castlerockknights.org

Issued by GTS CA 1P5

About this certificate

This digital certificate with serial number b1:e4:b1:c8:f8:2d:0a:93:0e:03:ad:1e:0d:07:d6:97 was issued on by Google Trust Services LLC.

This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=castlerockknights.org

Google Trust Services LLC

Organization: Google Trust Services LLC
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): b1:e4:b1:c8:f8:2d:0a:93:0e:03:ad:1e:0d:07:d6:97
Serial Number (int): 236460804846615133435733644179354932887
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: dc:7a:1c:70:9b:0f:cc:1d:10:28:17:76:3a:b8:1e:40:c8:0d:3e:19
AuthorityKeyId: d5:fc:9e:0d:df:1e:ca:dd:08:97:97:6e:2b:c5:5f:c5:2b:f5:ec:b8

Fingerprint (sha1): 37:af:b6:fc:6a:1b:2d:5d:84:96:ec:8e:16:21:9c:51:0e:c9:53:97
Fingerprint (sha256): e4:f1:70:3d:20:f2:0e:69:6a:f5:55:02:d7:53:74:59:df:c9:7f:e6:9f:58:6c:65:b6:b7:53:f5:59:9b:d2:db

Issuing Certificate URL: http://pki.goog/repo/certs/gts1p5.der

Revocation information

OCSP Server: http://ocsp.pki.goog/s/gts1p5/2fFqGxweTTM
CRL Distribution Point: http://crls.pki.goog/gts1p5/kAdzZyWUM0U.crl

Check the revocation status for certificate castlerockknights.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for castlerockknights.org

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication

Extensions

10 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

castlerockknights.org

Other certificates including the domain name castlerockknights.org

(limited to 100 certificates)
admin.castlerockknights.org
www.tvcscougars.com
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
castlerockknights.org
altavista.sbunified.org
admin.castlerockknights.org
admin.castlerockknights.org
www.lalutheran.org
www.uths.net
admin.castlerockknights.org
meadows.mbusd.org
www.castlerockknights.org
admin.castlerockknights.org
tvcscougars.com
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org
castlerockknights.org
www.wvusd.k12.ca.us
admin.castlerockknights.org
admin.castlerockknights.org
admin.castlerockknights.org

Certificate

The complete raw certificate details for castlerockknights.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAlMqVil6UgY0dJnL3yaTL
7koe3aWy0QD+LtbGMtub4ZD/Q4z1yNnCdR4TjyjHWvWpn8J9brwIZGXslBovWbqf
rZQKgrxuz4ePkoLts+rLmttayC5JL5DzBPdB2aaKGiKGPPUI/FMJzlUg6lRYtsZK
QeK54VKT+hX5YLb4oDwqOym8pTfxtGUzJAbQxSMAJpXa+6ew7u2Oqk3BD9FllEhk
P6k2yJVwdmnIu7o5qH4nMfQrkr/6yChc3jH5WW0Oc7HB0Duo/vrunoMxj1H4nj68
eM0kFzyt/mPwN4t98nfVBdfanylx67i8Zqh3h9Rj3EOH0U+9GDB0UZCcKxoAag1J
owIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 236460804846615133435733644179354932887
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Google Trust Services LLC'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GTS CA 1P5'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-31 18:44:48 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-29 18:44:47 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'castlerockknights.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18783167098940991267386430178484802958428690100702207224578296694653623981488757571928482000635840827173639746063800849126746156319884352364785689255613276256942084241258684862057833992034685121994822634725413464842048539099273213865635399201448633269519838308090475112853057517433914872550258088670627818600982948691655133346308392300339674003678207274885384518680438630438408482865882594100198547390882724704728379757832169494455240398516093363045873020281678381278680287889110254126340846086041895779329110151129721347455691659569313566615620559480174554642108899134369200332023709092151661093464363158453997095331
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							dc7a1c709b0fcc1d102817763ab81e40c80d3e19
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName d5fc9e0ddf1ecadd0897976e2bc55fc52bf5ecb8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (108 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.pki.goog/s/gts1p5/2fFqGxweTTM'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://pki.goog/repo/certs/gts1p5.der'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'castlerockknights.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.5.3
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (53 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crls.pki.goog/gts1p5/kAdzZyWUM0U.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018fd02ef2c50000040300473045022100bbc61dc53d4b7cf1dfb5f0fc321b73368a7ab18f9010b9b2a88721400dd76dc6022003385bafbb6818c03fe871051ad5925ef6229e3f9ff2c5f168d841cceb5c6592007500dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018fd02ef2fb000004030046304402200fd97b10051bac0ad4a1d9cdc78afaa132504a52cd7113b8ddd3daf8b1665e1002206b058ec8cbe76adee53f4f6fe64f7dd5636f797ab6f0927154239c503766d717
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		005d33d4ba99ba431bfc9d864d0616dd9c8c7a2729c3f7a78dd5d7ec62b526ca1b3d9618d2eea41523264722bb491ea981448721641d53c0274a6c67313d8d81cb8a01d30f7ba83f73face25c7642724beb2b84e3df8099ae367a2d5a3de0c7de06ef6551588eb26e4fea5d0d49f3d28974aa3978039db62546c871b02b3bfda69db4f187c6a082c84cc7a31daaa9715ed77d0e79c7dd3b264319efc95e3c5c3ad05a203dae753fa795f41f742b88dcf2a2ff0864b90c815b930d2cc97b14c6e1b863b071d6f7b848a3e361fed588c7f196f31978a4b22ca752dfc268eff48e30e52100f4e1c0e090644b20fbea3aa35cccae6f6a3d032a8ddedbd33b959b8afcd