www.tma149.ca
Issued by R3
About this certificate
This digital certificate with serial number 03:8a:a7:e6:c7:a7:40:07:9f:c9:e6:7e:e7:5b:0d:7a:ac:18 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.tma149.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:8a:a7:e6:c7:a7:40:07:9f:c9:e6:7e:e7:5b:0d:7a:ac:18Serial Number (int): 308519003783394222383201429558775244303384
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: ad:1c:fb:4e:35:fb:4b:f0:5d:51:13:35:f9:b6:a9:3e:ab:e6:bd:c1
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): b6:2c:62:27:47:f1:28:b0:9f:1a:4b:f3:ce:56:e9:f6:8c:4f:d8:51
Fingerprint (sha256): 96:3c:3c:8c:6a:84:3f:c2:ac:a4:af:aa:eb:23:8d:3f:f9:af:0c:ad:8e:f7:8e:80:5e:ef:5e:03:ef:e0:cb:75
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate www.tma149.ca
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.tma149.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
tma149.ca
www.tma149.ca
www.tma149.ca
Other certificates including the domain name tma149.ca
(limited to 100 certificates)
www.tma149.ca
*.tma149.ca
tma149.ca
tma149.ca
torontomusicians.org
www.tma149.ca
*.tma149.ca
tma149.ca
www.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
tma149.ca
tma149.ca
mymusic150.tma149.ca
tma149.ca
mymusic150.tma149.ca
www.tma149.ca
www.tma149.ca
*.tma149.ca
mymusic150.tma149.ca
*.tma149.ca
mymusic150.tma149.ca
tma149.ca
www.tma149.ca
tma149.ca
tma149.ca
tma149.ca
*.tma149.ca
sni.cloudflaressl.com
tma149.ca
*.tma149.ca
tma149.ca
*.tma149.ca
mymusic150.tma149.ca
www.tma149.ca
www.tma149.ca
www.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
tma149.ca
torontomusicians.org
www.tma149.ca
*.tma149.ca
tma149.ca
www.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
*.tma149.ca
tma149.ca
tma149.ca
tma149.ca
mymusic150.tma149.ca
tma149.ca
mymusic150.tma149.ca
www.tma149.ca
www.tma149.ca
*.tma149.ca
mymusic150.tma149.ca
*.tma149.ca
mymusic150.tma149.ca
tma149.ca
www.tma149.ca
tma149.ca
tma149.ca
tma149.ca
*.tma149.ca
sni.cloudflaressl.com
tma149.ca
*.tma149.ca
tma149.ca
*.tma149.ca
mymusic150.tma149.ca
www.tma149.ca
www.tma149.ca
www.tma149.ca
tma149.ca
Certificate
The complete raw certificate details for www.tma149.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFLDCCBBSgAwIBAgISA4qn5senQAefyeZ+51sNeqwYMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMjEyMjgwNjE5MTNaFw0yMzAzMjgwNjE5MTJaMBgxFjAUBgNVBAMT DXd3dy50bWExNDkuY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQDl mY/kjMCDISeO2+g5XzVvaymRYA1tnJdxEzJqAQTlCoJFfHUccCWsYZH4j60Agyki h0lnFkQ95Qm1QhwdRGWD34euyX5z3lHkdgsLRjKOMwvXznuhOuC2vVd/lx5S9yOq zcQg9T0thhXBrgQjoVpiFg+qcSSnCY+ZJpXOX98Ky9lHb4K0KR/4P9/QdSTGk5GF rVza9x6HqsOnqxOE4pv0WnUZBH6U3/NTsSxvwYyzgHzxZ1Rz9rju0FAAngEhQpEZ 5pYrv8Jf3WTXkkHrvW5bea8l72hTUBmc6BoBIXJS8jCS1H34+BvJYKmf6UHEqahI G9H/8nmT04k6SD0rj9obAgMBAAGjggJUMIICUDAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFK0c+041+0vwXVETNfm2qT6r5r3BMB8GA1UdIwQYMBaAFBQusxe3WFbLrlAJ QOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0cDovL3Iz Lm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5jci5vcmcv MCMGA1UdEQQcMBqCCXRtYTE0OS5jYYINd3d3LnRtYTE0OS5jYTBMBgNVHSAERTBD MAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8v Y3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2ALc+ +yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABhVeZdsEAAAQDAEcwRQIg