Account Access Help

sys_admin · March 23, 2023, 1:56pm

Hi,

My client has a certificate issued from this site. However, they do not know who created the account and we are able to login to download the certificate, or renew it.

Would you be able to direct to someone who can help us with this issue?

Thank you

danb35 · March 23, 2023, 1:58pm

There is no "login to download the certificate" from Let's Encrypt; certificates are obtained using client software that, when operating correctly, automates the process. See this page for an overview:

Bruce5051 · March 23, 2023, 2:44pm

How do they know this? What is the certificate being presently being used to do?

Please fill out the fields below so we can help you better. Note: you must provide your domain name to get help. Domain names for issued certificates are all made public in Certificate Transparency logs (e.g. crt.sh | example.com), so withholding your domain name here does not increase secrecy, but only makes it harder for us to provide help.

My domain is:

I ran this command:

It produced this output:

My web server is (include version):

The operating system my web server runs on is (include version):

My hosting provider, if applicable, is:

I can login to a root shell on my machine (yes or no, or I don't know):

I'm using a control panel to manage my site (no, or provide the name and version of the control panel):

The version of my client is (e.g. output of certbot --version or certbot-auto --version if you're using Certbot):

Thank you for assisting us in helping YOU!

sys_admin · March 23, 2023, 4:01pm

Hi,

Thank you for your response The certificate is currently being used on their website.

The domain is: arsi.ca

I don't have any of the other information requested. They also don't know who is hosting their website.

Bruce5051 · March 23, 2023, 4:06pm

Here is a list of Issued Certificates https://crt.sh/?q=arsi.ca, the latest being 2023-03-22 and going back to 2019-09-04 for Let's Encrypt Issued Certificates.

Bruce5051 · March 23, 2023, 4:12pm

Using this online tool https://sitereport.netcraft.com/ yields these results

Showing

Netblock Owner	IMAGEBANK
Hosting company	TeraGo Networks
Nameserver	dns1.registrar-servers.com
Domain registrar	cira.ca
Nameserver organisation	whois.namecheap.com
Organisation	Soula Tsakanikas
Reverse DNS	static-74-122-133-139.ptr.terago.net

IP delegation
IPv4 address (74.122.133.139)
IP range	Country	Name	Description
::ffff:0.0.0.0/96	 United States	IANA-IPV4-MAPPED-ADDRESS	Internet Assigned Numbers Authority
 ↳ 74.0.0.0-74.255.255.255	 United States	NET74	American Registry for Internet Numbers
  ↳ 74.122.128.0-74.122.135.255	 Canada	TERAGO-DCC-YYZ-4	TeraGo Networks Inc.
   ↳ 74.122.133.0-74.122.133.255	 Canada	DCC-IMAGEBANK-74-122-133-0-BLOCKA	IMAGEBANK
    ↳ 74.122.133.139	 Canada	DCC-IMAGEBANK-74-122-133-0-BLOCKA	IMAGEBANK

Bruce5051 · March 23, 2023, 4:17pm

Also using this online tool SSL Server Test (Powered by Qualys SSL Labs) gives these results A
SSL Server Test: arsi.ca (Powered by Qualys SSL Labs)
The thing I note is the Certificate is shared with many other Alternative names (SANs) Domain Names (not uncommon), so in all likely hood the Hosting Provider is handling the renewal of the Certificate.

rg305 · March 23, 2023, 4:37pm

Based on there being 54 different domains on the cert, I would have to agree.
Their only common thread is the HSP:

advancedprofiles.com
ageofbronze.ca
alexanderdentalcentre.com
allfitnessprofessionals.com
anitali.me
arsi.ca
beavertondentaloffice.com
biancoflooring.ca
boltonauto.ca
boomerscloud.com
bychancealone.com
claytonparkplazadental.ca
cvor.ca
dentistrybythebay.ca
djwoodentertainment.com
drhoffmanperio.com
dsenviro.ca
dynacert.com
easymathforkids.com
elmtreedoodles.com
enduresports.ca
extremegarage.ca
factorof.com
farynn.com
fitness365.ca
flagstoneporches.com
fulcoenvironmental.com
gwpt.com
hargta.com
hillcountryms.com
inttradia.com
iopw.com
jonesoconnell.ca
kinderschoolnursery.com
kindredfinancialservices.com
kwoodkitchens.com
lashesbyregina.ca
manereviews.com
manordentalcentre.com
maribechealth.com
michaelshairdesign.com
mobiletruckemissiontest.com
northeastroofing.ca
pdxn.ca
pefferlawdentalcentre.com
powerking.ca
rwardz.com
superiormachining.com
terraquest.ca
theallianceug.com
trustedbud.com
verview.com
winningonlinebook.com
worldwidehealthmovement.com

Osiris · March 23, 2023, 6:16pm

Well, someone is paying someone else for the site. So just follow the money and you/they'll find out who's hosting their website.

sys_admin · March 23, 2023, 6:42pm

Everyone here has been a big help.

Thank you all!

system · April 22, 2023, 6:42pm

This topic was automatically closed 30 days after the last reply. New replies are no longer allowed.