DV SSL/TLS Certificate for www.kidsinthehall.ca

Certificate is witin its validity period

Issued by Let's Encrypt (R10)

About the www.kidsinthehall.ca DV SSL/TLS Certificate

This certificate with serial number 06:7f:fc:a8:38:e0:db:b9:18:10:70:97:07:b2:e0:31:d5:44 for www.kidsinthehall.ca was issued on by Let's Encrypt.

This DV SSL/TLS Certificate is currently within its validity period but we haven't checked the revocation status of this certificate, you can do this simply on revocationcheck.com. We have found some issues with the compliance of this certificate, they are be shown below. We hope this DV SSL/TLS Certificate review for www.kidsinthehall.ca provides you with the detailed information you were looking for.


We have identified some issues with this certificate:
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Let's Encrypt

Organization: Let's Encrypt
Country: US

This X.509 certificate will expire on

Certificate Details

Serial Number (hex): 06:7f:fc:a8:38:e0:db:b9:18:10:70:97:07:b2:e0:31:d5:44
Serial Number (int): 566225415103960744580361639755821872174404
Serial Number Length: 139 bits, 18 octets

Subject Key Identifier: d1:4f:95:01:20:8c:c2:02:c5:3f:bc:45:10:ef:c0:ef:d8:14:53:46
Authority Key Identifier: bb:bc:c3:47:a5:e4:bc:a9:c6:c3:a4:72:0c:10:8d:a2:35:e1:c8:e8

Fingerprint (SHA-1): ac:76:db:e4:09:79:e5:22:2a:f6:d1:55:f5:1c:a6:7b:16:07:f4:25
Fingerprint (SHA-256): 75:e3:09:66:6e:0d:61:16:1c:53:ee:ad:37:37:ae:2b:3a:02:91:3a:8c:4b:44:05:48:20:f5:f4:ad:ba:c2:e2

Issuing Certificate URL: http://r10.i.lencr.org/

Revocation Information

CRL Distribution Point: http://r10.c.lencr.org/69.crl

Check the revocation status for certificate www.kidsinthehall.ca
1
DNS Names
0
Email Addresses
0
IP Addresses

Advanced Certificate Properties

Technical details of the X.509 certificate for www.kidsinthehall.ca

Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
10
CA Certificate
This is not a CA certificate

Subject Alternative Names

www.kidsinthehall.ca

X.509 Certificate

The complete raw X.509 certificate details for www.kidsinthehall.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAgfH/axI0W08m5/mIHS50
/uWiakpminJIFvDGay6vHeSS9hEreFJfj0tWUMoBSBFnaLx9uwH6AHUOFrOl7Jho
r78mnZKGhIk/kLKcCH0s5c70raJZXbciBBTi9yBHJ4b3vEwC1kVlliz1Q9h4gAGb
hqwXxZpcdcegn22fGJ4biTbvotOBw83Vl5ZOquxAaLCGfS3T4QDtbsNpsnc7a9FZ
K4UvGft7aErDGurnxTgM0AneEX1+RZkkSQkwuwJ0ZIjqdVFtxs7CmvWPcS8f/R52
Egt8UqMHtaMT4LJv1wtDsI3j2lWz0XQfgQMdzBv6++Mn8b/tx974aPGXNugy1wLc
HQIDAQAB
-----END PUBLIC KEY-----

ASN.1 Decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 566225415103960744580361639755821872174404
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R10'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-05-18 15:26:18 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2025-08-16 15:26:17 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.kidsinthehall.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL []
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 16404074867685850061258281777363286682597948808121506981443694639513557063955399750411232544202178175116911206386722981405030358393446737147557275738252431290965593834309548137114740306674398811850524435511886340890008169199474027820465726273529272919063049707670761639811901720272034484300109617355676572731706686277528143534041951840049433822484775482741618440961660045732285214110831436684183022975548595737113104759202583665678700661294847664426814429874908399115563965132836276313705343746427589134739361625454527127212945132079422100394837053685859281714132811370771589587737083070186179843657147784578411453469
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							d14f9501208cc202c53fbc4510efc0efd8145346
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.kidsinthehall.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.31
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (39 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r10.c.lencr.org/69.crl'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007500a442c506496061548f0fd4ea9cfb7a2d26454d87a97f2fdf4559f6274f3a845400000196e43655b300000403004630440221009cd42601326510e2eed83f64bdf085a12ce7dde3c2c685825e167d66ef009093021f220cc3a74a9d337c0f9d2e6c7ea946292d5b281b508239efe9c3ee14aab1c0007600ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db000000196e43655c30000040300473045022100e2e2b09f201312521f1d0ae9f831c467a13cad0729fb1b2e4c070c30cc7f41b2022049a36ec0b32ebf0c4ed8431c9f943e29d7761b85b29ba772f3eaae84317220ce
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11
 . . . . . . . . [c:0|t:5|false] NULL []
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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