www.tenthousandvillages.ca
Issued by GeoTrust DV SSL CA - G3
About this certificate
This digital certificate with serial number 02:cc:4c:3a:54:ab:e0:53:29:0f:54:7f:61:f3:20:45 was issued on by GeoTrust Inc..
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
- Sub certificates SHOULD include Subject Key Identifier in end entity certs (RFC 5280: 4.2 & 4.2.1.2)
Certificate Subject
CN=www.tenthousandvillages.ca
GeoTrust Inc.
Organization:
GeoTrust Inc.
Organization unit: Domain Validated SSL
Organization unit: Domain Validated SSL
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 02:cc:4c:3a:54:ab:e0:53:29:0f:54:7f:61:f3:20:45Serial Number (int): 3719230635278766420589320454832070725
Serial Number lenght: 122 bits, 16 octets
SubjectKeyId:
AuthorityKeyId: ad:65:22:85:90:d0:3b:e3:a1:49:8b:37:f9:f1:0b:1d:5f:17:a0:77
Fingerprint (sha1): 7e:22:f2:a0:a4:6b:29:a1:1a:a2:2b:b2:ec:b1:f1:0a:8e:de:3a:f4
Fingerprint (sha256): 69:cb:8b:2e:53:cd:e0:66:05:fa:a6:2c:b1:af:46:a5:94:6a:f5:1f:f3:f4:85:4b:a8:ab:d6:1a:f0:dc:28:4f
Issuing Certificate URL: http://gt.symcb.com/gt.crt
Revocation information
OCSP Server: http://gt.symcd.comCRL Distribution Point: http://gt.symcb.com/gt.crl
Check the revocation status for certificate www.tenthousandvillages.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.tenthousandvillages.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.tenthousandvillages.ca
tenthousandvillages.ca
tenthousandvillages.ca
Other certificates including the domain name tenthousandvillages.ca
(limited to 100 certificates)
www.tenthousandvillages.ca
tenthousandvillages.ca
www.tenthousandvillages.ca
www.tenthousandvillages.ca
tenthousandvillages.ca
tenthousandvillages.ca
www.tenthousandvillages.ca
www.tenthousandvillages.ca
www.tenthousandvillages.ca
www.tenthousandvillages.ca
tls.automattic.com
fclft2017.tenthousandvillages.ca
tls.automattic.com
tenthirtycollective.com
tls.automattic.com
toolset.tenthousandvillages.ca
tenthousandvillages.ca
www.tenthousandvillages.ca
www.tenthousandvillages.ca
tenthousandvillages.ca
tenthousandvillages.ca
www.tenthousandvillages.ca
www.tenthousandvillages.ca
www.tenthousandvillages.ca
www.tenthousandvillages.ca
tls.automattic.com
fclft2017.tenthousandvillages.ca
tls.automattic.com
tenthirtycollective.com
tls.automattic.com
toolset.tenthousandvillages.ca
Certificate
The complete raw certificate details for www.tenthousandvillages.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF5DCCBMygAwIBAgIQAsxMOlSr4FMpD1R/YfMgRTANBgkqhkiG9w0BAQsFADBm MQswCQYDVQQGEwJVUzEWMBQGA1UEChMNR2VvVHJ1c3QgSW5jLjEdMBsGA1UECxMU RG9tYWluIFZhbGlkYXRlZCBTU0wxIDAeBgNVBAMTF0dlb1RydXN0IERWIFNTTCBD QSAtIEczMB4XDTE3MDcxOTAwMDAwMFoXDTE4MDgwMjIzNTk1OVowJTEjMCEGA1UE Awwad3d3LnRlbnRob3VzYW5kdmlsbGFnZXMuY2EwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDf4nUaWyqc85LwjKELxfdYKmeM1QRUXQxXffNC6TlQG7DH N+vK5ckw8/iHVSq+ATU8LOkyMNC5h8uLAAx49UWGcyqRA0aj+y7qK7EvxjR4mvcu Q/fafBY1dEfH0bdxjig9O19NXk0EyaXiqe1lGGcPFGgch3Zgqjex0uijXYec+XeO dteMck/aM/gAxbn4ZPBHVm6XI+QlNRpJO+iJvRQdFl5RXHbn5mOxTIYVYNuyl8dC G9s2nTRZRN2lT0tTTqcrxmzpKgXwojV4rTjAqzq3cf8te4puykHcgq7RfXyOCoob 552OJlaIuZtOcqYUJswcJNrAP3OodnNIuFhubTrHAgMBAAGjggLNMIICyTA9BgNV HREENjA0ghp3d3cudGVudGhvdXNhbmR2aWxsYWdlcy5jYYIWdGVudGhvdXNhbmR2 aWxsYWdlcy5jYTAJBgNVHRMEAjAAMCsGA1UdHwQkMCIwIKAeoByGGmh0dHA6Ly9n dC5zeW1jYi5jb20vZ3QuY3JsMIGdBgNVHSAEgZUwgZIwgY8GBmeBDAECATCBhDA/ BggrBgEFBQcCARYzaHR0cHM6Ly93d3cuZ2VvdHJ1c3QuY29tL3Jlc291cmNlcy9y ZXBvc2l0b3J5L2xlZ2FsMEEGCCsGAQUFBwICMDUMM2h0dHBzOi8vd3d3Lmdlb3Ry dXN0LmNvbS9yZXNvdXJjZXMvcmVwb3NpdG9yeS9sZWdhbDAfBgNVHSMEGDAWgBSt ZSKFkNA746FJizf58QsdXxegdzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMFcGCCsGAQUFBwEBBEswSTAfBggrBgEFBQcwAYYT aHR0cDovL2d0LnN5bWNkLmNvbTAmBggrBgEFBQcwAoYaaHR0cDovL2d0LnN5bWNi