vba-almere.nl
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number 0d:d8:9a:02:54:7b:57:c4:0e:26:b4:91:d9:36:28:23 was issued on by Google Trust Services LLC.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=vba-almere.nl
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 0d:d8:9a:02:54:7b:57:c4:0e:26:b4:91:d9:36:28:23Serial Number (int): 18404623742328569664557176226271602723
Serial Number lenght: 124 bits, 16 octets
SubjectKeyId: a2:2c:33:13:4f:86:be:ac:d0:94:94:5b:0a:73:a4:59:6b:f7:a3:70
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): e7:0c:30:75:7b:22:bc:bd:a0:3a:c9:8c:34:a6:d9:52:a6:6c:c1:c2
Fingerprint (sha256): dd:b7:e2:79:41:cb:bd:3b:ea:08:74:60:65:6b:19:43:9e:ea:7a:af:15:e0:b0:14:a9:58:a6:7d:45:68:3f:d4
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/gdnu6UkAD3UCRL Distribution Point: http://crls.pki.goog/gts1p5/332NU9NogWw.crl
Check the revocation status for certificate vba-almere.nl
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for vba-almere.nl
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
vba-almere.nl
*.vba-almere.nl
*.vba-almere.nl
Other certificates including the domain name vba-almere.nl
(limited to 100 certificates)
vba-almere.nl
vba-almere.nl
support.rollandpole.com
vba-almere.nl
www.vba-almere.nl
support.norwich-school.org.uk
vba-almere.nl
vba-almere.nl
vba-almere.nl
vba-almere.nl
vba-almere.nl
mock.obsmun.org
support.split-apartments-rooms.com
vba-almere.nl
www.vba-almere.nl
support.avran.co.uk
vba-almere.nl
kyc.xstreco.com
vba-almere.nl
event.vba-almere.nl
orientacionalumno.imf.com
www.vba-almere.nl
vba-almere.nl
support.split-apartments-rooms.com
kyc.xstreco.com
support.split-apartments-rooms.com
vba-almere.nl
support.rollandpole.com
vba-almere.nl
www.vba-almere.nl
support.norwich-school.org.uk
vba-almere.nl
vba-almere.nl
vba-almere.nl
vba-almere.nl
vba-almere.nl
mock.obsmun.org
support.split-apartments-rooms.com
vba-almere.nl
www.vba-almere.nl
support.avran.co.uk
vba-almere.nl
kyc.xstreco.com
vba-almere.nl
event.vba-almere.nl
orientacionalumno.imf.com
www.vba-almere.nl
vba-almere.nl
support.split-apartments-rooms.com
kyc.xstreco.com
support.split-apartments-rooms.com
Certificate
The complete raw certificate details for vba-almere.nl in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIQDdiaAlR7V8QOJrSR2TYoIzANBgkqhkiG9w0BAQsFADBG MQswCQYDVQQGEwJVUzEiMCAGA1UEChMZR29vZ2xlIFRydXN0IFNlcnZpY2VzIExM QzETMBEGA1UEAxMKR1RTIENBIDFQNTAeFw0yMzEyMjkxMTQzNTdaFw0yNDAzMjgx MTQzNTZaMBgxFjAUBgNVBAMTDXZiYS1hbG1lcmUubmwwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQDQXUYrs1UH2qPGzG17PVEMEyTRx1kdtTqAzpmPQDfn 7CWT+cKJJXbmftmAHLzI0h0heqbU5KUDR+ng55+55Q7Y4AeRA+igKrtyGnGt2gSd 3iRZHyLl7OyBxO+/ZzGUkzHtkq4B9yb4O/SG8vmnnBoDzcJRRQVTBoSRJC/USgIO J/A2xiObm/bhbC6vDc1q66WDLIlAMbBtyIAkS/XQYTbRnYwGqzd73PGWdFcTPQB9 K01+C7t9S0NSj4ZtHK3KSrX5nnfjQ9gyB65yDX4JLlaCFK9i+29exCx1AXVdOKkM mJw/nscXihslZstKVlQj1fyjzW68wZi29/XG9y3tbdC9AgMBAAGjggKEMIICgDAO BgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYDVR0TAQH/BAIw ADAdBgNVHQ4EFgQUoiwzE0+GvqzQlJRbCnOkWWv3o3AwHwYDVR0jBBgwFoAU1fye Dd8eyt0Il5duK8VfxSv17LgweAYIKwYBBQUHAQEEbDBqMDUGCCsGAQUFBzABhilo dHRwOi8vb2NzcC5wa2kuZ29vZy9zL2d0czFwNS9nZG51NlVrQUQzVTAxBggrBgEF BQcwAoYlaHR0cDovL3BraS5nb29nL3JlcG8vY2VydHMvZ3RzMXA1LmRlcjApBgNV HREEIjAggg12YmEtYWxtZXJlLm5sgg8qLnZiYS1hbG1lcmUubmwwIQYDVR0gBBow GDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGgL6AthitodHRw Oi8vY3Jscy5wa2kuZ29vZy9ndHMxcDUvMzMyTlU5Tm9nV3cuY3JsMIIBAwYKKwYB