cstrom.com
Issued by GTS CA 1D4
About this certificate
This digital certificate with serial number 26:10:bc:c1:b7:f0:86:63:12:2e:fe:a2:3d:49:47:c7 was issued on by Google Trust Services LLC.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=cstrom.com
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 26:10:bc:c1:b7:f0:86:63:12:2e:fe:a2:3d:49:47:c7Serial Number (int): 50597569030530745798118304791791224775
Serial Number lenght: 126 bits, 16 octets
SubjectKeyId: c7:00:fb:a6:84:4c:50:50:e2:00:93:0f:99:54:5e:d7:ce:f7:57:8a
AuthorityKeyId: 25:e2:18:0e:b2:57:91:94:2a:e5:d4:5d:86:90:83:de:53:b3:b8:92
Fingerprint (sha1): 32:72:6d:1c:96:88:83:9e:b0:d6:99:c4:bb:8c:c1:d2:88:d8:59:aa
Fingerprint (sha256): d7:d7:96:4e:fa:8f:33:ed:fe:ac:8c:9b:d6:12:65:11:2f:a3:28:0b:59:96:96:d0:92:d0:aa:4a:03:63:ee:01
Issuing Certificate URL: http://pki.goog/repo/certs/gts1d4.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1d4/2I7q0_U7yDECRL Distribution Point: http://crls.pki.goog/gts1d4/O18aGqNGnqY.crl
Check the revocation status for certificate cstrom.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cstrom.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cstrom.com
Other certificates including the domain name cstrom.com
(limited to 100 certificates)
cstrom.com
www.cstrom.com
cstrom.com
www.cstrom.com
cstrom.com
cstrom.com
www.cstrom.com
www.cstrom.com
cstrom.com
www.cstrom.com
cstrom.com
www.cstrom.com
www.cstrom.com
cstrom.com
www.cstrom.com
www.cstrom.com
cstrom.com
cstrom.com
cstrom.com
cstrom.com
cstrom.com
www.cstrom.com
www.cstrom.com
www.cstrom.com
cstrom.com
cstrom.com
www.cstrom.com
www.cstrom.com
www.cstrom.com
www.cstrom.com
cstrom.com
www.cstrom.com
cstrom.com
www.cstrom.com
cstrom.com
cstrom.com
www.cstrom.com
www.cstrom.com
cstrom.com
www.cstrom.com
cstrom.com
www.cstrom.com
www.cstrom.com
cstrom.com
www.cstrom.com
www.cstrom.com
cstrom.com
cstrom.com
cstrom.com
cstrom.com
cstrom.com
www.cstrom.com
www.cstrom.com
www.cstrom.com
cstrom.com
cstrom.com
www.cstrom.com
www.cstrom.com
www.cstrom.com
www.cstrom.com
cstrom.com
Certificate
The complete raw certificate details for cstrom.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFWjCCBEKgAwIBAgIQJhC8wbfwhmMSLv6iPUlHxzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFENDAeFw0yNDAxMDMxNDI2NDJaFw0yNDA0MDIx NTE1MzNaMBUxEzARBgNVBAMTCmNzdHJvbS5jb20wggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCupJv4scEAC6STcQFBARONX0kIDyx7TNYNMxuad95nLumC uieaCxP/gyfhUvC5BqkXtFF9JfI1okK/z5BiQrM5TTqXUqDByNShHOeBOjhAvX0/ s/7TyCBM4rCxvKCFMKx1teNLuw8PGNNDTzz2Jq0MhbR1SQcKyaHk3RG6vx5A+vkb C7dlApZoqmWs5rzmQUhIe2tUaMpvX3h4+x5SO/b0BdYgPmEthe/muBf9ksu0+wgn gx6Rajq4dRhNj5e5szY2uQXWY1rY3/mlMYmoA53BFPC/3qQB7X5pt98VEYxELQKR ekbBk/mX/X9mJ6X1NHF4mVkB1/nrS3quiusZkXvvAgMBAAGjggJzMIICbzAOBgNV HQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIwADAd BgNVHQ4EFgQUxwD7poRMUFDiAJMPmVRe1873V4owHwYDVR0jBBgwFoAUJeIYDrJX kZQq5dRdhpCD3lOzuJIweAYIKwYBBQUHAQEEbDBqMDUGCCsGAQUFBzABhilodHRw Oi8vb2NzcC5wa2kuZ29vZy9zL2d0czFkNC8ySTdxMF9VN3lERTAxBggrBgEFBQcw AoYlaHR0cDovL3BraS5nb29nL3JlcG8vY2VydHMvZ3RzMWQ0LmRlcjAVBgNVHREE DjAMggpjc3Ryb20uY29tMCEGA1UdIAQaMBgwCAYGZ4EMAQIBMAwGCisGAQQB1nkC BQMwPAYDVR0fBDUwMzAxoC+gLYYraHR0cDovL2NybHMucGtpLmdvb2cvZ3RzMWQ0 L08xOGFHcU5HbnFZLmNybDCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3AO7N0GTV 2xrOxVy3nbTNE6Iyh0Z8vOzew1FIWUZxH7WbAAABjM/vHBIAAAQDAEgwRgIhALQq uRh1o0m42j7fQgGTfBNy9io7+NVOCXx4JXH/xYuzAiEAvD+NdRSjxNNLDjSWYhQP