LmNvbS9ndC5jcnQwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwDd6x0reg1PpiCL ga2BaHB+Lo6dAdVciI09EcTNtuy+zAAAAV1bCr2bAAAEAwBIMEYCIQCxGMVVnGr3 kKYQ7+/C/l97UDcVTDKkgollYG/eU774pAIhAMra9zWRY9qgPer+vFkFgecBSZo0 n0tCksAYSVqLP1okAHYApLkJkLQYWBSHuxOizGdwCjw1mAT5G9+443fNDsgN3BAA AAFdWwq9vwAABAMARzBFAiEAlLCDbWOSQ938g1YAFo3kmp/B6Htr6fJDpI/40DD6 X1sCID1zDsnKh7WyRPV7Y/P5ttaREs8Rq/VzU3yeRSsz03u2MA0GCSqGSIb3DQEB CwUAA4IBAQAkyG0huYkLoSQTdWq7zVCDR2hx/Qo7XtF/6+Td18VAb6tncvcN40RK ByRYNMMY6Ls8ErFaf1kCbiaW/I0jL5iB81q4tmQhQGkHm55WNVSB88/4D6NPY18J 7kqE7OR4epah9QSjpZqBqqlXw1HJqFDhTxfOFx5Kb4BGMkqfxLk0An8+kpCcyIMZ zzbgrD9ypWgxGwbE3JjJ4BPQd7RqoqYZJzZW+zrrqb3EAzbjAGXwbOLPwaSLZmqZ ihGEfM/8TGcP0LQIOHU5u8iLd5d+LbOcL8bbkBHdaDoW7B0WKLV1WEMJQMOWP7vS BK3z0oqUxdHN2/281XPTxg0u+uN/vrYF -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA3+J1GlsqnPOS8IyhC8X3 WCpnjNUEVF0MV33zQuk5UBuwxzfryuXJMPP4h1UqvgE1PCzpMjDQuYfLiwAMePVF hnMqkQNGo/su6iuxL8Y0eJr3LkP32nwWNXRHx9G3cY4oPTtfTV5NBMml4qntZRhn DxRoHId2YKo3sdLoo12HnPl3jnbXjHJP2jP4AMW5+GTwR1ZulyPkJTUaSTvoib0U HRZeUVx25+ZjsUyGFWDbspfHQhvbNp00WUTdpU9LU06nK8Zs6SoF8KI1eK04wKs6 t3H/LXuKbspB3IKu0X18jgqKG+edjiZWiLmbTnKmFCbMHCTawD9zqHZzSLhYbm06 xwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 3719230635278766420589320454832070725 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust Inc.' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11 (organizationalUnitName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Domain Validated SSL' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GeoTrust DV SSL CA - G3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-07-19 00:00:00 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-08-02 23:59:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'www.tenthousandvillages.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28262812329856670541440747027761060856988552095515516448589884384926119852260937156087338823003292482742935102166180480394107386624405873615243560955229992708632611541282990698888368380453130217186209271929822073521094951980901941547266563957841419199811582395594304847461254087943612194905978112537784006809826540217141263504211329972928923391330627185606534693081114735785170195428037439967489662116322926684278681729579953323883839430644347577054190719390229022922481529855248211294119441053521963663988760148971397232582035751400138292808251613060488210117252576675663700935300289938304217926851834057421272988359 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tenthousandvillages.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tenthousandvillages.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31 (cRLDistributionPoints) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcb.com/gt.crl' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (149 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'https://www.geotrust.com/resources/repository/legal' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName ad65228590d03be3a1498b37f9f10b1d5f17a077 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (75 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcd.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://gt.symcb.com/gt.crt' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700ddeb1d2b7a0d4fa6208b81ad8168707e2e8e9d01d55c888d3d11c4cdb6ecbecc0000015d5b0abd9b0000040300483046022100b118c5559c6af790a610efefc2fe5f7b5037154c32a4828965606fde53bef8a4022100cadaf7359163daa03deafebc590581e701499a349f4b4292c018495a8b3f5a24007600a4b90990b418581487bb13a2cc67700a3c359804f91bdfb8e377cd0ec80ddc100000015d5b0abdbf000004030047304502210094b0836d639243ddfc835600168de49a9fc1e87b6be9f243a48ff8d030fa5f5b02203d730ec9ca87b5b244f57b63f3f9b6d69112cf11abf573537c9e452b33d37bb6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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