castlerockknights.org
Issued by GTS CA 1P5
About this certificate
This digital certificate with serial number b1:e4:b1:c8:f8:2d:0a:93:0e:03:ad:1e:0d:07:d6:97 was issued on by Google Trust Services LLC.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=castlerockknights.org
Google Trust Services LLC
Organization:
Google Trust Services LLC
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): b1:e4:b1:c8:f8:2d:0a:93:0e:03:ad:1e:0d:07:d6:97Serial Number (int): 236460804846615133435733644179354932887
Serial Number lenght: 128 bits, 16 octets
SubjectKeyId: dc:7a:1c:70:9b:0f:cc:1d:10:28:17:76:3a:b8:1e:40:c8:0d:3e:19
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8
Fingerprint (sha1): 37:af:b6:fc:6a:1b:2d:5d:84:96:ec:8e:16:21:9c:51:0e:c9:53:97
Fingerprint (sha256): e4:f1:70:3d:20:f2:0e:69:6a:f5:55:02:d7:53:74:59:df:c9:7f:e6:9f:58:6c:65:b6:b7:53:f5:59:9b:d2:db
Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der
Revocation information
OCSP Server: http://ocsp.pki.goog/s/gts1p5/2fFqGxweTTMCRL Distribution Point: http://crls.pki.goog/gts1p5/kAdzZyWUM0U.crl
Check the revocation status for certificate castlerockknights.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for castlerockknights.org
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Extensions
10 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
castlerockknights.org
Other certificates including the domain name castlerockknights.org
(limited to 100 certificates)
admin.castlerockknights.org
www.tvcscougars.com
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
castlerockknights.org
altavista.sbunified.org
admin.castlerockknights.org
admin.castlerockknights.org
www.lalutheran.org
www.uths.net
admin.castlerockknights.org
meadows.mbusd.org
www.castlerockknights.org
admin.castlerockknights.org
tvcscougars.com
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
castlerockknights.org
www.wvusd.k12.ca.us
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
www.tvcscougars.com
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
castlerockknights.org
altavista.sbunified.org
admin.castlerockknights.org
admin.castlerockknights.org
www.lalutheran.org
www.uths.net
admin.castlerockknights.org
meadows.mbusd.org
www.castlerockknights.org
admin.castlerockknights.org
tvcscougars.com
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
castlerockknights.org
www.wvusd.k12.ca.us
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
Certificate
The complete raw certificate details for castlerockknights.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFbjCCBFagAwIBAgIRALHkscj4LQqTDgOtHg0H1pcwDQYJKoZIhvcNAQELBQAw RjELMAkGA1UEBhMCVVMxIjAgBgNVBAoTGUdvb2dsZSBUcnVzdCBTZXJ2aWNlcyBM TEMxEzARBgNVBAMTCkdUUyBDQSAxUDUwHhcNMjQwNTMxMTg0NDQ4WhcNMjQwODI5 MTg0NDQ3WjAgMR4wHAYDVQQDExVjYXN0bGVyb2Nra25pZ2h0cy5vcmcwggEiMA0G CSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCUypWKXpSBjR0mcvfJpMvuSh7dpbLR AP4u1sYy25vhkP9DjPXI2cJ1HhOPKMda9amfwn1uvAhkZeyUGi9Zup+tlAqCvG7P h4+Sgu2z6sua21rILkkvkPME90HZpooaIoY89Qj8UwnOVSDqVFi2xkpB4rnhUpP6 FflgtvigPCo7KbylN/G0ZTMkBtDFIwAmldr7p7Du7Y6qTcEP0WWUSGQ/qTbIlXB2 aci7ujmoficx9CuSv/rIKFzeMflZbQ5zscHQO6j++u6egzGPUfiePrx4zSQXPK3+ Y/A3i33yd9UF19qfKXHruLxmqHeH1GPcQ4fRT70YMHRRkJwrGgBqDUmjAgMBAAGj ggJ7MIICdzAOBgNVHQ8BAf8EBAMCBaAwEwYDVR0lBAwwCgYIKwYBBQUHAwEwDAYD VR0TAQH/BAIwADAdBgNVHQ4EFgQU3HoccJsPzB0QKBd2OrgeQMgNPhkwHwYDVR0j