DV SSL/TLS Certificate for goodsportpainting.ca

Certificate is witin its validity period

Issued by GoDaddy.com, Inc. (Go Daddy Secure Certificate Authority - G2)

About the goodsportpainting.ca DV SSL/TLS Certificate

This certificate with serial number 29:73:87:f7:51:11:cd:63 for goodsportpainting.ca was issued on by GoDaddy.com, Inc..

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for goodsportpainting.ca provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

GoDaddy.com, Inc.

Organization: GoDaddy.com, Inc.
Organizational unit: http://certs.godaddy.com/repository/
State / Province: Arizona
Locality: Scottsdale
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 29:73:87:f7:51:11:cd:63
Serial Number (int): 2986880474163563875
Serial Number Length: 62 bits, 8 octets

Subject Key Identifier: 13:39:5c:c2:79:fb:86:02:88:48:67:73:54:9e:ba:e4:15:38:b6:bd
Authority Key Identifier: 40:c2:bd:27:8e:cc:34:83:30:a2:33:d7:fb:6c:b3:f0:b4:2c:80:ce

Fingerprint (SHA-1): 34:7b:76:4d:c1:ac:63:2e:af:ac:ed:7c:46:04:2d:86:a7:26:93:2d
Fingerprint (SHA-256): 3e:6a:88:a2:c6:f7:88:cf:62:d9:d3:9b:e4:d6:60:20:b9:65:f0:55:e4:6f:31:1d:af:64:ae:c2:9d:9f:57:7d

Issuing Certificate URL: http://certificates.godaddy.com/repository/gdig2.crt

Revocation Information

OCSP Server: http://ocsp.godaddy.com/
CRL Distribution Point: http://crl.godaddy.com/gdig2s1-41023.crl

Check the revocation status for certificate goodsportpainting.ca
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for goodsportpainting.ca

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

goodsportpainting.ca

X.509 Certificate

The complete raw X.509 certificate details for goodsportpainting.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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=
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAx8wEsv18F2cu//534TvM
pj6gq6DRvA99NHKtAI6Cg4SUBwbJjIhRMaWvRHhNEMGdjGFBfi4VsfSF+V21A0VP
W+EKJeu7A7loBWNgvSlrhCHdtew1EneeaSbl7QWDhkPTfi8gSeA7o0P/nabQ+zfi
C7jZlENAqS146wej9AaZcXsGGFYHLgcP+cQzDdhJ1W6SMhjmtiAi4knSQJ90mPtH
yyfMB/0mQQleSVKT0PKxo7pouGNUyTVxdz32yCOUZYs2tX7fuvF1EVqOwl1BBZ5W
n1prGNxfCPYVOO/T0oNGnXk5rixx7hcBwsvElqh3Kq12yYcqRl/5vBeiz+XUDJjC
hQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 2986880474163563875
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.8
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Arizona'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.7
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Scottsdale'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'GoDaddy.com, Inc.'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.11
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'http://certs.godaddy.com/repository/'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Go Daddy Secure Certificate Authority - G2'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-03-05 18:32:30 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2026-03-05 18:32:30 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'goodsportpainting.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25222027889281922108137887295967865493183187204768091695136442585134118300310179392467437063026545898063678344806816329183457106493244158941134029000162521045526766589989252392884487934992553183924743527244179217440597554263998670733330076209523079121706355533010850115503082589190100154666603630770228758093022364539531081152672215501846166953125282200550790087749394016079219528305576123776698030853500922703898541852619873519934884915981442337619667178226953064455672862646292856203082510377464044180084431242795545982880816991050094447342454106751217000544935451300430822694871064117258736323189831851987353256581
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (50 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://crl.godaddy.com/gdig2s1-41023.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (86 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.16.840.1.114413.1.7.23.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://certificates.godaddy.com/repository/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (106 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.godaddy.com/'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://certificates.godaddy.com/repository/gdig2.crt'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 40c2bd278ecc348330a233d7fb6cb3f0b42c80ce
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'goodsportpainting.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							13395cc279fb860288486773549ebae41538b6bd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (363 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (359 bytes)
							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
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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