modaltownhome.ca

Issued by R3

About this certificate

This digital certificate with serial number 03:a0:ce:c1:86:23:86:db:12:f1:da:87:38:f5:90:2a:f6:a4 was issued on by Let's Encrypt.

With 22 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=modaltownhome.ca

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:a0:ce:c1:86:23:86:db:12:f1:da:87:38:f5:90:2a:f6:a4
Serial Number (int): 316056862303713892398419779435261359486628
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: f2:74:2d:0b:26:74:a9:da:97:6a:ba:20:98:ea:3a:91:cd:51:69:d9
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 17:ce:1f:6a:e5:b5:1d:2d:69:38:5c:5f:a0:3d:56:76:e2:26:41:bf
Fingerprint (sha256): a0:72:60:f3:cb:5e:18:0f:fa:84:b4:d0:f4:a2:da:58:fc:6f:3c:b4:7b:ca:b2:4b:ee:1a:d1:3a:e6:ff:3f:e9

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate modaltownhome.ca

22

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for modaltownhome.ca

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

1-888-38santa.com
affiliatemarketingbusiness.com
analyticalarbitrage.com
artinfall.com
aucklandforvip.com
cbdhealthfood.com
deerfieldbeach.net
defendjones.com
dogoholic.com
dressform.net
homeschoolsummerstudy.com
homunculi.com
modaltownhome.ca
modearizona.com
novelpad.com
rijnstreek.com
sgdietz.com
suhi.in
symiyatchclub.com
thedisastermastersplan.com
thestrongteam.com
tithes.istlm.com

Other certificates including the domain name modaltownhome.ca

(limited to 100 certificates)
modaltownhome.ca
modaltownhome.ca
modaltownhome.ca
mineralindependence.ca
modaltownhome.ca
modaltownhome.ca
modaltownhome.ca
formalweddingfavors.com.modaltownhome.ca

Certificate

The complete raw certificate details for modaltownhome.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEArGB3XFiGNEiesiesW7ft
KTxOW1f1NsWf8jeT7qNoPj6vngCjjcE+jhsJXq4K+tL3i5M8xrQr1ILoQxFh9nmp
QHi1P2EJchnDQe3WtaYBb4gBz5HT/lDcMA00C6T4tQ6GhaMEe1lVCOokopCSX3Nk
QL0hCcb/cvFZ1Ff0lGSMGFQRpXrI8r95jwbLJK0mAlDhZ1gmL5ZexMS+SBYKt91P
XOKYi4Dgu6AqK76I2rR8nO9cljkIbB4gB8HHSFpZ5P/X1urC29TT64uI2Uc51rSv
hUTwy4j0cHUIeMiq33a849UFeiN7iIpvGNu4CeY4k58Y1OHpCr4uTDEv70MqJRXG
LwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 316056862303713892398419779435261359486628
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-12 22:49:13 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-11 22:49:12 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'modaltownhome.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 21760557736366473173851726166766212724309440463177748853029233003950053019118364236602625143458643440338085583276819370610752988535312437711404532428064485233364097914266463400513590085741338265667163481435784972238175062579263319055885999096768351501682495287006862411669284867720026425683065620275561855285156863142810198840709686531352900383519982655809374049238890529571835839648050038937921277151719402628094463286781229435062900035644744322385819283566640021288670140748573148449322098298486594273188487759500060749286463577646396635873583392754602415207132059253735314572256210739228173362104607640849764173359
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							f2742d0b2674a9da976aba2098ea3a91cd5169d9
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (414 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '1-888-38santa.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'affiliatemarketingbusiness.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'analyticalarbitrage.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'artinfall.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'aucklandforvip.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cbdhealthfood.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'deerfieldbeach.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'defendjones.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dogoholic.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dressform.net'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschoolsummerstudy.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homunculi.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'modaltownhome.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'modearizona.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'novelpad.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rijnstreek.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'sgdietz.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'suhi.in'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'symiyatchclub.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thedisastermastersplan.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thestrongteam.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tithes.istlm.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef00760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018d001466570000040300473045022100a8715aed18dc772a58e154c51e5b1d7da77c13ec1f8463ec01bf42000446451102200c5285f1b720805c71abb3aa173c5a7fc90c0e64f287c5b268fd6bad16698c3c007500a2e2bfd61ede2f2f07a0d64e6d37a7dc6543b0c6b52ea2dab78af89a6df517d80000018d001466db000004030046304402200c16a363db27f8a5ca4ca7bd9c2e06398595220c32e7b761bb84e796f72b46e202203297f9bf4feda4fe3ed17656f3eb7b03330abea8758837407b174ed1f4006f4e
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		0068ab757ce26cab3733cb172e4eb9430fd17d68635e2449c3f23de17107d06ebda9916f7e0dd795fb159bd11deb1f96bf43cfa3546c46d00c8ea5afc48eff62eed0d5628e25b41e538272d00c6cce861ed16c01a06b235da09e8a3b2c31695d45a5023882b8a23e19c975c40c195d6faf9c9eec86163af159fae80701268d363341c2e29c28a638e194765e1d60745a2aec6e128856e7bebb2b622049fc1d0d5f9c03644034690f2cc670def630490cd2e081c1e9e9d25debddbfd1712965b632883bd78abc910301bb8ce2bdef23755d88a7afc866f88bb5999880c5f2981ec84f155b160f0517d05e60d90524dcc403ff17510898c507ce159dc9cf29cfcd2e