tektonik.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:5c:56:0d:8c:7d:7a:91:17:73:e9:32:27:d7:4d:b1:20:c9 was issued on by Let's Encrypt.
With 6 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=tektonik.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:5c:56:0d:8c:7d:7a:91:17:73:e9:32:27:d7:4d:b1:20:c9Serial Number (int): 292757219508982539698042618677823766864073
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 77:c8:e7:d5:af:1c:69:61:11:d5:be:98:02:a2:51:51:9c:a5:3e:b8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 8b:6d:20:47:f0:65:33:d5:4c:d5:5c:49:48:37:1a:5a:da:d9:a0:b5
Fingerprint (sha256): b0:43:2c:d8:5e:61:2e:c1:d2:1c:4b:3b:02:39:e1:6e:91:7a:bb:4b:55:8f:e0:1b:68:2d:c1:55:30:9d:06:11
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate tektonik.ca
6
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for tektonik.ca
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
8 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mail.tektonik.ca
mail.tektonik.com
tektonik.ca
tektonik.com
www.tektonik.ca
www.tektonik.com
mail.tektonik.com
tektonik.ca
tektonik.com
www.tektonik.ca
www.tektonik.com
Other certificates including the domain name tektonik.ca
(limited to 100 certificates)
tektonik.com
it.tektonik.ca
tektonik.com
tektonik.com
tektonik.com
it.tektonik.ca
it.tektonik.ca
it.tektonik.ca
tektonik.com
tektonik.com
it.tektonik.ca
tektonik.com
tektonik.com
it.tektonik.ca
tektonik.com
tektonik.ca
tektonik.com
tektonik.ca
tektonik.com
tektonik.ca
tektonik.com
tektonik.com
it.tektonik.ca
it.tektonik.ca
it.tektonik.ca
tektonik.com
tektonik.com
tektonik.com
it.tektonik.ca
it.tektonik.ca
it.tektonik.ca
tektonik.com
tektonik.com
it.tektonik.ca
tektonik.com
tektonik.com
it.tektonik.ca
tektonik.com
tektonik.ca
tektonik.com
tektonik.ca
tektonik.com
tektonik.ca
tektonik.com
tektonik.com
it.tektonik.ca
it.tektonik.ca
Certificate
The complete raw certificate details for tektonik.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTzCCBTegAwIBAgISA1xWDYx9epEXc+kyJ9dNsSDJMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xNzExMTQwODQwNDhaFw0x ODAyMTIwODQwNDhaMBYxFDASBgNVBAMTC3Rla3RvbmlrLmNhMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAwdW1S1Wx8B9udTKLT+tcrKPSZ6DGxnJeS9f3 9aqFo4FF/C1hUd9y3bj8mjLVVjPgj2g4lDJTgTPIQ9yJCwUnfz2SdmKSg4wOSJvl guEu3JZM5wVE9xO+YolZWQ2Jrjltdt+P8+lYiqW5o+usG0wU3zlBK9SpzlSIphuG 9ScqfAZ1VMtx+fEFQd2mMeeW8Y0HB8kgNwO7T+ze+UzU2hNlUv1BKsPJquk91CJn WaCMgpHlwJMz6kRNoHYoNyjp8ndkkUHgu95IJWG+qinlWHWjwSckmP7qLNHZ3yZz TzRnX0k5S3uibXZmmqFoVzgtzIuRo2d32p8hofHse6lKiFYv+Kxl5D4nHDpeWWbh ok26Er22RLiTzTVxNTN6N/yUhzICOy9UxNP3cf9uolhAkfR9Dn0WYt434OwCC80T 1UueJDuIJS9P3wKK/wrCtHDMX6h6ngYiY9MjJvpeIVAwE0WYU8eiGQ4UffCHK+zu 5n1jixxoL99R73GQkTVYB4LsUmbg0oJtUnkmqzSpc9Uc+fYppf7KKWUX+4Ksl1AZ ADJl3TvagHBZnYEJ4BIfUIZkXkIwqE7aKaVycxtShplbrBJqyPcry1QMr7Ee3K+K zEeMM2sCuKTGRp+/xUht/jVrXveuu7R3kJaT0wbdF4yJsDcVWrIvdc142MhttBB8 oZici40CAwEAAaOCAmEwggJdMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUd8jn1a8c aWER1b6YAqJRUZylPrgwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzBsBgNVHREEZTBjghBtYWlsLnRla3RvbmlrLmNhghFt YWlsLnRla3RvbmlrLmNvbYILdGVrdG9uaWsuY2GCDHRla3RvbmlrLmNvbYIPd3d3 LnRla3RvbmlrLmNhghB3d3cudGVrdG9uaWsuY29tMIH+BgNVHSAEgfYwgfMwCAYG Z4EMAQIBMIHmBgsrBgEEAYLfEwEBATCB1jAmBggrBgEFBQcCARYaaHR0cDovL2Nw cy5sZXRzZW5jcnlwdC5vcmcwgasGCCsGAQUFBwICMIGeDIGbVGhpcyBDZXJ0aWZp Y2F0ZSBtYXkgb25seSBiZSByZWxpZWQgdXBvbiBieSBSZWx5aW5nIFBhcnRpZXMg