prhc.on.ca

Issued by R3

About this certificate

This digital certificate with serial number 03:a1:fc:de:0b:55:0d:14:42:54:54:70:0a:6b:93:85:60:9f was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=prhc.on.ca

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:a1:fc:de:0b:55:0d:14:42:54:54:70:0a:6b:93:85:60:9f
Serial Number (int): 316458437244237173339937015336978235089055
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 37:93:5e:b9:39:28:e8:44:c6:9a:15:c3:10:45:37:8b:5c:90:c9:ef
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 3a:0b:cc:79:dd:69:9e:71:ee:3a:f5:35:e2:a2:c2:f0:87:ab:6a:7d
Fingerprint (sha256): 25:d5:4a:e7:db:d5:bf:ac:d7:ac:9f:3a:16:98:03:5d:e7:90:d0:3f:63:ab:e3:8e:9a:7c:9e:02:c5:15:0b:c5

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate prhc.on.ca

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for prhc.on.ca

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

prhc.on.ca

Other certificates including the domain name prhc.on.ca

(limited to 100 certificates)
cucmpub-ms.prhc.on.ca
exp-cmra01.prhc.on.ca
mail.prhc.on.ca
prhc.on.ca
sni.cloudflaressl.com
prhc.on.ca
viewecg.prhc.on.ca
CUCMPUB-ms.prhc.on.ca
exp-cmra02.prhc.on.ca
its-cpa01.prhc.on.ca
guest.prhc.on.ca
exp-emra.prhc.on.ca
viewecg.prhc.on.ca
viewPACS.prhc.on.ca
mail.prhc.on.ca
viewPACS.prhc.on.ca
prhc.on.ca
adfs.prhc.on.ca
viewecg.prhc.on.ca
askhr.prhc.on.ca
ITS-CPA01.prhc.on.ca
viewPACS.prhc.on.ca
*.prhc.on.ca
ITS-CPA01.prhc.on.ca
*.prhc.on.ca
*.prhc.on.ca
www.prhc.on.ca
ITS-CPA01.prhc.on.ca
CUCPUB-ms.prhc.on.ca
on0771isap999.prhc.on.ca
my.prhc.on.ca
imppub-ms.prhc.on.ca
*.prhc.on.ca
dia-densitas.prhc.on.ca
ITS-CPA01.prhc.on.ca
helpdesk.yokohamaia.com
exp-emra02.prhc.on.ca
mail.prhc.on.ca
cucpub-ms.prhc.on.ca
its-cpa01.prhc.on.ca
exp-emra.prhc.on.ca
*.prhc.on.ca
exp-cmra02.prhc.on.ca
mail.prhc.on.ca
viewPACS.prhc.on.ca
imppub-ms.prhc.on.ca
its-cpa01.prhc.on.ca
viewPACS.prhc.on.ca
exp-emra02.prhc.on.ca
my.prhc.on.ca
exp-emra01.prhc.on.ca
askhr.prhc.on.ca
exp-emra01.prhc.on.ca
esm.centralpafoodbank.org
*.prhc.on.ca
mail.prhc.on.ca
adfs.prhc.on.ca
ITS-CPA01.prhc.on.ca
my.prhc.on.ca
mail.prhc.on.ca
CUCMPUB-ms.prhc.on.ca
exp-cmra01.prhc.on.ca
ITS-CPA01.prhc.on.ca
remote.prhc.on.ca
prhc.on.ca
prhc.on.ca
viewPACS.prhc.on.ca
mytime.prhc.on.ca
esm.centralpafoodbank.org
prhc.on.ca
sftp.prhc.on.ca
*.prhc.on.ca
kwa-app01.prhc.on.ca
exp-cmra.prhc.on.ca
*.prhc.on.ca

