northlightseasonal.com

Issued by Encryption Everywhere G3 TLS ECC P384 SHA384 2023 CA1

About this certificate

This digital certificate with serial number 0f:6a:9d:a2:f8:78:c4:fd:e2:41:c5:f1:54:41:9c:f5 was issued on by DigiCert, Inc..

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=northlightseasonal.com

DigiCert, Inc.

Organization: DigiCert, Inc.
Country: US

This certificate will expire on

Certificate Details

Serial Number (hex): 0f:6a:9d:a2:f8:78:c4:fd:e2:41:c5:f1:54:41:9c:f5
Serial Number (int): 20492000653946814246468343797712526581
Serial Number lenght: 124 bits, 16 octets

SubjectKeyId: 76:54:5e:cd:54:37:08:90:78:54:e9:6c:88:7d:ac:72:80:40:78:bd
AuthorityKeyId: 85:ad:24:14:28:40:ee:ba:f5:24:cf:12:c4:e7:ac:ae:d0:0c:cb:7d

Fingerprint (sha1): 34:6f:a0:c9:0f:72:ac:b9:d3:ad:3c:af:6b:22:e1:22:43:30:cf:f7
Fingerprint (sha256): a5:1e:17:4c:a7:56:61:89:4c:5a:38:1c:f6:84:4c:e6:90:c3:0d:9c:e0:aa:45:95:5a:ee:60:8a:31:e7:f4:ab

Issuing Certificate URL: http://cacerts.digicert.com/EncryptionEverywhereG3TLSECCP384SHA3842023CA1.crt

Revocation information

OCSP Server: http://ocsp.digicert.com

Check the revocation status for certificate northlightseasonal.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for northlightseasonal.com

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

ECDSA with SHA384

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

northlightseasonal.com
www.northlightseasonal.com

Other certificates including the domain name northlightseasonal.com

(limited to 100 certificates)
www.northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
www.northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
www.northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
www.northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
www.northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
www.northlightseasonal.com
www.northlightseasonal.com
www.northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
www.northlightseasonal.com
northlightseasonal.com
northlightseasonal.com

Certificate

The complete raw certificate details for northlightseasonal.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx5V9F+eVr91Kv3Wm17EG
rvbHmEJjkzpdSOJoXXAzgBJkrbuyMsE88pBY0xQb+sfpdr15OqHz8OGWPww+U9Og
mSaQY5CpTimxO2MzDka8RLmH3WixWSx1dOzRKqfA0Z7cPsc90aXysT8iT2k9pZb3
FOeTyth84kKzg3ldvTpyfMkum2JhhnlII3e5ylAAQyL7i4EvHaJnzDKiHUqUa8/c
hkqTngb0BrecbNyba366TxGvc0S0pHb1fkO0jj2LioBOYo1QQG6KTRb/+Z2rHD7f
MXWw5OI8TnILI4MaRzqtYhEa7UiRADjVfi1iPZWyBbdX6E9CON8L0f436VaC5eqV
QwIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 20492000653946814246468343797712526581
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.4.3.3 (ecdsaWithSHA384)
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'DigiCert, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Encryption Everywhere G3 TLS ECC P384 SHA384 2023 CA1'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-09 00:00:00 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-04-08 23:59:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'northlightseasonal.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25195138287009053882998250375548118016647140750442209428530016682320801201074323963215400124654746691575264880644353003823575830824427754495254864786039725759814500285209537239167979553973268691350554566259833241971577128571737639761892595135845991627596097445409790834348929235290705287376811248228910755194946717663629129892560162772030639721720190432050412246384067713539540137651798237700821183274623515047029982528812567330295511034251069943585968081139145702877745243056616739994371642697748884083162099402685355252075644845526495661285418127449188710841013492315394753197501384215121533838801215736927914464579
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 85ad24142840eebaf524cf12c4e7acaed00ccb7d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							76545ecd543708907854e96c887dac72804078bd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (54 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'northlightseasonal.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.northlightseasonal.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (55 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://www.digicert.com/CPS'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (132 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.digicert.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cacerts.digicert.com/EncryptionEverywhereG3TLSECCP384SHA3842023CA1.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (365 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (361 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.10045.4.3.3 (ecdsaWithSHA384)
 . . . . [c:0|t:3|false] BIT STRING (824 bits)
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 18293143853127472781749532895760104103569618009686055628793008588037277800836726317228271830651323049313356282627412
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 32151866202690848668946293007167573924663188647771442452384096713597435957531979045214220474253415718001704916934080