catalogue.ajaxlibrary.ca
Issued by R3
About this certificate
This digital certificate with serial number 03:b2:8a:a7:b3:8d:fc:40:47:2c:e0:4a:a3:9e:e2:25:3f:8b was issued on by Let's Encrypt.
With 3 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=catalogue.ajaxlibrary.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b2:8a:a7:b3:8d:fc:40:47:2c:e0:4a:a3:9e:e2:25:3f:8bSerial Number (int): 322091423326002038041030619311595495702411
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 9e:c0:2e:2c:de:6a:7d:25:03:2e:2d:47:81:ed:ff:d3:dd:b9:3e:29
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c6:3b:03:82:c6:aa:69:da:96:6c:77:6d:91:4d:2f:1d:f9:20:af:e8
Fingerprint (sha256): a7:f4:0b:32:d2:46:b6:f6:4c:f0:66:dd:23:d5:e6:ae:2d:96:95:18:4e:e7:86:12:a9:a6:e3:e8:cd:b1:b7:f1
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate catalogue.ajaxlibrary.ca
3
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for catalogue.ajaxlibrary.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
catalogue.ajaxlibrary.ca
discover.ajaxlibrary.ca
kids.ajaxlibrary.ca
discover.ajaxlibrary.ca
kids.ajaxlibrary.ca
Other certificates including the domain name ajaxlibrary.ca
(limited to 100 certificates)
ajaxlibrary.ca
staff.ajaxlibrary.ca
www.catalogue.ajaxlibrary.ca
www.catalogue.ajaxlibrary.ca
ajaxlibrary.ca
ajaxon.bywatersolutions.com
ajaxlibrary.ca
ajaxlibrary.ca
catalogue.ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
www.catalogue.ajaxlibrary.ca
catalogue.ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
catalogue.ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
cpcontacts.ajaxlibrary.ca
cpcontacts.ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
staff.ajaxlibrary.ca
www.catalogue.ajaxlibrary.ca
www.catalogue.ajaxlibrary.ca
ajaxlibrary.ca
ajaxon.bywatersolutions.com
ajaxlibrary.ca
ajaxlibrary.ca
catalogue.ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
www.catalogue.ajaxlibrary.ca
catalogue.ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
catalogue.ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
cpcontacts.ajaxlibrary.ca
cpcontacts.ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
ajaxlibrary.ca
Certificate
The complete raw certificate details for catalogue.ajaxlibrary.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFZTCCBE2gAwIBAgISA7KKp7ON/EBHLOBKo57iJT+LMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzAzMjMwNDA2MTBaFw0yMzA2MjEwNDA2MDlaMCMxITAfBgNVBAMT GGNhdGFsb2d1ZS5hamF4bGlicmFyeS5jYTCCASIwDQYJKoZIhvcNAQEBBQADggEP ADCCAQoCggEBAMn1TBYhjNzwugtjk8OXT7rePWarIpYAO9CZKqthDzPL4YjnU9/6 I7hDP/8xTGuBMDL4QbL9R6REpLqpgEoc71LcrjsNnlLyUv1DlC3WpT7yRH3Be4hn 73KTIJDg36AyiB8Y/8ds8MDVpMDr6ohl6vMom3AHe8tSYAynh2M/1/+hldbCj0oK RrCKON01B4wzHgkJsfINIr68n7C/Q+DkLBFp/qeBUyj5VzRFf7QnYLq0GsTHRbo+ NqLzzp6PcSfFTO3fn8tJdFri0mItRxZSVCkAjey6vL7pjI3ccIbJcCem865a2lCB Mll0umFCpdXrDZTCAq/xrjoiSsqWbK+3TUcCAwEAAaOCAoIwggJ+MA4GA1UdDwEB /wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/ BAIwADAdBgNVHQ4EFgQUnsAuLN5qfSUDLi1Hge3/0925PikwHwYDVR0jBBgwFoAU FC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUFBzAB hhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9yMy5p LmxlbmNyLm9yZy8wUQYDVR0RBEowSIIYY2F0YWxvZ3VlLmFqYXhsaWJyYXJ5LmNh