Qjap0RmQ6ubZKhu2h6FtZH/Xbonmw59Shd4dp/P93skCIQCiZN46A0BSdrBt2z/3 AElg0T2Y68hth24wibXrCxHDmAB3AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nh d31tBr1uAAABhVeZeLMAAAQDAEgwRgIhAKCzoWAJbYhEv+tepPDpvfsLKmDt5+b4 44u40P852nUHAiEAxUx0/VtvXVMoT7oPyagda8sIlidpy8ogXjcZIf79+iwwDQYJ KoZIhvcNAQELBQADggEBAKoLNKVilKJWW/WeKUgrpha9mjYNFI+kc9ffzxEdfP+U IYYWr/pMvM/LttaYSRffJmagAmjvG/z1wozTXCcWnQDrXQ1ygRlPlFBK25irWgl1 mo4RU+csPUq6VsDbCA0RHsDzfAPqjIQBmgKX/iPswXlHl6k29qf5ogWq3VrAMdbV eJLdJf7gPc2YS7bBST8wbW3Kqz+xONF29reJOUcSJWxa0h1bkhTPOHL/Z4ArvmuT 9JwjhW4GgtzNoy9KMWuiBN4fD51H8PtD/xlGT98nYMYZCav1AbE5KPN29MPf9Ed+ GYBRZraf7KOAJPB9V29DvyrDwUlDvPaur9lTQs3P5i4= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA5ZmP5IzAgyEnjtvoOV81 b2spkWANbZyXcRMyagEE5QqCRXx1HHAlrGGR+I+tAIMpIodJZxZEPeUJtUIcHURl g9+Hrsl+c95R5HYLC0YyjjML1857oTrgtr1Xf5ceUvcjqs3EIPU9LYYVwa4EI6Fa YhYPqnEkpwmPmSaVzl/fCsvZR2+CtCkf+D/f0HUkxpORha1c2vceh6rDp6sThOKb 9Fp1GQR+lN/zU7Esb8GMs4B88WdUc/a47tBQAJ4BIUKRGeaWK7/CX91k15JB671u W3mvJe9oU1AZnOgaASFyUvIwktR9+PgbyWCpn+lBxKmoSBvR//J5k9OJOkg9K4/a GwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 308519003783394222383201429558775244303384 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2022-12-28 06:19:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-28 06:19:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.tma149.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28984296121721957904249538937278278068925978167796075100810129251291636740740086854214926207007526384552339515488247594117223223155928128580419625849673989618306906304412828042094782896631742127212082755561972481714962837940294067848960308605422562352173893692131741588738414600921311074670947397145194087998879451378737900300918161892350619590792123262805953553641067733335821268336477624114505216993598136532898109378610422423016964762682922765059389302180139970362288620751482412901040173488928427810451229894826254060510714588605061139135665366587226983484746022871819184309714726485945680740255314562591272983067 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ad1cfb4e35fb4bf05d511335f9b6a93eabe6bdc1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tma149.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tma149.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb49900000185579976c1000004030047304502204236a9d11990eae6d92a1bb687a16d647fd76e89e6c39f5285de1da7f3fddec9022100a264de3a03405276b06ddb3ff7004960d13d98ebc86d876e3089b5eb0b11c398007700e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e00000185579978b30000040300483046022100a0b3a160096d8844bfeb5ea4f0e9bdfb0b2a60ede7e6f8e38bb8d0ff39da7507022100c54c74fd5b6f5d53284fba0fc9a81d6bcb08962769cbca205e371921fefdfa2c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00aa0b34a56294a2565bf59e29482ba616bd9a360d148fa473d7dfcf111d7cff94218616affa4cbccfcbb6d6984917df2666a00268ef1bfcf5c28cd35c27169d00eb5d0d7281194f94504adb98ab5a09759a8e1153e72c3d4aba56c0db080d111ec0f37c03ea8c84019a0297fe23ecc1794797a936f6a7f9a205aadd5ac031d6d57892dd25fee03dcd984bb6c1493f306d6dcaab3fb138d176f6b789394712256c5ad21d5b9214cf3872ff67802bbe6b93f49c23856e0682dccda32f4a316ba204de1f0f9d47f0fb43ff19464fdf2760c61909abf501b13928f376f4c3dff4477e19805166b69feca38024f07d576f43bf2ac3c14943bcf6aeafd95342cdcfe62e