canadianbiblesociety.ca

Issued by R3

About this certificate

This digital certificate with serial number 03:f9:6e:07:ec:71:e7:20:c0:98:23:92:ef:70:07:99:35:1a was issued on by Let's Encrypt.

With 14 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=canadianbiblesociety.ca

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:f9:6e:07:ec:71:e7:20:c0:98:23:92:ef:70:07:99:35:1a
Serial Number (int): 346213423379881747290366676011422301369626
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 2b:72:f2:2a:77:3f:94:a2:5f:79:c7:7e:5f:08:15:89:a7:3c:d0:a7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): fc:b2:a9:86:bf:55:63:7f:8b:41:0c:fc:ae:d3:34:bd:61:98:ac:8a
Fingerprint (sha256): e0:e1:b4:ba:6f:a2:77:57:23:f1:12:87:84:1b:bf:ff:d9:11:0e:a1:76:ea:d5:a7:7a:15:cb:98:04:92:6f:92

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate canadianbiblesociety.ca

14

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for canadianbiblesociety.ca

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

800voicemailservices.com
bigdaddybangstick.com
canadianbiblesociety.ca
craigmont.com
goldentrianglecasino.com
homeschooldigital.org
inlinepressure.com
install.cslaee.com.typeflights.com
larsgars.com
lgb.pw.republicanphotocompany.com
myrtlebeachepoxy.com
pagis.com
recurvecrossbow.com
scovillesecurity.com.vietseattle.net

Other certificates including the domain name canadianbiblesociety.ca

(limited to 100 certificates)
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
musicofabraham.com.canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
beyob.com.canadianbiblesociety.ca

Certificate

The complete raw certificate details for canadianbiblesociety.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzODKHJYSYCPgrUy8UAD
fN6Iowc1LowZWb+QqxKzl2D1NJStzaF/WaQcQz7QgdNKvGIk0ROnM3I1r5UCTiwM
xyayajV6A+ejBH55yeTO703oKlcj+XdwzLOzNfpTYuSYEnPbsmpSNzfSIhD0ylGx
6sKCLEPp52bBLFgUDS6St513xooSmceWtaaCePvlnRzhmAc0d+O9zGE51xu4Lyjk
+bE7PHIZg/gxdYsO9YaDE1XXPo20D/li2NcfQBS0taevcNkxgwduvrBlALz0RsPu
AsqNOKirZTM704MGMTqVmM151OA5kP1EYJhTq9c9KN1Rf1m8d5Ziy6/MFNwkrVOd
UQIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 346213423379881747290366676011422301369626
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-11 20:57:13 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-09 20:57:12 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'canadianbiblesociety.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24641871147955690538718990750183050774037936932881869449786175759588768067413390703575523132038870779002411058941582986802414513323625144492662584233371342112688216019688885253527711415463140552856637418881169978981955002947178583124022321633506722295089200409633703366933954964860222780774820971578325024621967956773548502305186116501282089859874515634117428469386074909134944378217703901036109322839728214209660439743618083795959821343227246798676278433432683710354811651372176559194850667378824986364050782487954685436314671665876489368864483908926902012097192424299199609349399533620219974793360285951950310317393
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							2b72f22a773f94a25f79c77e5f081589a73cd0a7
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (339 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '800voicemailservices.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bigdaddybangstick.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canadianbiblesociety.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'craigmont.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'goldentrianglecasino.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschooldigital.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inlinepressure.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'install.cslaee.com.typeflights.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'larsgars.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lgb.pw.republicanphotocompany.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myrtlebeachepoxy.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pagis.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'recurvecrossbow.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scovillesecurity.com.vietseattle.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b20be71540000040300483046022100b0c40c69115c78fde84f9c9ae13984df99b3eef3347e543e8d1eb285b54a4624022100dc4214d0b0d4afc6137536945a98c0d3d07885f2b3e4d33b210b49643b5c68480076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b20be733a0000040300473045022100de4758919949918f22250c10459ae170a136398fc3b2de61f6ff8e269cdae4af02203c68c9e1ef2bfc004e71aeab04c066b88fb6958275d219ee9fd3419ac8f2c411
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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