canadaslandtrust.ca
Issued by R3
About this certificate
This digital certificate with serial number 03:fb:bd:b0:75:e3:5e:35:5c:22:d9:c5:71:ac:cd:01:87:2c was issued on by Let's Encrypt.
With 13 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=canadaslandtrust.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:fb:bd:b0:75:e3:5e:35:5c:22:d9:c5:71:ac:cd:01:87:2cSerial Number (int): 346999872218942618115895853918065115891500
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: fc:28:d9:79:5b:bc:df:c2:39:79:df:e5:7f:55:6e:8f:96:0c:4e:a2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 2a:29:6d:99:64:ed:6c:b1:17:07:49:f0:80:08:3c:49:08:20:35:09
Fingerprint (sha256): d3:41:3f:76:41:b4:1b:f7:f1:9a:51:1a:d0:8a:48:19:30:94:1f:7c:7b:1b:2b:35:29:e8:e5:95:25:10:8e:e6
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate canadaslandtrust.ca
13
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for canadaslandtrust.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
beautyconvalley.com
boredfoundation.com
canadaslandtrust.ca
finddevshop.com
forestrywizard.com
goldentrianglecasino.com
hi.netooze.com
iitchaps.com
internetdomainsale.com
k-u.in
malavika.in
oregoncourt.com
texasnewhomesdirectory.com
boredfoundation.com
canadaslandtrust.ca
finddevshop.com
forestrywizard.com
goldentrianglecasino.com
hi.netooze.com
iitchaps.com
internetdomainsale.com
k-u.in
malavika.in
oregoncourt.com
texasnewhomesdirectory.com
Other certificates including the domain name canadaslandtrust.ca
(limited to 100 certificates)
canadaslandtrust.ca
arbitrager.ca
canadaslandtrust.ca
canadaslandtrust.ca
canadaslandtrust.ca
writeathon.com.handpiecerepair.co.canadaslandtrust.ca
canadaslandtrust.ca
canadaslandtrust.ca
norwoodwaterworks.ca
canadaslandtrust.ca
hombresparahombres.com.canadaslandtrust.ca
canadaslandtrust.ca
canadaslandtrust.ca
canadaslandtrust.ca
canadaslandtrust.ca
arbitrager.ca
canadaslandtrust.ca
canadaslandtrust.ca
canadaslandtrust.ca
writeathon.com.handpiecerepair.co.canadaslandtrust.ca
canadaslandtrust.ca
canadaslandtrust.ca
norwoodwaterworks.ca
canadaslandtrust.ca
hombresparahombres.com.canadaslandtrust.ca
canadaslandtrust.ca
canadaslandtrust.ca
canadaslandtrust.ca
canadaslandtrust.ca
Certificate
The complete raw certificate details for canadaslandtrust.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIE5TCCA82gAwIBAgISA/u9sHXjXjVcItnFcazNAYcsMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDMwNzI2NDNaFw0yNDA3MDIwNzI2NDJaMB4xHDAaBgNVBAMT E2NhbmFkYXNsYW5kdHJ1c3QuY2EwggEiMA0GCSqGSIb3DQEBAQUAA4IBDwAwggEK AoIBAQDImvEOhEbnjj0F+tVbEUFZkA2H8KD/zJAlu+NfO9nEUZTF5l9edhfIjH1O IvMCuB8O+vHpD1GGMJvQJ7nkXbckhVcCgCkK5Yo76kRuGgpBY90rOgqPNSTt6ARf 1PisIvhNRaND8aCn4aCenJJG6+WKVl55OpDXRE5ABKKQeog428lTMvg4T8m01E1K 1WpI82Y2nAvqUoVo9niNSLl/WQ/3ZEpZMswSg1fA2H22yiMInQProOaEVFI6o3sb U4CJKc0332L8SUcvB+wO/kHaGEizFUuhKQy195A6v+dIie8xtclOJwEvg7qe4IRz S+1pinStIF1pGzYnyz3yBD6f6MYrAgMBAAGjggIHMIICAzAOBgNVHQ8BAf8EBAMC BaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFPwo2XlbvN/COXnf5X9Vbo+WDE6iMB8GA1UdIwQYMBaAFBQusxe3 WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcwAYYVaHR0 cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMuaS5sZW5j ci5vcmcvMIIBAQYDVR0RBIH5MIH2ghNiZWF1dHljb252YWxsZXkuY29tghNib3Jl ZGZvdW5kYXRpb24uY29tghNjYW5hZGFzbGFuZHRydXN0LmNhgg9maW5kZGV2c2hv