Hndbp9faTVGarMhBybSJD5oAdwBVgdTCFpA2AUrqC5tXPFPwwOQ4eHAlCBcvo6od BxPTDAAAAYzP7xwnAAAEAwBIMEYCIQDVJDpuslWWpjj/L9I3qB88bNiUmYIsz+ae P76/nS+QVwIhANmaXQEHmNEtyAqRror9F7riwJlO+ocN46V8a0JQZ3mIMA0GCSqG SIb3DQEBCwUAA4IBAQBtlR/BMy7B3iIk9FvhFwX2JcO+nLC2ih5/DsIV2FAoS+ZY 1s0lcpPB+MJBUAdtZKgdr+z6e08BhBbC2SexldiNvVYBApjbPvSVINWZyiAdgDZu +ptljXodhz2DqQ/DWLvP9AvA/Ro1R++D0VRDXFqgSvlumSbpMYTr3AtdNU6zxyfu 2hjx0HNey2JmdPW1fvgE+G9YjQJ/D/H55ill6Kr8nxcQD4piDCmqpowwqnzTFqgI R/TD7SO/6M0LUsVGonP9z67SJFjJZBjpmmVjPe9hCqoU7LTLF60zjU9DIJfJ9UCO UCV0EmyUI7DDQIS9AsA3xGR91ckyi3QpObg0iKQ0 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArqSb+LHBAAukk3EBQQET jV9JCA8se0zWDTMbmnfeZy7pgronmgsT/4Mn4VLwuQapF7RRfSXyNaJCv8+QYkKz OU06l1KgwcjUoRzngTo4QL19P7P+08ggTOKwsbyghTCsdbXjS7sPDxjTQ0889iat DIW0dUkHCsmh5N0Rur8eQPr5Gwu3ZQKWaKplrOa85kFISHtrVGjKb194ePseUjv2 9AXWID5hLYXv5rgX/ZLLtPsIJ4MekWo6uHUYTY+XubM2NrkF1mNa2N/5pTGJqAOd wRTwv96kAe1+abffFRGMRC0CkXpGwZP5l/1/Ziel9TRxeJlZAdf560t6rorrGZF7 7wIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 50597569030530745798118304791791224775 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1D4' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-03 14:26:42 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 15:15:33 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cstrom.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 22046636917254600935462573239525322552183550932356937837514381975263865200250761505478655058452792636038945431922017905159382758469910933965634478717865647406438806753083482794677191616723729957980914450707898855116820858191958625439983551721666416342992424059145343547723462722595456611303157897041622868777435738158665154162349391031717464439990956484526026141206266164852380176122830891896194252774947136986097952166604053938416500087564058310133539935935994282130494583289015423891403673820784935288242815556706768038107182822895223340362724767642998637455152760492286878333132606411097308601443046318054445251567 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c700fba6844c5050e200930f99545ed7cef7578a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 25e2180eb25791942ae5d45d869083de53b3b892 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1d4/2I7q0_U7yDE' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1d4.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cstrom.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1d4/O18aGqNGnqY.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018ccfef1c120000040300483046022100b42ab91875a349b8da3edf4201937c1372f62a3bf8d54e097c782571ffc58bb3022100bc3f8d7514a3c4d34b0e349662140f1e775ba7d7da4d519aacc841c9b4890f9a0077005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c0000018ccfef1c270000040300483046022100d5243a6eb25596a638ff2fd237a81f3c6cd89499822ccfe69e3fbebf9d2f9057022100d99a5d010798d12dc80a91ae8afd17bae2c0994efa870de3a57c6b4250677988 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 006d951fc1332ec1de2224f45be11705f625c3be9cb0b68a1e7f0ec215d850284be658d6cd257293c1f8c24150076d64a81dafecfa7b4f018416c2d927b195d88dbd56010298db3ef49520d599ca201d80366efa9b658d7a1d873d83a90fc358bbcff40bc0fd1a3547ef83d154435c5aa04af96e9926e93184ebdc0b5d354eb3c727eeda18f1d0735ecb626674f5b57ef804f86f588d027f0ff1f9e62965e8aafc9f17100f8a620c29aaa68c30aa7cd316a80847f4c3ed23bfe8cd0b52c546a273fdcfaed22458c96418e99a65633def610aaa14ecb4cb17ad338d4f432097c9f5408e502574126c9423b0c34084bd02c037c4647dd5c9328b742939b83488a434