553160007872331742651360167139028637258362579568416586064288036960499976137254254794447402508466160053460810983249363793748317025316463120511250096351227391819077686875670364642703894398169390205336557 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b2af6a76f812bc32fc18fbe85976a6d488a85f41 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/Ay5sb0jPOn4' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (52 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pontculturalbridge.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.pontculturalbridge.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/cPaxteX-quo.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018f182451090000040300473045022100d421ece7c230150990c28691dabdfcb91ff8a654ce12da9a540e8d5914654e7202206584fde623540c30f7520f7c456e9be8b67748232b1204d1d9eb0b858015a9b600770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018f1824512e0000040300483046022100c64c06ec16f5b83fd9c113bcd7aaf07040a55ca41d3f82ffd7950e200acbaa77022100c7d4a3741c27e462eda3a01079d5acf5a081e67ccbdfb8c4abb26fcbfe8d729d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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