jrchan.ca

Issued by Sectigo RSA Domain Validation Secure Server CA

About this certificate

This digital certificate with serial number 92:d5:19:87:b6:c8:57:6c:1c:ed:71:eb:b5:6b:46:2e was issued on by Sectigo Limited.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=jrchan.ca

Sectigo Limited

Organization: Sectigo Limited
State / Province: Greater Manchester
Locality: Salford
Country: GB

This certificate has expire since

Certificate Details

Serial Number (hex): 92:d5:19:87:b6:c8:57:6c:1c:ed:71:eb:b5:6b:46:2e
Serial Number (int): 195173764428076136237903545751103555118
Serial Number lenght: 128 bits, 16 octets

SubjectKeyId: 0e:01:ad:77:01:e0:e0:1f:74:a8:34:a2:0b:e0:9c:35:06:94:d4:c4
AuthorityKeyId: 8d:8c:5e:c4:54:ad:8a:e1:77:e9:9b:f9:9b:05:e1:b8:01:8d:61:e1

Fingerprint (sha1): 98:5a:ac:94:5c:5c:ee:a1:82:19:a6:ae:28:ce:e5:9c:a9:36:96:9f
Fingerprint (sha256): 8b:0a:6e:0f:7c:6c:22:3e:87:29:1d:b0:3e:14:11:04:a3:e2:d9:b2:5a:56:52:72:13:75:44:bb:db:de:43:f8

Issuing Certificate URL: http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt

Revocation information

OCSP Server: http://ocsp.sectigo.com

Check the revocation status for certificate jrchan.ca

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for jrchan.ca

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

jrchan.ca
www.jrchan.ca

Other certificates including the domain name jrchan.ca

(limited to 100 certificates)
www.labrze.online
soukdz.smartvision.dz
demo.prototypefactory.co
auth-dev.valleypos.com
app.neurau.com.br
jrchan.ca
fukuoka.linx.live
jrchan.ca
axisroot-hd.com
jrchan.ca
gaebigumzug.ch
www.accelerate.me
dev.liftclass.com
mahamulti.com
orgesarizeybek.com
www.hivepass.app
jrchan.ca
personalbillett.staging.entur.no
personalbillett.staging.entur.no
stacysinclair.ca
axisroot-hd.com
danielvonmirbach.com
soycandidato.moons.rocks
jrchan.ca
dev.mfmc.link
www.jrchan.ca
vazara.estore.business
functions.smooth.jp
jrchan.ca
www.hintclub.org
jrchan.ca
patrimobimoveis.com.br
www.iwayleaves.co.za
s.jonathanlawhh.com
wepartnerup.com

Certificate

The complete raw certificate details for jrchan.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAvQ79kc0Kzul2FTB/3Vzl
AXzJSWlJ5rDMAT8+2zXXXKGyTF4bCpTSpR6RwsekqoZ0ChLsypz/pNQYFpndT+dE
ousPBrOYYj8WRG8eC70CzNnX8TELrXQlUsWnMYGjjlSjYnMWFA12F6dI1R1X1oG0
cqIpRHKsi4OkuXHFzgjPuQjyiLdAmJGxstfD6Mb+QiDQ0RNP4LLlUVJ4wZZTXYLh
h1EQ6Z6cglMCAEAhwrJA5DZDoNHN7dXW1b0fLoc38ZvlSXUBlrDxzwR+WDO85f6K
L6MN2jR8sTHOqIWnZKJEZUxhAWE5L39pap5Yma3BW/Ikm63jx/63T9s50KPz5854
NQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 195173764428076136237903545751103555118
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GB'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8 (stateOrProvinceName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Greater Manchester'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7 (localityName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Salford'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo Limited'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Sectigo RSA Domain Validation Secure Server CA'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-27 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-25 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'jrchan.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 23866431732598766229020816273743543649425389206809832199188586823497603451078775711087816701457000476014400860640194856764596831706100422087301534707662856882102905101338637991998770015175519708282568144100632573212108121152383744030762154020332202851834298445550213139679268737262801601950979007805613616378870591778198273395431229103832642403628830973892095876700999061411370432553797266252542057113815363720547030386772049019370640675949099042279105868252325059341483335617595790085902898732069021686347119221192351456805187903721428577584315330022737686553656024517914797510732793856807890096157944622813568464949
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 8d8c5ec454ad8ae177e99bf99b05e1b8018d61e1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							0e01ad7701e0e01f74a834a20be09c350694d4c4
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (66 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.6449.1.2.2.7
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'https://sectigo.com/CPS'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (120 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crt.sectigo.com/SectigoRSADomainValidationSecureServerCA.crt'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.sectigo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'jrchan.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.jrchan.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600bbd9dfbc1f8a71b593942397aa927b473857950aab52e81a909664368e1ed1850000016af6e7f59a00000403004730450220324253a4c9bb5639d61e9e84677000637d8a406d43763e07789aa00f4c4d2cd3022100cd2c12e40e4bdd4edce1da3877797397fe5d49a08bae1cfef8e859ef4cfafe5f007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016af6e7f5c20000040300473045022042d3e784aaedf04243b55859d15f9897cd934123d365981faee024f595f072cf022100e6eda19423a8b5f56dd17188b828690bb783ccfe5fbdf816fdbf5e3cbd9fe7a4
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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