*.psplegal.ca

Issued by R3

About this certificate

This digital certificate with serial number 03:16:78:c4:ba:a1:fb:4b:00:d4:90:fb:a4:fe:55:ff:a9:f0 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=*.psplegal.ca

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 03:16:78:c4:ba:a1:fb:4b:00:d4:90:fb:a4:fe:55:ff:a9:f0
Serial Number (int): 268983598702581540721859631480597706156528
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 9e:85:ca:45:2e:92:1c:fc:b5:95:ce:63:e5:b7:90:63:59:c9:a9:fc
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 9c:19:79:1c:61:9b:f3:0d:89:f6:e0:73:26:6f:be:2a:53:b4:2c:03
Fingerprint (sha256): 14:88:d3:2c:29:fa:21:43:ce:aa:76:fe:4e:7a:98:25:2d:76:07:c6:fc:f8:bd:26:64:2e:da:ce:bf:6d:0e:27

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate *.psplegal.ca

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for *.psplegal.ca

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

*.psplegal.ca
psplegal.ca

Other certificates including the domain name psplegal.ca

(limited to 100 certificates)
support.psplegal.ca
support.psplegal.ca
*.psplegal.ca
assist.broxelbroadband.com
assist.nmrevents.com
*.psplegal.ca
assist.fusiongroupusa.com
assist.fusiongroupusa.com
assist.broxelbroadband.com
assist.broxelbroadband.com
*.psplegal.ca
assist.fusiongroupusa.com
assist.fusiongroupusa.com
assist.fusiongroupusa.com
help.rubieraproductions.com
assist.fusiongroupusa.com
assist.fusiongroupusa.com
assist.broxelbroadband.com
support.psplegal.ca
assist.fusiongroupusa.com
help.rubieraproductions.com
support.psplegal.ca
help.rubieraproductions.com
*.psplegal.ca
help.rubieraproductions.com
assist.nmrevents.com
assist.nmrevents.com
assist.nmrevents.com

Certificate

The complete raw certificate details for *.psplegal.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIE8zCCA9ugAwIBAgISAxZ4xLqh+0sA1JD7pP5V/6nwMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yNDA0MTQxMjEzNDBaFw0yNDA3MTMxMjEzMzlaMBgxFjAUBgNVBAMM
DSoucHNwbGVnYWwuY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDI
IFUT1HsOhJb5DOl69DVTxH74TJAV1ayo28SeZUpGeknIRqTnfIs5QWQlBd9QOYyq
DxdRUhewn2xFWIh8aaTNlUZQmPYW2CZ22u61WzsBSxLMHjnH0TJKHND0XP9cKJLl
48QpA3kus+GM9CH0P2sjnJcBxQJaI+zpI9uMJwJXUbHiLFZiY6ZPmlRA3pSCgV0T
gtuYwCcglQT2rShOSdbSw1Kb0w4qxM7np/W20sx4VWDvn/jHLyeC09WoSuWb4Xct
rPLqyGfFc5+AuXULKDLyd8kWTRyjY8OvvcJbr4jCWirBEhg1PRVIlTUup0dezYL2
KCscJ/sZuwr77jGyXiV5AgMBAAGjggIbMIICFzAOBgNVHQ8BAf8EBAMCBaAwHQYD
VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O
BBYEFJ6FykUukhz8tZXOY+W3kGNZyan8MB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ
QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz
Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv
MCUGA1UdEQQeMByCDSoucHNwbGVnYWwuY2GCC3BzcGxlZ2FsLmNhMBMGA1UdIAQM
MAowCAYGZ4EMAQIBMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYASLDja9qmRzQP
5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGO3L31SgAABAMARzBFAiEAi4bzAJTm
P81hxFqNU1Sw/POg6bcVUXHhh+yyh1IwjhcCIB26D6+YK1eQobKuAwQ+PTgtecAR
a2O1/yj2LVB6BTXBAHUAPxdLT9ciR1iUHWUchL4NEu2QN38fhWrrwb8ohez4ZG4A
AAGO3L31UgAABAMARjBEAiAw/CDkAcq5lftdwzWDEQbsqDxB1qFXbfoTu9KC/SHO
qAIgeGaHzcgpobMgtN5P+iG01YhdzlQk2VNkcvvz3Q0mkeowDQYJKoZIhvcNAQEL
BQADggEBAKo4qysHgggt5z1YW49GzNPlzPLw+kHySQR8mplvZXQAMzThED9uQNpD
0RNpSsblTvhMBYi8Ce2GzodZtKyXehdErU+wpfXelW4cQmab8usd9ZyAV8k8gD0u
BCZ1b/JVIHpfbmtpwJwTaimA+3l3z5+6i4rFhyHd0pAMNBJMC3ezRBC+emkgQmL8
x79mdox4eK3XBf+pbq2GqXNKLz0GwX8xWDpLhTy6JvERBdLvJ8hrFGcBNtz5NQn8
XTNnuttbMwq61kMOhhQgYyHaqXushFEFkhGJjliri0dlPIR0OP8RfleJg1nXvu4w
ldYKW0Bg4+GN9K82T2XaY0jMAOD4/Cg=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyCBVE9R7DoSW+QzpevQ1
U8R++EyQFdWsqNvEnmVKRnpJyEak53yLOUFkJQXfUDmMqg8XUVIXsJ9sRViIfGmk
zZVGUJj2FtgmdtrutVs7AUsSzB45x9EyShzQ9Fz/XCiS5ePEKQN5LrPhjPQh9D9r
I5yXAcUCWiPs6SPbjCcCV1Gx4ixWYmOmT5pUQN6UgoFdE4LbmMAnIJUE9q0oTknW
0sNSm9MOKsTO56f1ttLMeFVg75/4xy8ngtPVqErlm+F3Lazy6shnxXOfgLl1Cygy
8nfJFk0co2PDr73CW6+IwloqwRIYNT0VSJU1LqdHXs2C9igrHCf7GbsK++4xsl4l
eQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 268983598702581540721859631480597706156528
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-14 12:13:40 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-13 12:13:39 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String '*.psplegal.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25263604661252844569926740191469611957913681651217134712743866163695659939156449522109897654033285966196356845617782295549774178176337387745779845891989069325643047692056524190458082822479759895556631555151993071658607671624213630976336183793052213990496327338042336667153398775945193850417064758102666192570667461047340754996228945858323401679360759145326040551165369025918297797884297812482181831956023368145259494753158934940004714219141240620854616160396161108322058619960347413366826811501689795528434499109146906806080002008309547827521371935542800722306588998858584992870535877272608310726615426700084216997241
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							9e85ca452e921cfcb595ce63e5b7906359c9a9fc
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (30 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '*.psplegal.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'psplegal.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018edcbdf54a00000403004730450221008b86f30094e63fcd61c45a8d5354b0fcf3a0e9b7155171e187ecb28752308e1702201dba0faf982b5790a1b2ae03043e3d382d79c0116b63b5ff28f62d507a0535c10075003f174b4fd7224758941d651c84be0d12ed90377f1f856aebc1bf2885ecf8646e0000018edcbdf5520000040300463044022030fc20e401cab995fb5dc335831106eca83c41d6a1576dfa13bbd282fd21cea80220786687cdc829a1b320b4de4ffa21b4d5885dce5424d9536472fbf3dd0d2691ea
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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