cC5jb22CEmZvcmVzdHJ5d2l6YXJkLmNvbYIYZ29sZGVudHJpYW5nbGVjYXNpbm8u Y29tgg5oaS5uZXRvb3plLmNvbYIMaWl0Y2hhcHMuY29tghZpbnRlcm5ldGRvbWFp bnNhbGUuY29tggZrLXUuaW6CC21hbGF2aWthLmlugg9vcmVnb25jb3VydC5jb22C GnRleGFzbmV3aG9tZXNkaXJlY3RvcnkuY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIB MBMGCisGAQQB1nkCBAMBAf8EAgUAMA0GCSqGSIb3DQEBCwUAA4IBAQAoHRU5QCT1 Iejg61gvQuKc/l7qPt9R5ZA2y6ZU5kVbPkjHTMDGQyymK1XH3/HsmeHfDqAMHz2L q36VInFQ9vTEsZnnlBtQG92rM9G/t0+Oxnc/Q/HyZPXeYXHO34Dr0HkZYT+OoZ/b 5ZT4Y4gpVj9yZ9yEA8voBX3xZMl0NWdcUQ+t6kTVI6BzlaAxf86QwzAjNV85MTB7 0X3Qiz1wPHL7pwgH/ptgM9o0jwMrZqfQOupKLUyLle2exAZWsqgAz7bzJ+ZD88Cp sTQ13I61aaOsJXcXYeMDeeT7vURdgRN7eJJfgyNNXJREQZtTXJVQwOJz/RcLH6Wa 5kxV2sxWViaR -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAyJrxDoRG5449BfrVWxFB WZANh/Cg/8yQJbvjXzvZxFGUxeZfXnYXyIx9TiLzArgfDvrx6Q9RhjCb0Ce55F23 JIVXAoApCuWKO+pEbhoKQWPdKzoKjzUk7egEX9T4rCL4TUWjQ/Ggp+GgnpySRuvl ilZeeTqQ10ROQASikHqIONvJUzL4OE/JtNRNStVqSPNmNpwL6lKFaPZ4jUi5f1kP 92RKWTLMEoNXwNh9tsojCJ0D66DmhFRSOqN7G1OAiSnNN99i/ElHLwfsDv5B2hhI sxVLoSkMtfeQOr/nSInvMbXJTicBL4O6nuCEc0vtaYp0rSBdaRs2J8s98gQ+n+jG KwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 346999872218942618115895853918065115891500 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-03 07:26:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-02 07:26:42 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'canadaslandtrust.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25324065557495991044686940556603502960178066073014802698662619863770218998320070976784165372970744105078290286606293355251974116044480487018567599209087031110939877675559946652645963900951634336711812981840730134003320349473504558284322220372473714495240378546618461419424711875697582863821161763048791812655312656789497306110329122405716805437066981267541346936079383720165146810418411364355289843558323133467443901355783140134953102225119264645128691468943790475878422272112514335410718159484646139234282470616113049495919618588911870134493996969961629270681257020711762766969998441837570974566938714802184566392363 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fc28d9795bbcdfc23979dfe57f556e8f960c4ea2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (249 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'beautyconvalley.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'boredfoundation.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canadaslandtrust.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'finddevshop.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'forestrywizard.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'goldentrianglecasino.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hi.netooze.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'iitchaps.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'internetdomainsale.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'k-u.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'malavika.in' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'oregoncourt.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'texasnewhomesdirectory.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.3 (CT Precertificate Poison) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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