Certificate

The complete raw certificate details for prhc.on.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIFGzCCBAOgAwIBAgISA6H83gtVDRRCVFRwCmuThWCfMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzAxMzAxNDI2MTRaFw0yMzA0MzAxNDI2MTNaMBUxEzARBgNVBAMT
CnByaGMub24uY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDS0nuO
VBoXD8posmY5ImB+/Dcy0NzNfBPmGQDIPbxy9dOg0SCxx5xxuF/7ZlEZP8H7hmlJ
2OKrcy3EMiSMQBiw95tSXzBaq8F7bhowAMzMuYbDlM6iZmQOs84SM0O0CNK45JiT
4hRfMiorxQjjbqHXexlmLkCBhxpJgU2mzk2mfT7+OpBvpKBvDrJphJg+NS9HrDMe
zUDVko5fUJd550Kk0RzTMtE+0kW7XJZhWaJsRuGrrhYUunDI5Ajh9btW6bO6Lla9
b5VFqx1QcGDtvRCkRZIDn9ypdZ8oLj2WiQZWf3dLQqbQ4Aj5jtliJtXGQW++cXc+
8Aay9vep5HSH5MqjAgMBAAGjggJGMIICQjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l
BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE
FDeTXrk5KOhExpoVwxBFN4tckMnvMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJQOYf
r52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3IzLm8u
bGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcvMBUG
A1UdEQQOMAyCCnByaGMub24uY2EwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYB
BAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5v
cmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgC3Pvsk35xNunXyOcW6WPRsXfxC
z3qfNcSeHQmBJe20mQAAAYYDSTYDAAAEAwBHMEUCIAMiomLJ9IhsXyL8gSm0bQYX
Xuz01SbsEsQ7g4LC8yazAiEAyMI2x8tR95cL7F2eyTSOSb/YmohTdAbx65q9/uLF
jHEAdwDoPtDaPvUGNTLnVyi8iWvJA9PL0RFr7Otp4Xd9bQa9bgAAAYYDSTYAAAAE
AwBIMEYCIQCBOYn4QHoI1jT845XxSybiksYNMjeASp32ieZkCYxhYwIhAM5FKYBi
lm9cOAeD0/zN0uLa3ssY+Bxt67PPc8ktJUhAMA0GCSqGSIb3DQEBCwUAA4IBAQBW
p7Q0JF5Dae6BM0yg/TWU/HThSI+eLQ10ev5Lf9YWBrYzZA/QY0a5Vv9dyLsP2pFO
/VO4k3BU9RKVwySOJUXLHY9nN11Dgo/6If2dFaoXoIN6IbP1bfenyKwNg5/xYDTS
KJzfhcqj11DFlBUfXN3ttIjKwfDKpFdVSCmbgNr6kyhdUBFjDnnE2j0CgUCZJpMr
phlcRLOeZKjF2eHo8ahi67M4Sf2epgcpxJCZYRNA4Sv/wSRKCjhpT992x9tEp/9G
fjScOUMbz5dR4yzXB9hCVu3aBfMd3kmlsSbdplijkq39u6DF9DH5Ge85cPFTX33f
ceBoUIEa2/FBuG4ISPbZ
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA0tJ7jlQaFw/KaLJmOSJg
fvw3MtDczXwT5hkAyD28cvXToNEgsceccbhf+2ZRGT/B+4ZpSdjiq3MtxDIkjEAY
sPebUl8wWqvBe24aMADMzLmGw5TOomZkDrPOEjNDtAjSuOSYk+IUXzIqK8UI426h
13sZZi5AgYcaSYFNps5Npn0+/jqQb6Sgbw6yaYSYPjUvR6wzHs1A1ZKOX1CXeedC
pNEc0zLRPtJFu1yWYVmibEbhq64WFLpwyOQI4fW7Vumzui5WvW+VRasdUHBg7b0Q
pEWSA5/cqXWfKC49lokGVn93S0Km0OAI+Y7ZYibVxkFvvnF3PvAGsvb3qeR0h+TK
owIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 316458437244237173339937015336978235089055
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-01-30 14:26:14 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-04-30 14:26:13 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'prhc.on.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26613836901321051865854462867088069555795183911059031506735081339089495664952480754633921013135563238881964501302577691518308789000144539687801266360463468447098880283427888877121892351840218972332439060756478336501461720681952870047588708553732745552376200330807913323444199097384345194434757555147995358727642013970359057619484870310073661498468227927810283712513269362596503280174867281261600397110157739159403598041839953221794247098445540638455970308157347313231121017165374847695575896757701667396363007817105936914414537509169730318730996059227045263874389933936012772126879644925619317215211091497152942492323
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							37935eb93928e844c69a15c31045378b5c90c9ef
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'prhc.on.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018603493603000004030047304502200322a262c9f4886c5f22fc8129b46d06175eecf4d526ec12c43b8382c2f326b3022100c8c236c7cb51f7970bec5d9ec9348e49bfd89a88537406f1eb9abdfee2c58c71007700e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e00000186034936000000040300483046022100813989f8407a08d634fce395f14b26e292c60d3237804a9df689e664098c6163022100ce45298062966f5c380783d3fccdd2e2dadecb18f81c6debb3cf73c92d254840
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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