BAHWeQIEAgSB9ASB8QDvAHUAdv+IPwq2+5VRwmHM9Ye6NLSkzbsp3GhCCp/mZ0xa OnQAAAGMtZpMmAAABAMARjBEAiBW2d6+H3SnWhi+3hxLTNDI7xMGtdn5tnzWrWYe hbfEsQIgK9XljBtBChEE69mrqtjo9aPAgECcm28qMV3l4+TJuugAdgBVgdTCFpA2 AUrqC5tXPFPwwOQ4eHAlCBcvo6odBxPTDAAAAYy1mkx/AAAEAwBHMEUCIGL94zU0 m7N2b6thpkuzCkTQBH734zwwcY2+DWwGskpLAiEA67LGbSYTl74XR4uc9okqO3iu 0a9dlfy7QqaL10oc2VQwDQYJKoZIhvcNAQELBQADggEBAB2IbBUwwkHZhZnquXk4 f6hdweDBYfIcV8J3CmOyICzFIGQt9Z0agyj6hv2WNDD7GzcK1VnNfFsaQGWdvnUB AmhypEz492nF7m/8jzJjvHP+UUz+MnGUfEjtxE37MPoTOMw70CWrtqOx9wtRR18k dkra8PgjF27967pQ2qsol/bPBaOd8pYNhNtPYu9/evnXb2d2ar4DYf0CXGpPkdWM NDi072ZBq7v/xNwWGl9QbpqlyT7SEBS6sPqCCzuy7ILVy5871ajYKTnDP/aQw+y/ Ro5Zh7Irl2pzBVFzD/3acKYzHcmMV5/RD0VcyqVpo2tU3nPSLXigEe7XS2whwX1q i44= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0F1GK7NVB9qjxsxtez1R DBMk0cdZHbU6gM6Zj0A35+wlk/nCiSV25n7ZgBy8yNIdIXqm1OSlA0fp4OefueUO 2OAHkQPooCq7chpxrdoEnd4kWR8i5ezsgcTvv2cxlJMx7ZKuAfcm+Dv0hvL5p5wa A83CUUUFUwaEkSQv1EoCDifwNsYjm5v24Wwurw3NauulgyyJQDGwbciAJEv10GE2 0Z2MBqs3e9zxlnRXEz0AfStNfgu7fUtDUo+GbRytykq1+Z5340PYMgeucg1+CS5W ghSvYvtvXsQsdQF1XTipDJicP57HF4obJWbLSlZUI9X8o81uvMGYtvf1xvct7W3Q vQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 18404623742328569664557176226271602723 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-29 11:43:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-28 11:43:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'vba-almere.nl' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26303562608042538027147036901098430223910482156563205920075555357115198995442061712656372572020107284860814581858563401926960052758323774740187786388984221924741825867793098918474461810030919841514417268622445941870018293812827448344324983649066067068183271684762584299785761724775006697235979658103600189762592596622619878771741729015938898927623576348881948407143864674372935305074084692804113775398599511907733521524152080474632593304570498489398847227107642316277889051588511872902064813465928097986287622124247229515284743725335435432866576188915360672944088255403338719838074275183588670148818867568663621128381 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a22c33134f86beacd094945b0a73a4596bf7a370 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/gdnu6UkAD3U' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'vba-almere.nl' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.vba-almere.nl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/332NU9NogWw.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018cb59a4c980000040300463044022056d9debe1f74a75a18bede1c4b4cd0c8ef1306b5d9f9b67cd6ad661e85b7c4b102202bd5e58c1b410a1104ebd9abaad8e8f5a3c080409c9b6f2a315de5e3e4c9bae80076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c0000018cb59a4c7f0000040300473045022062fde335349bb3766fab61a64bb30a44d0047ef7e33c30718dbe0d6c06b24a4b022100ebb2c66d261397be17478b9cf6892a3b78aed1af5d95fcbb42a68bd74a1cd954 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 001d886c1530c241d98599eab979387fa85dc1e0c161f21c57c2770a63b2202cc520642df59d1a8328fa86fd963430fb1b370ad559cd7c5b1a40659dbe7501026872a44cf8f769c5ee6ffc8f3263bc73fe514cfe3271947c48edc44dfb30fa1338cc3bd025abb6a3b1f70b51475f24764adaf0f823176efdebba50daab2897f6cf05a39df2960d84db4f62ef7f7af9d76f67766abe0361fd025c6a4f91d58c3438b4ef6641abbbffc4dc161a5f506e9aa5c93ed21014bab0fa820b3bb2ec82d5cb9f3bd5a8d82939c33ff690c3ecbf468e5987b22b976a730551730ffdda70a6331dc98c579fd10f455ccaa569a36b54de73d22d78a011eed74b6c21c17d6a8b8e