wwwcanna.com
Issued by R3
About this certificate
This digital certificate with serial number 03:5f:49:85:a7:a3:4e:15:1e:f0:06:bb:52:39:a6:08:84:06 was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=wwwcanna.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:5f:49:85:a7:a3:4e:15:1e:f0:06:bb:52:39:a6:08:84:06Serial Number (int): 293761410272045137623649881470112121783302
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 1e:d5:a2:94:d2:e9:c2:1f:80:22:c0:6f:ae:f1:85:50:db:10:a5:fa
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 18:72:45:46:55:64:39:70:40:92:4d:d5:12:8c:35:5f:5f:8d:14:99
Fingerprint (sha256): 2f:7a:cc:ae:88:7e:1b:39:46:29:14:c0:e1:dc:76:17:69:6d:08:bc:10:9f:00:2f:60:76:0c:6e:1d:34:c6:bb
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate wwwcanna.com
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for wwwcanna.com
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
betteryetdesign.com
capsilocybintesting.com
deplorablesshirt.com.houghtoncounty.com.agentgoldusa.com
ififty.com
mckameys.com
orotonmail.com.sledvalues.com
sundrink.com
wwwcanna.com
capsilocybintesting.com
deplorablesshirt.com.houghtoncounty.com.agentgoldusa.com
ififty.com
mckameys.com
orotonmail.com.sledvalues.com
sundrink.com
wwwcanna.com
Other certificates including the domain name wwwcanna.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for wwwcanna.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFlzCCBH+gAwIBAgISA19JhaejThUe8Aa7UjmmCIQGMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAxMTEyMDM4NTFaFw0yNDA0MTAyMDM4NTBaMBcxFTATBgNVBAMT DHd3d2Nhbm5hLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAOSk JdokPia1pGFzt8SWpqxiSFs5v6sQoySZx5q9d0h4/B8odDQXQqP8p1/FqR8U5X7O oWB/7T+7kXv3T0xtoicGE0YEY27Qea1t7WLkYTve4Th9+Qp00g2OMjWGwCPEKCEj BHRu4ac6SwTAZcf4GPgiLoL0Z8K8MGbMRiE1E7+jtjRnoolJ/VYVRGbfXUD/s5C/ cCq8JQdpb5K8VN4MSrHZr0O7JD63LZXl073z5hrajXooGbLCSJEQ8hYV2JAg4XY8 YjXCPB4+HiV7NQIY/qWF/SrEYeZ5XMvB55ni5YhOK2wRPjH3BZsCgeP5xWdBPkSF 2nUSmhBxNvcTpPcIVi0CAwEAAaOCAsAwggK8MA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUHtWilNLpwh+AIsBvrvGFUNsQpfowHwYDVR0jBBgwFoAUFC6zF7dYVsuuUAlA 5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzABhhVodHRwOi8vcjMu by5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5pLmxlbmNyLm9yZy8w gcgGA1UdEQSBwDCBvYITYmV0dGVyeWV0ZGVzaWduLmNvbYIXY2Fwc2lsb2N5Ymlu dGVzdGluZy5jb22COGRlcGxvcmFibGVzc2hpcnQuY29tLmhvdWdodG9uY291bnR5 LmNvbS5hZ2VudGdvbGR1c2EuY29tggppZmlmdHkuY29tggxtY2thbWV5cy5jb22C HW9yb3Rvbm1haWwuY29tLnNsZWR2YWx1ZXMuY29tggxzdW5kcmluay5jb22CDHd3 d2Nhbm5hLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQGCisGAQQB1nkCBAIE gfUEgfIA8AB2ADtTd3U+LbmAToswWwb+QDtn2E/D9Me9AA0tcm/h+tQXAAABjPp2 sK8AAAQDAEcwRQIhAK02HePRFebqDOaixKU8z2G8QVDedNqi+c2wOY1/NqdtAiBG mu+MNUK8sHq7KsaRkQRXMFHOsttrX1JmbEVTwh7kOwB2AO7N0GTV2xrOxVy3nbTN E6Iyh0Z8vOzew1FIWUZxH7WbAAABjPp2sKsAAAQDAEcwRQIgZOD0C7dGTYbsmtwp QFGMSVGrSuM5hSyTHwwOO0JJta8CIQDwBF63sKGBIrkg4yUI8pgRfV1QTljadKn5 0mjbvf3HCjANBgkqhkiG9w0BAQsFAAOCAQEAswSICvowNa9xqnV1P1U3Kb+neaMV TGzGrcX5VoRn3GWdBGPS+FPq14FNWGr+aBVG43Hqy6g8QiaEihalk6o7fvATuPom 5gXviof+sG2bTYezh/q7w6ktiRNuCqKxWXfl2YsKRoAoNf2jLOcTpnCVmRUdxEa1 vVY66Bmjsi97B+kzov36q7vXG78XO7EHBbLiqCgVihnP/Zffh5yi1XZZ4EN7CKO7 iXv2Nmg0CZLqw45ZmK04KTuQEpekcGfdDkS9IED9Ptzcx8C8IKBOl/M6OPA+1sAc UfszH4nbvV2HN1KDKicFSh83wOPqKLo/HU2/BNpClE3iP462Q4dG2yZqZg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5KQl2iQ+JrWkYXO3xJam rGJIWzm/qxCjJJnHmr13SHj8Hyh0NBdCo/ynX8WpHxTlfs6hYH/tP7uRe/dPTG2i JwYTRgRjbtB5rW3tYuRhO97hOH35CnTSDY4yNYbAI8QoISMEdG7hpzpLBMBlx/gY +CIugvRnwrwwZsxGITUTv6O2NGeiiUn9VhVEZt9dQP+zkL9wKrwlB2lvkrxU3gxK sdmvQ7skPrctleXTvfPmGtqNeigZssJIkRDyFhXYkCDhdjxiNcI8Hj4eJXs1Ahj+ pYX9KsRh5nlcy8HnmeLliE4rbBE+MfcFmwKB4/nFZ0E+RIXadRKaEHE29xOk9whW LQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 293761410272045137623649881470112121783302 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-11 20:38:51 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-10 20:38:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'wwwcanna.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28863277858778055085195317486081873870203581601938821856943305550876548065039942638855930260380673520358860698446478371599110575744871342170798731615981207599051051605161021084522972728923767035785835565919483951165893406009944788888626577354015703754631677415473739055493360356728360659439336920355487617318086823596627735243990013772450983176289105917241997968446505331360582258575196749356516987424780428787892729445696383285943635816167295777880552807742697206817533383422217019309463112590957880236058165406501310426588506280866684738021907117368215824747789554408182128211562120138444311815229819061503347152429 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 1ed5a294d2e9c21f8022c06faef18550db10a5fa . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (192 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'betteryetdesign.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'capsilocybintesting.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'deplorablesshirt.com.houghtoncounty.com.agentgoldusa.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ififty.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mckameys.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'orotonmail.com.sledvalues.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sundrink.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'wwwcanna.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018cfa76b0af0000040300473045022100ad361de3d115e6ea0ce6a2c4a53ccf61bc4150de74daa2f9cdb0398d7f36a76d0220469aef8c3542bcb07abb2ac6919104573051ceb2db6b5f52666c4553c21ee43b007600eecdd064d5db1acec55cb79db4cd13a23287467cbcecdec351485946711fb59b0000018cfa76b0ab0000040300473045022064e0f40bb7464d86ec9adc2940518c4951ab4ae339852c931f0c0e3b4249b5af022100f0045eb7b0a18122b920e32508f298117d5d504e58da74a9f9d268dbbdfdc70a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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