canadianbiblesociety.ca
Issued by R3
About this certificate
This digital certificate with serial number 03:f9:6e:07:ec:71:e7:20:c0:98:23:92:ef:70:07:99:35:1a was issued on by Let's Encrypt.
With 14 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=canadianbiblesociety.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f9:6e:07:ec:71:e7:20:c0:98:23:92:ef:70:07:99:35:1aSerial Number (int): 346213423379881747290366676011422301369626
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2b:72:f2:2a:77:3f:94:a2:5f:79:c7:7e:5f:08:15:89:a7:3c:d0:a7
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): fc:b2:a9:86:bf:55:63:7f:8b:41:0c:fc:ae:d3:34:bd:61:98:ac:8a
Fingerprint (sha256): e0:e1:b4:ba:6f:a2:77:57:23:f1:12:87:84:1b:bf:ff:d9:11:0e:a1:76:ea:d5:a7:7a:15:cb:98:04:92:6f:92
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate canadianbiblesociety.ca
14
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for canadianbiblesociety.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
800voicemailservices.com
bigdaddybangstick.com
canadianbiblesociety.ca
craigmont.com
goldentrianglecasino.com
homeschooldigital.org
inlinepressure.com
install.cslaee.com.typeflights.com
larsgars.com
lgb.pw.republicanphotocompany.com
myrtlebeachepoxy.com
pagis.com
recurvecrossbow.com
scovillesecurity.com.vietseattle.net
bigdaddybangstick.com
canadianbiblesociety.ca
craigmont.com
goldentrianglecasino.com
homeschooldigital.org
inlinepressure.com
install.cslaee.com.typeflights.com
larsgars.com
lgb.pw.republicanphotocompany.com
myrtlebeachepoxy.com
pagis.com
recurvecrossbow.com
scovillesecurity.com.vietseattle.net
Other certificates including the domain name canadianbiblesociety.ca
(limited to 100 certificates)
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
musicofabraham.com.canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
beyob.com.canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
musicofabraham.com.canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
canadianbiblesociety.ca
beyob.com.canadianbiblesociety.ca
Certificate
The complete raw certificate details for canadianbiblesociety.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGODCCBSCgAwIBAgISA/luB+xx5yDAmCOS73AHmTUaMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzEwMTEyMDU3MTNaFw0yNDAxMDkyMDU3MTJaMCIxIDAeBgNVBAMT F2NhbmFkaWFuYmlibGVzb2NpZXR5LmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A MIIBCgKCAQEAwzODKHJYSYCPgrUy8UADfN6Iowc1LowZWb+QqxKzl2D1NJStzaF/ WaQcQz7QgdNKvGIk0ROnM3I1r5UCTiwMxyayajV6A+ejBH55yeTO703oKlcj+Xdw zLOzNfpTYuSYEnPbsmpSNzfSIhD0ylGx6sKCLEPp52bBLFgUDS6St513xooSmceW taaCePvlnRzhmAc0d+O9zGE51xu4Lyjk+bE7PHIZg/gxdYsO9YaDE1XXPo20D/li 2NcfQBS0taevcNkxgwduvrBlALz0RsPuAsqNOKirZTM704MGMTqVmM151OA5kP1E YJhTq9c9KN1Rf1m8d5Ziy6/MFNwkrVOdUQIDAQABo4IDVjCCA1IwDgYDVR0PAQH/ BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8E AjAAMB0GA1UdDgQWBBQrcvIqdz+Uol95x35fCBWJpzzQpzAfBgNVHSMEGDAWgBQU LrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGG FWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmku bGVuY3Iub3JnLzCCAVwGA1UdEQSCAVMwggFPghg4MDB2b2ljZW1haWxzZXJ2aWNl cy5jb22CFWJpZ2RhZGR5YmFuZ3N0aWNrLmNvbYIXY2FuYWRpYW5iaWJsZXNvY2ll dHkuY2GCDWNyYWlnbW9udC5jb22CGGdvbGRlbnRyaWFuZ2xlY2FzaW5vLmNvbYIV aG9tZXNjaG9vbGRpZ2l0YWwub3JnghJpbmxpbmVwcmVzc3VyZS5jb22CImluc3Rh bGwuY3NsYWVlLmNvbS50eXBlZmxpZ2h0cy5jb22CDGxhcnNnYXJzLmNvbYIhbGdi LnB3LnJlcHVibGljYW5waG90b2NvbXBhbnkuY29tghRteXJ0bGViZWFjaGVwb3h5 LmNvbYIJcGFnaXMuY29tghNyZWN1cnZlY3Jvc3Nib3cuY29tgiRzY292aWxsZXNl Y3VyaXR5LmNvbS52aWV0c2VhdHRsZS5uZXQwEwYDVR0gBAwwCjAIBgZngQwBAgEw ggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdwDatr9rP7W2Ip+bwrtca+hwkXFsu1GE hTS9pD0wSNf7qwAAAYsgvnFUAAAEAwBIMEYCIQCwxAxpEVx4/ehPnJrhOYTfmbPu 