DV SSL/TLS Certificate for www.bm5.elchango.ca

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the www.bm5.elchango.ca DV SSL/TLS Certificate

This certificate with serial number 05:d2:3a:ec:46:90:ee:41:72:b6:45:20:73:18:e6:6c:e4:95 for www.bm5.elchango.ca was issued on by Let's Encrypt.

With 2 subject alternative names, this certificate can be used to secure multiple FQDNs. This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.bm5.elchango.ca provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 05:d2:3a:ec:46:90:ee:41:72:b6:45:20:73:18:e6:6c:e4:95
Serial Number (int): 507099048749263714112275736023288710489237
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: d1:ac:ad:68:d8:43:10:eb:38:62:ce:a3:8b:12:4d:87:38:79:77:c0
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): 02:81:93:6f:d8:3e:df:8e:65:85:11:a3:50:8a:8c:2b:55:d7:2d:41
Fingerprint (SHA-256): 7d:72:e3:62:a6:d1:00:a1:02:6a:f7:1c:50:a6:9c:c6:c7:32:13:fa:f7:34:0f:4b:9f:25:a3:26:3c:8f:0d:ef

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/22.crl

Check the revocation status for certificate www.bm5.elchango.ca
2
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.bm5.elchango.ca

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

X.509 Certificate

The complete raw X.509 certificate details for www.bm5.elchango.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAqJr/G5ia1k52e2EUSOH1
L+jkANGfDes0mKnxhOK+sK1Qa8zZAcnwy7rEF3bwr7/cvDOwzjN4ORN0HaZHeWYF
NDE3VSFOJY/0nBz+Pn+xBZgF3s00NvIDV9XtjgQe1v1nxxD+/kv47prt1rBh/Vdn
spWjfssu+A1e8LW+FtX7xRVajC1M2D/hWgRJ+F3WoxT/mUJpyGj2C7dqWxMyjSLm
vQeTOnig8ts0cj7R48QvJLCKVr0HijyjsG7+mJkJc6dnFj4j6Fg7K2j4Xvil7YT9
TOy5/KWAzR3wK0cekoatM73RbLkj+xfGhSCr80Frq0W95Bl89L2WGe8lCcKd5tBc
/QIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 507099048749263714112275736023288710489237
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-07-09 06:17:15 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-10-07 06:17:14 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bm5.elchango.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21284466864407995013911934880799090535086947556422296373800642409972615382574071463780484810643227585159085265094831583126586189679409307518656629806603003632264853764787886990790585299191249472254578542986791284774621769134130809456047290889729012990164526016445620079900595814273238207171630130403423125873523400247231196051643354989307218639538926002644259359507398488488199682698689442786123919795844564802151904570319056306011637314741024753739267302227124893092861753829711720475910266129891720297970806405751632492294306734087804101940914747038973491424895110422882442727837625233787787178288553591715216252157
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d1acad68d84310eb3862cea38b124d87387977c0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (40 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bm5.elchango.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bm5.elchango.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/22.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007500ed3c4bd6e806c2a4a20057dbcb24e23801df512fedc486c5700f20ddb73e3fe000000197ee0a5ab300000403004630440220592d8ed16f3d3c8b6b56fd34a5f167ab65558c2dea53e5265fa13d697697602602200f29205c0357b16339a6ab3d824995358db0fa56b22a08f7a2ae92d6e012962700770012f14e34bd53724c840619c38f3f7a13f8e7b56287889c6d300584ebe586263a00000197ee0a62840000040300483046022100b03ee1ef8a202ba9b27abfa08c3ebf13efc8a00828c18f6886bd085cd003acd4022100b6f821d88f47dd511d590540c4fe98483b2ae7a0c8fb86b729dadc4bc2e17c5a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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