BBgwFoAU1fyeDd8eyt0Il5duK8VfxSv17LgweAYIKwYBBQUHAQEEbDBqMDUGCCsG AQUFBzABhilodHRwOi8vb2NzcC5wa2kuZ29vZy9zL2d0czFwNS8yZkZxR3h3ZVRU TTAxBggrBgEFBQcwAoYlaHR0cDovL3BraS5nb29nL3JlcG8vY2VydHMvZ3RzMXA1 LmRlcjAgBgNVHREEGTAXghVjYXN0bGVyb2Nra25pZ2h0cy5vcmcwIQYDVR0gBBow GDAIBgZngQwBAgEwDAYKKwYBBAHWeQIFAzA8BgNVHR8ENTAzMDGgL6AthitodHRw Oi8vY3Jscy5wa2kuZ29vZy9ndHMxcDUva0Fkelp5V1VNMFUuY3JsMIIBAwYKKwYB BAHWeQIEAgSB9ASB8QDvAHYA7s3QZNXbGs7FXLedtM0TojKHRny87N7DUUhZRnEf tZsAAAGP0C7yxQAABAMARzBFAiEAu8YdxT1LfPHftfD8MhtzNop6sY+QELmyqIch QA3XbcYCIAM4W6+7aBjAP+hxBRrVkl72Ip4/n/LF8WjYQczrXGWSAHUA2ra/az+1 tiKfm8K7XGvocJFxbLtRhIU0vaQ9MEjX+6sAAAGP0C7y+wAABAMARjBEAiAP2XsQ BRusCtSh2c3HivqhMlBKUs1xE7jd09r4sWZeEAIgawWOyMvnat7lP09v5k991WNv eXq28JJxVCOcUDdm1xcwDQYJKoZIhvcNAQELBQADggEBAF0z1LqZukMb/J2GTQYW 3ZyMeicpw/enjdXX7GK1JsobPZYY0u6kFSMmRyK7SR6pgUSHIWQdU8AnSmxnMT2N gcuKAdMPe6g/c/rOJcdkJyS+srhOPfgJmuNnotWj3gx94G72VRWI6ybk/qXQ1J89 KJdKo5eAOdtiVGyHGwKzv9pp208YfGoILITMejHaqpcV7XfQ55x907JkMZ78lePF w60FogPa51P6eV9B90K4jc8qL/CGS5DIFbkw0syXsUxuG4Y7Bx1ve4SKPjYf7ViM fxlvMZeKSyLKdS38Jo7/SOMOUhAPThwOCQZEsg++o6o1zMrm9qPQMqjd7b0zuVm4 r80= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlMqVil6UgY0dJnL3yaTL 7koe3aWy0QD+LtbGMtub4ZD/Q4z1yNnCdR4TjyjHWvWpn8J9brwIZGXslBovWbqf rZQKgrxuz4ePkoLts+rLmttayC5JL5DzBPdB2aaKGiKGPPUI/FMJzlUg6lRYtsZK QeK54VKT+hX5YLb4oDwqOym8pTfxtGUzJAbQxSMAJpXa+6ew7u2Oqk3BD9FllEhk P6k2yJVwdmnIu7o5qH4nMfQrkr/6yChc3jH5WW0Oc7HB0Duo/vrunoMxj1H4nj68 eM0kFzyt/mPwN4t98nfVBdfanylx67i8Zqh3h9Rj3EOH0U+9GDB0UZCcKxoAag1J owIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 236460804846615133435733644179354932887 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-31 18:44:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-29 18:44:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'castlerockknights.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18783167098940991267386430178484802958428690100702207224578296694653623981488757571928482000635840827173639746063800849126746156319884352364785689255613276256942084241258684862057833992034685121994822634725413464842048539099273213865635399201448633269519838308090475112853057517433914872550258088670627818600982948691655133346308392300339674003678207274885384518680438630438408482865882594100198547390882724704728379757832169494455240398516093363045873020281678381278680287889110254126340846086041895779329110151129721347455691659569313566615620559480174554642108899134369200332023709092151661093464363158453997095331 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) dc7a1c709b0fcc1d102817763ab81e40c80d3e19 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/2fFqGxweTTM' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'castlerockknights.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/kAdzZyWUM0U.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018fd02ef2c50000040300473045022100bbc61dc53d4b7cf1dfb5f0fc321b73368a7ab18f9010b9b2a88721400dd76dc6022003385bafbb6818c03fe871051ad5925ef6229e3f9ff2c5f168d841cceb5c6592007500dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018fd02ef2fb000004030046304402200fd97b10051bac0ad4a1d9cdc78afaa132504a52cd7113b8ddd3daf8b1665e1002206b058ec8cbe76adee53f4f6fe64f7dd5636f797ab6f0927154239c503766d717 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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