kolibri.ca

Issued by R3

About this certificate

This digital certificate with serial number 04:6b:a8:1e:6e:8e:68:fc:02:c0:ee:29:fb:74:b2:80:9e:b2 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=kolibri.ca

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:6b:a8:1e:6e:8e:68:fc:02:c0:ee:29:fb:74:b2:80:9e:b2
Serial Number (int): 385082825302126970670594291204752333119154
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: e1:36:65:8c:61:9b:e9:4e:27:a9:f8:0f:13:a7:3e:42:ab:04:00:3b
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 9d:a6:19:86:75:1b:e1:7e:f8:a3:2c:9f:29:f3:39:fd:86:68:48:e6
Fingerprint (sha256): 04:81:ad:ed:53:7a:7a:8f:28:13:dd:dd:44:bc:3b:ab:ed:74:b4:63:6d:ef:42:99:96:c9:eb:44:ce:99:47:6c

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate kolibri.ca

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for kolibri.ca

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.kolibri.ca
kolibri.ca

Other certificates including the domain name kolibri.ca

(limited to 100 certificates)
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
www.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
az-3cxftp.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
spamportal.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
clients.kolibri.ca
kolibri.ca
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
livicare.liviathome.com
kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
www.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
clients.kolibri.ca
helpdesk.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
support.designkarigor.com
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
www.kolibri.ca
sni247930.cloudflaressl.com
sni247930.cloudflaressl.com
helpdesk.kolibri.ca
clients.kolibri.ca
sni247930.cloudflaressl.com
support.designkarigor.com
sni247930.cloudflaressl.com
kolibri.ca
www.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca
clients.kolibri.ca
kolibri.ca
helpdesk.kolibri.ca
sni247930.cloudflaressl.com
kolibri.ca

Certificate

The complete raw certificate details for kolibri.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyit0Xc0wJqmYYo1edg5Q
P8reF9v1rmTDP4hcsVsJvAGRs1tfXl4APYlCtekgIWOVOGO8h1/llP1/L7hNttAW
+quTXoUmkV0VHfUczPSKiGW3QzRkCbvSI2sheGQyFChav9c8Cpmw4INirHIKzDnv
nYPTaDpZewOKRj6hTpuGCbx7Odmqi49+EcHmr0aQGGNGatsHE+O/oXGiG3/ltY9I
XMTcuAEzh2MAqCQUA+WDd/t+2ryCGaoqMTAeDDVsHnHRsTJowqci5LqZCfMsA9hh
jDusVChc3TQHolD29eGxi0WwOym8VoIoVtNYX7CIub7ghkvzR4Ka9AQyh8e6jQXF
BwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 385082825302126970670594291204752333119154
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-02-29 09:59:27 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-29 09:59:26 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'kolibri.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25521565843495616613966155523354866553673269782687029542044964075382801058745951659727659793894352465634215113022255781885057880163895816135398198355636990915360674320934177854114222306075433819066885297686743390273302183281714330680332433478401222936612631073001123833791625839154488855458552430753412129103303618895460746734032623238631897583550206384663373821121180391935919863538557517955330407721957646925119242181493777739252286920063870826225790080748071675050920800839124480542283943125047991296915910759234976293000861250143091956450047775311252117473420216219573097944399502820753570317609995997232794813703
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e136658c619be94e27a9f80f13a73e42ab04003b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.kolibri.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kolibri.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018df484e8b10000040300473045022100d84ca7e736bc5b3a8c44b827ca8722d9b6d60f302e237893e4eea07318c1818a02204905a8228d0b1ada8f8eab1c5d3586910d67750e1b86da0cc034b8344bbbf47000750076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018df484e908000004030046304402207723eaba456a02fd9057458b3cd29c5be35428a1367ba6b655292d4263edb60d02207060ea159f09200e054c9d1fef4da33173baca41f74f706ee838b0fd14027672
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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