taglab.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:b8:46:48:a1:7d:da:86:98:7b:d4:85:ba:30:9f:e2:13:43 was issued on by Let's Encrypt.
With 8 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=taglab.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:b8:46:48:a1:7d:da:86:98:7b:d4:85:ba:30:9f:e2:13:43Serial Number (int): 411154522321011519432935877275601485304643
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 84:b3:64:be:1f:20:05:0b:f2:dd:7d:51:f2:4d:0c:e1:7a:92:e5:8d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a6:1e:c5:07:21:97:8f:53:4f:6a:62:54:ba:97:bd:fe:73:be:1a:ab
Fingerprint (sha256): 8e:de:50:03:63:c7:ae:5e:05:c7:9d:0a:5e:a1:d4:fe:f9:de:45:eb:4e:80:9a:94:0e:1f:42:ed:6b:09:1d:7f
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate taglab.ca
8
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for taglab.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cosmin.taglab.ca
ron.taglab.ca
taglab.ca
taglab.toronto.edu
taglab.utoronto.ca
www.taglab.ca
www.taglab.toronto.edu
www.taglab.utoronto.ca
ron.taglab.ca
taglab.ca
taglab.toronto.edu
taglab.utoronto.ca
www.taglab.ca
www.taglab.toronto.edu
www.taglab.utoronto.ca
Other certificates including the domain name taglab.ca
(limited to 100 certificates)
Certificate
The complete raw certificate details for taglab.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF1TCCBL2gAwIBAgISBLhGSKF92oaYe9SFujCf4hNDMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMDcwMjE5MDlaFw0y MDAxMDUwMjE5MDlaMBQxEjAQBgNVBAMTCXRhZ2xhYi5jYTCCASIwDQYJKoZIhvcN AQEBBQADggEPADCCAQoCggEBAO0kyDP94+zcK6gzaR2RhlNZKUve0MugzRo3jLQ7 gdpdHLJP/mK/aeslSaHGOtQoG0aakCqrfGvEZ9tG8HI2Q2Owboixtwl2TLpjzdGP UKHwhz8LeDpIZV76uA20jJ7dkIkSLwFo2k2VBGYzX7GR826gnSGhwp5dJ4plAKm3 sdtl5I2d6LTDS9CICd6x+TKBA+yAB4dqaSyLojdXnzGPB6pCv4ODOgd6Cwhi/hCJ hkZr3gykhI+CafSIzRnAm2nEhKO7kkOrqWywChnu8ssPPRWmIdV6dpHwb3DilRC7 e+nvCD/aIcu/byqqkt8jLBaIKDsh/zjtRKF2uPkrwUXRrlsCAwEAAaOCAukwggLl MA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIw DAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUhLNkvh8gBQvy3X1R8k0M4XqS5Y0wHwYD VR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4G CCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8G CCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzCB ngYDVR0RBIGWMIGTghBjb3NtaW4udGFnbGFiLmNhgg1yb24udGFnbGFiLmNhggl0 YWdsYWIuY2GCEnRhZ2xhYi50b3JvbnRvLmVkdYISdGFnbGFiLnV0b3JvbnRvLmNh gg13d3cudGFnbGFiLmNhghZ3d3cudGFnbGFiLnRvcm9udG8uZWR1ghZ3d3cudGFn bGFiLnV0b3JvbnRvLmNhMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8T AQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIB BAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQ NKawqKqOsnMAAAFtpDpU3wAABAMARzBFAiEA5U2lp7f0rolFIykwR7dwZfnywZpy 2ttYG1H1ECObCzUCIBeAewdq0jXwakrhexy6BFlqKcKP+Vd6ybjffbthvE6IAHYA sh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFtpDpWxQAABAMARzBF AiEA2opxYXhSQ9L/P18CR+LeXNisPzD6j3MTLMU+fhFrxDACIEy5UFOso5VUB99u j7MpGUGsitFnTHhqSGTzIun7okj0MA0GCSqGSIb3DQEBCwUAA4IBAQBqsrXQf9hD +GnGir6KVvQQ2PfOTq+Rt4bzpDgQx+QcVutfrlM5Xy2XnDkO8qRAeCGlTBSzFiM9 DKT6hXH6sN9eiorg51YAWpnq0Zs9eLcdlA1EDHFwsTEQtuMlYQTWz9T6Ke+Urd2I XRUndKhFpMuvo3Oz8A8+fIG0NBJq9X2Lb4l8iWyqADITwSLyVKFdbT0x/OC3k8w+ idnpW3MtAF8ryPOfq3El2SuK4hDppKuFK2e8mlTbRzZBCCimj459M1//WtZngI3p I6hgQu2HczzYdgoWe7ZIYZrrP7MRWYynZaN3ACUVJp7VpTyvGccXUz0L9//D8Lvz rH/JKMvwCIW5 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA7STIM/3j7NwrqDNpHZGG U1kpS97Qy6DNGjeMtDuB2l0csk/+Yr9p6yVJocY61CgbRpqQKqt8a8Rn20bwcjZD Y7BuiLG3CXZMumPN0Y9QofCHPwt4OkhlXvq4DbSMnt2QiRIvAWjaTZUEZjNfsZHz bqCdIaHCnl0nimUAqbex22XkjZ3otMNL0IgJ3rH5MoED7IAHh2ppLIuiN1efMY8H qkK/g4M6B3oLCGL+EImGRmveDKSEj4Jp9IjNGcCbacSEo7uSQ6upbLAKGe7yyw89 FaYh1Xp2kfBvcOKVELt76e8IP9ohy79vKqqS3yMsFogoOyH/OO1EoXa4+SvBRdGu WwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 411154522321011519432935877275601485304643 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-07 02:19:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-05 02:19:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'taglab.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 29936616178531399633288458407679827023233630089461426886604575661067437416207999506126336285926796657462326145777693044129522551682231619159559073629051670495335884667945261326561395207151180884735285551119485662774208357097977380059010168586420247765093484300181350380866283620697516949486317951993873810298014373103298357713910071916455260105645485851947307781943786970898691204375141952414511088135531016598482588825870188140912588584680143831036931065931242773957344834804598372128160203049368023555534780764711097819146845359060725261345254492628840208299718881131290090598386609711186087988615183561262604856923 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 84b364be1f20050bf2dd7d51f24d0ce17a92e58d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (150 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cosmin.taglab.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'ron.taglab.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taglab.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taglab.toronto.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taglab.utoronto.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.taglab.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.taglab.toronto.edu' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.taglab.utoronto.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016da43a54df0000040300473045022100e54da5a7b7f4ae894523293047b77065f9f2c19a72dadb581b51f510239b0b35022017807b076ad235f06a4ae17b1cba04596a29c28ff9577ac9b8df7dbb61bc4e88007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016da43a56c50000040300473045022100da8a7161785243d2ff3f5f0247e2de5cd8ac3f30fa8f73132cc53e7e116bc43002204cb95053aca3955407df6e8fb3291941ac8ad1674c786a4864f322e9fba248f4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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