intactpublicentities.ca
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 3d:18:8e:fb:4e:0e:f4:b6:0d:9b:18:f8:47:3c:cf:72 was issued on by Google Trust Services LLC.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=intactpublicentities.ca
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 3d:18:8e:fb:4e:0e:f4:b6:0d:9b:18:f8:47:3c:cf:72Serial Number (int): 81210422880075125071015065654275133298
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: 33:c9:99:82:0c:2e:5f:f0:ef:5e:65:b4:6b:f1:54:32:35:20:57:98
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): 99:1c:be:96:7c:3c:dd:ef:72:cd:b9:75:22:4b:f3:d7:71:42:66:ef
Fingerprint (sha256): c3:3e:f7:28:d9:be:e5:25:88:11:1c:9d:06:27:7d:5b:87:ce:1b:c2:bf:41:91:87:ea:58:ba:69:73:4f:10:56
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/-_7z8XCwuRwCRL Distribution Point: http://crls.pki.goog/gts1p5/kEu9ioQF6Gw.crl
Check the revocation status for certificate intactpublicentities.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for intactpublicentities.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
intactpublicentities.ca
Other certificates including the domain name intactpublicentities.ca
(limited to 100 certificates)
helpdesk.warren-wilson.edu
itservicedesk.intactpublicentities.ca
sni.cloudflaressl.com
helpdesk.warren-wilson.edu
servicedesk.primehealthcare.com
intactpublicentities.ca
helpdesk.warren-wilson.edu
intactpublicentities.ca
intactpublicentities.ca
sni.cloudflaressl.com
itservicedesk.intactpublicentities.ca
itservicedesk.intactpublicentities.ca
intactpublicentities.ca
intactpublicentities.ca
intactpublicentities.ca
intactpublicentities.ca
intactpublicentities.ca
itservicedesk.intactpublicentities.ca
sni.cloudflaressl.com
helpdesk.warren-wilson.edu
servicedesk.primehealthcare.com
intactpublicentities.ca
helpdesk.warren-wilson.edu
intactpublicentities.ca
intactpublicentities.ca
sni.cloudflaressl.com
itservicedesk.intactpublicentities.ca
itservicedesk.intactpublicentities.ca
intactpublicentities.ca
intactpublicentities.ca
intactpublicentities.ca
intactpublicentities.ca
intactpublicentities.ca
Certificate
The complete raw certificate details for intactpublicentities.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFcTCCBFmgAwIBAgIQPRiO+04O9LYNmxj4RzzPcjANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yNDA1MDEwMzE1MDNaFw0yNDA3MzAw MzE1MDJaMCIxIDAeBgNVBAMTF2ludGFjdHB1YmxpY2VudGl0aWVzLmNhMIIBIjAN BgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnxUEuNEZzVaTTyi0yoiUEG61o3Qw ct+Chy7H080vT6EzaFtFQ9daVgatMY+dXzB8z1NkiPpZ5hMqMIWggNJ7t6k3Eu7S AkB7D1dirdein/KNjeSVIDHyXd5lGe2DKg7tUS+qV2qM9zLpBBi4CMX87LJisHkG ekaMO4QdWgTeAOpdeIJdpqB5GE7qBKfpSL/oImI/l7AAjGzjnGaYk5kuCGYaAFEB /CkQv6Qvo61ifnbgB8yFfxr0ukSpTmLvQ9uKmu1n3dKpm3VqLfCbrwMycvMNAGhH eyTzkp1rGTTltxhiJrJP5IiT1PGdQALgUrrevAteJAVpvwTDZFcUhxbnyQIDAQAB o4ICfTCCAnkwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFDPJmYIMLl/w715ltGvxVDI1IFeYMB8GA1Ud IwQYMBaAFNX8ng3fHsrdCJeXbivFX8Ur9ey4MHgGCCsGAQUFBwEBBGwwajA1Bggr BgEFBQcwAYYpaHR0cDovL29jc3AucGtpLmdvb2cvcy9ndHMxcDUvLV83ejhYQ3d1 UncwMQYIKwYBBQUHMAKGJWh0dHA6Ly9wa2kuZ29vZy9yZXBvL2NlcnRzL2d0czFw NS5kZXIwIgYDVR0RBBswGYIXaW50YWN0cHVibGljZW50aXRpZXMuY2EwIQYDVR0g BBowGDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGgL6Athito dHRwOi8vY3Jscy5wa2kuZ29vZy9ndHMxcDUva0V1OWlvUUY2R3cuY3JsMIIBAwYK KwYBBAHWeQIEAgSB9ASB8QDvAHUA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZ RnEftZsAAAGPMlz2fwAABAMARjBEAiBNEf9N639G/OvBZ/4vKLb+p07npzrVsUXY wZULO3YXIgIgXUwjgNYMvweGyRWuruzaNzog7qXK8OrsBcgGUbApC/QAdgDf4Vbr qgWvtZwPhnGNqMAyTq5W2W6n9aVqAdHBO75SXAAAAY8yXPdOAAAEAwBHMEUCIQCQ 4gV9gnjeAioSKfXRa6fUZIizc3a0xSVRj6+R6A4jJgIgc7AgcCZPk6iH1qFFkEps I8gH2XAUAN2WbGYhGrn5QXQwDQYJKoZIhvcNAQELBQADggEBAC3ItSkcISh/zt5A y5saHI4Uvan/yyj8+aLUAgGgFoUqoA8JWG2AZtg9lHPTHD2A4bGDELNx+e09W0+3 UqWtK7wx1gpmzP2jUHGl6g+CTaiDiCGS2+wbicdRfjIrpEjatGR44umoGvzR2BTn RezelXxV8Hedl+n17WmYWZlOHjsx15UKal0ifvslduqy8BI3+k62BfH9C6hB6X34 RflhPRYpArb3gZOAdYrdaB8rjpmkgcWCDniupHTgWByPnjiCQ8Kcp/R8wegvEljv HzCTQCL2dPVt2Odr2H/mMdqNsHtNDzdVBE9ioK2L6fHlFvDZsOzDX3AiLoD0ikbF FRH5kfM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAnxUEuNEZzVaTTyi0yoiU EG61o3Qwct+Chy7H080vT6EzaFtFQ9daVgatMY+dXzB8z1NkiPpZ5hMqMIWggNJ7 t6k3Eu7SAkB7D1dirdein/KNjeSVIDHyXd5lGe2DKg7tUS+qV2qM9zLpBBi4CMX8 7LJisHkGekaMO4QdWgTeAOpdeIJdpqB5GE7qBKfpSL/oImI/l7AAjGzjnGaYk5ku CGYaAFEB/CkQv6Qvo61ifnbgB8yFfxr0ukSpTmLvQ9uKmu1n3dKpm3VqLfCbrwMy cvMNAGhHeyTzkp1rGTTltxhiJrJP5IiT1PGdQALgUrrevAteJAVpvwTDZFcUhxbn yQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 81210422880075125071015065654275133298 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-01 03:15:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-30 03:15:02 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'intactpublicentities.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 20082255071165792883215619687542632816831263801288323455576267886177729586804484734000518613551513889354788272343222705681076483608611522522497122754333450580204833527954672222566679146043618164304619692405920962627156088501038576568636978556730528334731726009492438902328873241675222342649216747908477160003370112616227130209535145771720588182868855724211425706459342747522539968799941634861189096857915167265126805076104835137986412834015859533063114568843422878509173539389534437264912902958027707304399597443153774395249512297747235344518829782573368783707309260388599506650771154467234305656294778100637190514633 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 33c999820c2e5ff0ef5e65b46bf1543235205798 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/-_7z8XCwuRw' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (27 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'intactpublicentities.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/kEu9ioQF6Gw.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018f325cf67f000004030046304402204d11ff4deb7f46fcebc167fe2f28b6fea74ee7a73ad5b145d8c1950b3b76172202205d4c2380d60cbf0786c915aeaeecda373a20eea5caf0eaec05c80651b0290bf4007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018f325cf74e000004030047304502210090e2057d8278de022a1229f5d16ba7d46488b37376b4c525518faf91e80e2326022073b02070264f93a887d6a145904a6c23c807d9701400dd966c66211ab9f94174 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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