gearshift.ca

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:fc:47:e4:68:b0:a2:34:4d:78:7f:91:90:de:e7:22:52:ad was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=gearshift.ca

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:fc:47:e4:68:b0:a2:34:4d:78:7f:91:90:de:e7:22:52:ad
Serial Number (int): 434295861345866909530804420463616875188909
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 47:43:f0:06:ca:2e:5a:c5:0d:7e:b4:81:23:c8:07:df:56:b9:ab:83
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 6c:c4:fb:a1:92:db:29:d2:59:0c:1d:3a:f9:2e:92:a5:62:47:34:b4
Fingerprint (sha256): 79:1f:dd:e8:f6:b2:00:3d:00:50:14:33:71:88:55:04:03:6a:51:38:c0:3d:7b:a3:a2:db:02:28:8e:19:97:9f

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate gearshift.ca

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for gearshift.ca

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

gearshift.ca
www.gearshift.ca

Other certificates including the domain name gearshift.ca

(limited to 100 certificates)
gearshift.ca
sni.cloudflaressl.com
sni218998.cloudflaressl.com
sni.cloudflaressl.com
studios.gearshift.ca
sni137232.cloudflaressl.com
sni137232.cloudflaressl.com
gearshift.ca
sni218998.cloudflaressl.com
sni.cloudflaressl.com
sni137232.cloudflaressl.com
studios.gearshift.ca
www.gearshift.ca
sni137232.cloudflaressl.com
sni218998.cloudflaressl.com
studios.gearshift.ca
gearshift.ca
www.gearshift.ca
gearshift.ca
sni.cloudflaressl.com
gearshift.ca
play.gearshift.ca
sni218998.cloudflaressl.com
gearshift.ca
gearshift.ca
gearshift.ca
studios.gearshift.ca
sni137232.cloudflaressl.com
sni218998.cloudflaressl.com
studios.gearshift.ca
gearshift.ca
gearshift.ca
gearshift.ca
studios.gearshift.ca
sni137232.cloudflaressl.com
sni218998.cloudflaressl.com
sni.cloudflaressl.com
gearshift.ca
sni137232.cloudflaressl.com
studios.gearshift.ca
studios.gearshift.ca
gearshift.ca
sni218998.cloudflaressl.com
gearshift.ca
studios.gearshift.ca
sni137232.cloudflaressl.com
sni137232.cloudflaressl.com
sni137232.cloudflaressl.com
gearshift.ca
studios.gearshift.ca
sni218998.cloudflaressl.com
www.gearshift.ca
sni218998.cloudflaressl.com
gearshift.ca

Certificate

The complete raw certificate details for gearshift.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA1Ea+18YZBIyWMs8jR8by
X5f228mVrBa46ESSZrnWIZtHY/7ENUEAxg6nWecibEdO0CNu+9YhH766lUawdzWI
7UL6PEqJUeSrxRemy+lpJq704eCfBkNCctVfCPsqo8Dg4FcI0bAJcAAIcXLkkAhS
p/0jXcLuRue8kBwiJQeqyo+UuxzkeL+scK20npawN3lSWXrvQCcLertcFhHcbaRl
fr8AItwjSANiBuVgBGFGM25Lm4VZHbxv9RtEozzI70PsMHyix1p11ms2phqsosCI
9IHSBR6F5KK5oAloxksZIu9I4Z2tiwamfWfI0o+p+6zvQaCPKvJKoTyeyI8UC5UA
FQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 434295861345866909530804420463616875188909
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-31 13:13:18 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-30 13:13:18 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gearshift.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 26797406549181552669336265748568761302696908089927230819692340869096057732094953024879394668780276811438605466609821036090131918619679423424111451975295433298532778604591011082519361863458699949341982232552795161103337898207940365265367108332213946443346430810406803274894496547910104255642000462993160094225440988314604078378110266013566591639332140755873054861681553433660027440322857727535837832120782429634241863960851553274690380570501337590397062823488493988095104819328560271660074606662261191673500460597413223035249279561485032660545096876193741210691612552306515639425490607197036954031552140136645190287381
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							4743f006ca2e5ac50d7eb48123c807df56b9ab83
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (34 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gearshift.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gearshift.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016f5c4dc83b000004030047304502201894a096985f6d7641e8680606bdbb2c15890e083070c8b30ae18830f4bbeb7f022100e868219472e55fed4f82ec3b944bfc3e01efec0568d77beecbeedd7b1af877ac00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f5c4dc8640000040300473045022100e3154c87dea9161b2687d8f7bc94a0b451b1994e158670cf7a41b143c8bf1f28022021b6de29b772719d3040155b8eddf6be04453c7b001d058c954952e477f1f513
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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