freedomap.ca
Issued by R3
About this certificate
This digital certificate with serial number 03:09:45:4b:7f:5b:b0:46:73:f5:ac:bb:80:14:1f:3c:ee:ca was issued on by Let's Encrypt.
With 7 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=freedomap.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:09:45:4b:7f:5b:b0:46:73:f5:ac:bb:80:14:1f:3c:ee:caSerial Number (int): 264491507834673072405044745278206259293898
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 36:1a:11:7c:a9:d8:fe:fb:36:c4:d2:14:b7:28:c2:16:4b:46:de:8d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): ca:fc:80:ec:5e:8b:a3:2d:87:68:d4:30:91:53:05:40:fa:cb:cd:dd
Fingerprint (sha256): 0a:1d:63:68:a7:4a:aa:19:02:00:07:96:0e:84:31:93:e1:93:a5:d9:62:e2:21:e1:72:b3:8d:3b:d2:af:5c:ec
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate freedomap.ca
7
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for freedomap.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alanesears.net.lawyerfordads.com
apedup.com
charlottemodular.com
freedomap.ca
hydra-tight.com
trail50.club
www.alpacapillows.com
apedup.com
charlottemodular.com
freedomap.ca
hydra-tight.com
trail50.club
www.alpacapillows.com
Other certificates including the domain name freedomap.ca
(limited to 100 certificates)
Certificate
The complete raw certificate details for freedomap.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFYjCCBEqgAwIBAgISAwlFS39bsEZz9ay7gBQfPO7KMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MTMwNjUyNDlaFw0yMzEyMTIwNjUyNDhaMBcxFTATBgNVBAMT DGZyZWVkb21hcC5jYTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKpd wBkBdKUWJEs0wJ7B89D+BGR7dRi3vTnz/zpJwbIDGwg12oljzY8IiTgA6JiaRKGk 3XUxdsn4Bn9WwW3cq5uAzwixkAo1aEItYjEFl7uudrRmpRVD9SyjcxicUQIsk91N DXCPdkEGxuSU2t/w9L08dbrOkVh51uHL3EY5vGs9XH1Zmn2zZ5LHwG8itlZaOwuz Ilc21A6Am7qB1J9r9m1fBS2NqpIiCkSv3cLEBSgorHv6qVc7zVRo0ydYZ1FCQs7h po94P8LyRY5LpR/8EKAPwzyDs9aGZEVxvXJTw2oyUoeV+3t+0HCFFNIhLUfQScd4 aixQB2aEq4qKtD3H+DcCAwEAAaOCAoswggKHMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUNhoRfKnY/vs2xNIUtyjCFktG3o0wHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w gZMGA1UdEQSBizCBiIIgYWxhbmVzZWFycy5uZXQubGF3eWVyZm9yZGFkcy5jb22C CmFwZWR1cC5jb22CFGNoYXJsb3R0ZW1vZHVsYXIuY29tggxmcmVlZG9tYXAuY2GC D2h5ZHJhLXRpZ2h0LmNvbYIMdHJhaWw1MC5jbHVighV3d3cuYWxwYWNhcGlsbG93 cy5jb20wEwYDVR0gBAwwCjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdgC3Pvsk35xNunXyOcW6WPRsXfxCz3qfNcSeHQmBJe20mQAAAYqNh063AAAE AwBHMEUCIQCnppS9UJJ3719sTYcXnwnlspXrhdb3bxEKsHEBqLDUPwIgEBOsJAhl 9uB4MVkoZDhWTsPZOF+mQVTSEEuJGvrISm4AdgB6MoxU2LcttiDqOOBSHumEFnAy E4VNO9IrwTpXo1LrUgAAAYqNh07YAAAEAwBHMEUCIQCY7THgxf3PnpRhZ5Vj66YD bE/4VM1FR452YcAqRPA8HAIgeF1s63r1frWWFZJjxSI8qPL8bqYpdKUOr+Sw9Jkh V9UwDQYJKoZIhvcNAQELBQADggEBABUEhKKuJtXlQwXQEiO2VNsWDCMyynuwnC0t 2UuOJiLikvR0Nyk1AvdgQq/zwCKD7E4KlvwV7MKOVSMKQvUkxn3IrrX19OCI7l1N fUX5BarzNI9GHE8XnX2eSPxzPNM8jeNAUr+0alfz0A4wVmqmrPFiUURQrNurZAp6 9+WOFwL1Stb4XImEIrLwq5Ex24/ZPMzNdxyLU+cam7ItbSuxxpLTN1L5iAcZhDI0 V9v8KJw9QghwfUUGhUj/oVcRrphx0XTAh4aQWvSMC88kK5YT4T67Raf1WE1Lat87 8b3QaJ48xx19BX5XAI78mvchiINPocldTLiG7sRtsGuCEXp/baM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAql3AGQF0pRYkSzTAnsHz 0P4EZHt1GLe9OfP/OknBsgMbCDXaiWPNjwiJOADomJpEoaTddTF2yfgGf1bBbdyr m4DPCLGQCjVoQi1iMQWXu652tGalFUP1LKNzGJxRAiyT3U0NcI92QQbG5JTa3/D0 vTx1us6RWHnW4cvcRjm8az1cfVmafbNnksfAbyK2Vlo7C7MiVzbUDoCbuoHUn2v2 bV8FLY2qkiIKRK/dwsQFKCise/qpVzvNVGjTJ1hnUUJCzuGmj3g/wvJFjkulH/wQ oA/DPIOz1oZkRXG9clPDajJSh5X7e37QcIUU0iEtR9BJx3hqLFAHZoSrioq0Pcf4 NwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 264491507834673072405044745278206259293898 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-13 06:52:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-12 06:52:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'freedomap.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21506741880392514634371488251175328671223805773986984558064930140821281064187202634690771246176273451524643131745546635386040346089912471928633408110216844816696281265936402365291804214051655927483313976690293367390306515082982471025741052064853033302871853825245724755214647911283164385089630266646792353199352718918018294746599654772539161919968019661191199904150287322617640355275736577359626083957398224963214470567987415472308227591628919190314906970532632460986349503082462162365947512374276452465515461785134657751109904390836921784604982328793642108781337125445872686682207005309219457500904951798451965261879 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 361a117ca9d8fefb36c4d214b728c2164b46de8d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (139 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alanesears.net.lawyerfordads.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'apedup.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'charlottemodular.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'freedomap.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hydra-tight.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'trail50.club' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.alpacapillows.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a8d874eb70000040300473045022100a7a694bd509277ef5f6c4d87179f09e5b295eb85d6f76f110ab07101a8b0d43f02201013ac240865f6e0783159286438564ec3d9385fa64154d2104b891afac84a6e0076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018a8d874ed8000004030047304502210098ed31e0c5fdcf9e9461679563eba6036c4ff854cd45478e7661c02a44f03c1c0220785d6ceb7af57eb596159263c5223ca8f2fc6ea62974a50eafe4b0f4992157d5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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