ghdkaXNjb3Zlci5hamF4bGlicmFyeS5jYYITa2lkcy5hamF4bGlicmFyeS5jYTBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYE gfMA8QB3ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAABhwzcNMYA AAQDAEgwRgIhAIecJKz40OQAblQK1JtvIkbJPCaqT/Lsb4zP2BHr0zlmAiEArR8+ Ssncnbc5bG2HAmm+BNti/A8JVD0iOdrA/6nrvHAAdgB6MoxU2LcttiDqOOBSHumE FnAyE4VNO9IrwTpXo1LrUgAAAYcM3DTPAAAEAwBHMEUCIADy7dONMQPqIvV/jBeQ s7n7mQSQbkrKXXCSFzwuKhEvAiEA7jD6STF9/q0JqYB/ULZLETo/zzmKRJbUmm+F Xv50qjcwDQYJKoZIhvcNAQELBQADggEBAFKnN39xo0frJyRQdjK24XNlAvkTvZmT q451eWGHI9hmF/XNthmCzl63zHgVSMprVT0iiKMqmvRyxE4sgvcDa91I/WzLiWR9 5bM3A3at/pWBI7j9nxGhGZJ9enSBRBg/eHhJpAme1Y5lWNY0dul3GzzeZtosB5tZ Jy+poqsqRS8tvsKXSoEOMomktt1D4Z5aIQuz2nBWvbA7UuEzJS4mz9GXhQStnlFF vRW2yGQum6MoblETT9e8eTMvoEaDNX3+XQ7naana9iQSC0W6j4P2TXzLqhlHdXPK AsQ5Hut+O87NKWquHEYv2TATcUBDaRpob+6IVUfvpHtTPgeNJ+xODjU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyfVMFiGM3PC6C2OTw5dP ut49ZqsilgA70Jkqq2EPM8vhiOdT3/ojuEM//zFMa4EwMvhBsv1HpESkuqmAShzv UtyuOw2eUvJS/UOULdalPvJEfcF7iGfvcpMgkODfoDKIHxj/x2zwwNWkwOvqiGXq 8yibcAd7y1JgDKeHYz/X/6GV1sKPSgpGsIo43TUHjDMeCQmx8g0ivryfsL9D4OQs EWn+p4FTKPlXNEV/tCdgurQaxMdFuj42ovPOno9xJ8VM7d+fy0l0WuLSYi1HFlJU KQCN7Lq8vumMjdxwhslwJ6bzrlraUIEyWXS6YUKl1esNlMICr/GuOiJKypZsr7dN RwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 322091423326002038041030619311595495702411 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-03-23 04:06:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-06-21 04:06:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'catalogue.ajaxlibrary.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25494859862018708669435062272174803395769582526563401938004343038343121335985211016155070390086638465151371105288205956449648935446599611222041938783523972367175480669159560794157147744753257451083311692501302043593322658677485941582059992563971690187230191950421710963377407835622914756354658085620232711742371599859300837210119550709166934884145528023666045552619743653052391544995907925995317798854002740937723752510589061570923344151723412592714580776775189522987481409817696904675489949387587295564599903584481391721585348176337844224564844856579776129051337786162775360724831318047698547480475913811700269665607 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9ec02e2cde6a7d25032e2d4781edffd3ddb93e29 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (74 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'catalogue.ajaxlibrary.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'discover.ajaxlibrary.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'kids.ajaxlibrary.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb499000001870cdc34c60000040300483046022100879c24acf8d0e4006e540ad49b6f2246c93c26aa4ff2ec6f8ccfd811ebd33966022100ad1f3e4ac9dc9db7396c6d870269be04db62fc0f09543d2239dac0ffa9ebbc700076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb52000001870cdc34cf0000040300473045022000f2edd38d3103ea22f57f8c1790b3b9fb9904906e4aca5d7092173c2e2a112f022100ee30fa49317dfead09a9807f50b64b113a3fcf398a4496d49a6f855efe74aa37 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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