YW5kIG9ubHkgaW4gYWNjb3JkYW5jZSB3aXRoIHRoZSBDZXJ0aWZpY2F0ZSBQb2xp Y3kgZm91bmQgYXQgaHR0cHM6Ly9sZXRzZW5jcnlwdC5vcmcvcmVwb3NpdG9yeS8w DQYJKoZIhvcNAQELBQADggEBAHVkxwHI+2uU52Sn+pbtIbh5wIOgVFM/lmOpvmSp eQIX+SF4mTPytM/uw0/cuDYzXuVq8JJAlJ4PFD4bT6qbkSFDlRslZoRk81pcjG6r LjLnRQPXOq4jfrl4A0uH2JNrpPUxPRGwjzQSr0tD4zkH1ILbwrm3Ar/EpkEcJZVl Mwp/QCD1qe3GW11Ijm1EDu+pQzKRosdCElI6oqKgi0DN6XVEzF+TQfImJPmR/ppb Shx0io3swSLIVpXo9Uk1KDIzSvfk0mvD6bTQLW8i4JodY/dsF1evjOIxuBjBUShv iFPDikYsCEG0MDZP/fipATpR0npyIxJ0h/5ifJHKF+Bct/c= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwdW1S1Wx8B9udTKLT+tc rKPSZ6DGxnJeS9f39aqFo4FF/C1hUd9y3bj8mjLVVjPgj2g4lDJTgTPIQ9yJCwUn fz2SdmKSg4wOSJvlguEu3JZM5wVE9xO+YolZWQ2Jrjltdt+P8+lYiqW5o+usG0wU 3zlBK9SpzlSIphuG9ScqfAZ1VMtx+fEFQd2mMeeW8Y0HB8kgNwO7T+ze+UzU2hNl Uv1BKsPJquk91CJnWaCMgpHlwJMz6kRNoHYoNyjp8ndkkUHgu95IJWG+qinlWHWj wSckmP7qLNHZ3yZzTzRnX0k5S3uibXZmmqFoVzgtzIuRo2d32p8hofHse6lKiFYv +Kxl5D4nHDpeWWbhok26Er22RLiTzTVxNTN6N/yUhzICOy9UxNP3cf9uolhAkfR9 Dn0WYt434OwCC80T1UueJDuIJS9P3wKK/wrCtHDMX6h6ngYiY9MjJvpeIVAwE0WY U8eiGQ4UffCHK+zu5n1jixxoL99R73GQkTVYB4LsUmbg0oJtUnkmqzSpc9Uc+fYp pf7KKWUX+4Ksl1AZADJl3TvagHBZnYEJ4BIfUIZkXkIwqE7aKaVycxtShplbrBJq yPcry1QMr7Ee3K+KzEeMM2sCuKTGRp+/xUht/jVrXveuu7R3kJaT0wbdF4yJsDcV WrIvdc142MhttBB8oZici40CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 292757219508982539698042618677823766864073 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-11-14 08:40:48 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-02-12 08:40:48 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'tektonik.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 790776982127702790132564040330817659253007694665498185205713726274049791175696246281233814030093703023896651912271164853592485875751373513062959771374587995886139465886059394552283770898854550226397872070115382886605314534509519558802207274699186661193979923894933535645514593417105475875430872416660754453237121951127931342557429546784955178956209530396757349624765763029901654068980529511929242741404626166961136694600797717997823196851564476827470960980412665145083383886932054782274400607091656343761798460178251776377098979487587189604602355546048734251047611300532327532619558746532055919900349911148947521129725132276573165872871581730709993935498874157949120445168240687256838124847109466075126754113942916340412050530560966395347290813394777287235493492286862922773263075399675119675385166614569578425195283980243908081601063862137661720584910901623010026101619512317659392652000147719776654611541125949998665291375085754289280108957788819348818437852502938980746428335393477256642422569654598305051016300994603574170590353919932851964123067725242314958379388921988806659141964858490009911772546884682358567347732918700296993374167611190981395733232296209374417788779099517015465716096794929576657812478071606989055189617549 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 77c8e7d5af1c696111d5be9802a251519ca53eb8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (101 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.tektonik.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mail.tektonik.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tektonik.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tektonik.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tektonik.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.tektonik.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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