8zR+VD6NHrKFtUpGJAIhANxCFNCw1K/GE3U2lFqYwNPQeIXys+TTOyELSWQ7XGhI AHYAO1N3dT4tuYBOizBbBv5AO2fYT8P0x70ADS1yb+H61BcAAAGLIL5zOgAABAMA RzBFAiEA3kdYkZlJkY8iJQwQRZrhcKE2OY/Dst5h9v+OJpza5K8CIDxoyeHvK/wA TnGuqwTAZriPtpWCddIZ7p/TQZrI8sQRMA0GCSqGSIb3DQEBCwUAA4IBAQCa0k9G Yb1CW3G0OGcq2h7WU7e7zfWWiMITPUNjHbqwTSI0BkJiQz3TC2Fv8WIM8wnJYlb/ zdMYHnGL/S6Hh9UHR39zzuUvW0Dj20ewG+YyCpBgyFsko2kCzkEmXZ1f59HkzGTa W68zuZ3cC8e2pRNCZ2ReDGiqmmhS4MmWM0HRZdMAB6Vv0wjB6VrqKm6Ki5TSsoos qhyWU/hnPZfYoP/AgkVyTM6me8OFshizUd+KvInC6VasdkDJuDmtE3/TqZEG7mUX 9/Pjk0sq2A9afzWA0CXyjCw0tnK2tnbzKz0Z/do3gtC8xfkDRtzRRQV53fdLCdq7 /QEhwIDTCGVvlqtd -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwzODKHJYSYCPgrUy8UAD fN6Iowc1LowZWb+QqxKzl2D1NJStzaF/WaQcQz7QgdNKvGIk0ROnM3I1r5UCTiwM xyayajV6A+ejBH55yeTO703oKlcj+XdwzLOzNfpTYuSYEnPbsmpSNzfSIhD0ylGx 6sKCLEPp52bBLFgUDS6St513xooSmceWtaaCePvlnRzhmAc0d+O9zGE51xu4Lyjk +bE7PHIZg/gxdYsO9YaDE1XXPo20D/li2NcfQBS0taevcNkxgwduvrBlALz0RsPu AsqNOKirZTM704MGMTqVmM151OA5kP1EYJhTq9c9KN1Rf1m8d5Ziy6/MFNwkrVOd UQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 346213423379881747290366676011422301369626 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-11 20:57:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-09 20:57:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'canadianbiblesociety.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24641871147955690538718990750183050774037936932881869449786175759588768067413390703575523132038870779002411058941582986802414513323625144492662584233371342112688216019688885253527711415463140552856637418881169978981955002947178583124022321633506722295089200409633703366933954964860222780774820971578325024621967956773548502305186116501282089859874515634117428469386074909134944378217703901036109322839728214209660439743618083795959821343227246798676278433432683710354811651372176559194850667378824986364050782487954685436314671665876489368864483908926902012097192424299199609349399533620219974793360285951950310317393 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2b72f22a773f94a25f79c77e5f081589a73cd0a7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (339 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String '800voicemailservices.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bigdaddybangstick.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canadianbiblesociety.ca' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'craigmont.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'goldentrianglecasino.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'homeschooldigital.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'inlinepressure.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'install.cslaee.com.typeflights.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'larsgars.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lgb.pw.republicanphotocompany.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'myrtlebeachepoxy.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pagis.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'recurvecrossbow.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scovillesecurity.com.vietseattle.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b20be71540000040300483046022100b0c40c69115c78fde84f9c9ae13984df99b3eef3347e543e8d1eb285b54a4624022100dc4214d0b0d4afc6137536945a98c0d3d07885f2b3e4d33b210b49643b5c68480076003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b20be733a0000040300473045022100de4758919949918f22250c10459ae170a136398fc3b2de61f6ff8e269cdae4af02203c68c9e1ef2bfc004e71aeab04c066b88fb6958275d219ee9fd3419ac8f2c411 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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