Darth Shiv
Posts: 2,371 +886
The issue with the certificate is actually stated in the original "subject":
"pixel.mathtag.com"
That is the website the certificate is valid for. You are visiting a website called paypal.com. So the subject doesn't match I.e. the certificate was NOT for paypal. Could be a MITM attack.
Secondly, certificate trust chains NEED a domain name. NO certificate is valid for an IP address as the trust chain checks the certificate subject and validates it against the address you visit as well as the issuer of the certificate. It's like asking if the certificate is authentic. Anyone can say "oh yeah this is a paypal certificate" but the way it is verified is it is signed by an authority that is trustworthy to check the person who requested signing is the legit owner of the domain. So there is no way to bind an IP to a certificate and check validity because that is not how the system is designed to work.
The problem is clearly yours. Your machine has been compromised in some way. A *very unlikely* alternative is your ISP is trying a MITM attack.
"pixel.mathtag.com"
That is the website the certificate is valid for. You are visiting a website called paypal.com. So the subject doesn't match I.e. the certificate was NOT for paypal. Could be a MITM attack.
Secondly, certificate trust chains NEED a domain name. NO certificate is valid for an IP address as the trust chain checks the certificate subject and validates it against the address you visit as well as the issuer of the certificate. It's like asking if the certificate is authentic. Anyone can say "oh yeah this is a paypal certificate" but the way it is verified is it is signed by an authority that is trustworthy to check the person who requested signing is the legit owner of the domain. So there is no way to bind an IP to a certificate and check validity because that is not how the system is designed to work.
The problem is clearly yours. Your machine has been compromised in some way. A *very unlikely* alternative is your ISP is trying a MITM attack.
