www.hjrco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:51:dc:16:06:f9:d9:29:9a:06:56:6b:c0:b8:74:57:0f:0a was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.hjrco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:51:dc:16:06:f9:d9:29:9a:06:56:6b:c0:b8:74:57:0f:0aSerial Number (int): 289192274046969803367064731727113370406666
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 08:f9:80:5a:f2:c0:7a:20:2d:76:dc:41:4d:b2:a9:eb:a6:58:77:be
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e3:cc:f0:95:fe:df:a7:ab:be:ae:0c:33:d7:bc:4c:65:91:b2:7e:c4
Fingerprint (sha256): 0e:57:1e:c8:a4:56:f3:34:61:da:54:a7:ca:b5:43:24:13:c0:56:90:70:0c:a0:7a:93:81:74:2c:9f:e4:29:92
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.hjrco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.hjrco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.hjrco.com
Other certificates including the domain name hjrco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.hjrco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgISA1HcFgb52SmaBlZrwLh0Vw8KMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMDExODM1NTZaFw0y MDAzMzExODM1NTZaMBgxFjAUBgNVBAMTDXd3dy5oanJjby5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCkDWpXUQp9p6fSFFGE8k5vf2i6wODaLmXU UjMzhpxme9M4N1Vdn3YwP9CExIdUB2iJrNmHVip3WGt4joonh0pNlS6N8N0SbUsp Oz22YhhHoO7KwF6lq2sLp1iDZ8TWpNhQMC2fhoj0qg/Tibs48pgxr5YF3pse1+ar PAAA8tcmd7ssBQ3z9JxGy82XwGJLkAshx6Aw1avwmcGTzyV6nf6MiSTQ3kYx8jU4 VwyzrxF4UE+bZCRdUWAMzOJ1r18NSZe2hkdEX0BTnObSOBtbbQjd04uGaIeV1MB7 SLOGq9sCqJaUURV1RLPhQgv7Nsd+zjQNmVjqv3xvJXiQB7WDZatFENtL9hX4SGf6 mXYr3Ekk1HIZp6iRzykfOoF1lQX/uZJNDyyB5cN5eJaAIxWoLq3aOcYwh430/vnv qAnCNRIaiumQJP4rEjJIciw6HJIX/UY9qfJJx72Mud6HHLLt7Fh9QNapp2Zfk06g PNc0JjKliCz0F3BbTg0uD0t7KfS27dc8IXknC07jLNB7G9ZIa6cOVsINqbO9d3KV vJ1kny2ojbSaFpZJvJDAZ4HDTq2g2JjMuPb/5dIVfzCliP9m/8UfhfPgEIceRhMi iX/oNDZaM5z+2J9FK8oPgGj/hMjEvwkjAkmt41mUei0AjbTdJne0KheMZesj0i/g X9jQDNeucQIDAQABo4ICYzCCAl8wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQI+YBa 8sB6IC123EFNsqnrplh3vjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy5oanJjby5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHz APEAdwDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAW9im4UaAAAE AwBIMEYCIQCaVoC4kZ//Xcvl3aJnTG8QT900IHYERZiuUwzxxWcBsAIhAKmTqM5K Suh/3LM64elScUPV3GDeLUPvKSjixkR66pqgAHYAsh4FzIuizYogTodm+Su5iiUg Z2va+nDnsklTLe+LkF4AAAFvYpuFCgAABAMARzBFAiBmMWqBooVfzYdOqKgwVE6l +BntsHCfLJybqSHHOQ6+BwIhAKg7GdWzF5LWqT5aPE++86gZsTA9sFL2ZGh7+AGQ Tn0+MA0GCSqGSIb3DQEBCwUAA4IBAQCLy5FmkJ2YZwVPk20GKKjlJ1IMaGy/oTCK Ona11hszmYPFRL4I2fMz79Vz+QFw0NP35VgaJ9RnNG2oI7S8//GT2CSHLgUc1t3C Ntm2HU1gb4n6svYWLbovxndurcHv4mgSIH98XMfWeO6svxUlK0MyFE2Xrx4PQo1z CdDZ1cA/ycLaWrsbwVEBM7ZzVA5ztWmYNx/Dzl+p4GQHFxbjhVLkleeMv58hwIoN xAUBBzb55sjVdVWMlG+ZPuMLQCaoqU5t7/PA/7evvgD9MTrSHMdX2afEpFZl/k3X DsFoTg28xv0h64pDP/fDEzCPs98eW2Gmze7ZT5gyqXTEJP2XaQ9+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEApA1qV1EKfaen0hRRhPJO b39ousDg2i5l1FIzM4acZnvTODdVXZ92MD/QhMSHVAdoiazZh1Yqd1hreI6KJ4dK TZUujfDdEm1LKTs9tmIYR6DuysBepatrC6dYg2fE1qTYUDAtn4aI9KoP04m7OPKY Ma+WBd6bHtfmqzwAAPLXJne7LAUN8/ScRsvNl8BiS5ALIcegMNWr8JnBk88lep3+ jIkk0N5GMfI1OFcMs68ReFBPm2QkXVFgDMzida9fDUmXtoZHRF9AU5zm0jgbW20I 3dOLhmiHldTAe0izhqvbAqiWlFEVdUSz4UIL+zbHfs40DZlY6r98byV4kAe1g2Wr RRDbS/YV+Ehn+pl2K9xJJNRyGaeokc8pHzqBdZUF/7mSTQ8sgeXDeXiWgCMVqC6t 2jnGMIeN9P7576gJwjUSGorpkCT+KxIySHIsOhySF/1GPanySce9jLnehxyy7exY fUDWqadmX5NOoDzXNCYypYgs9BdwW04NLg9Leyn0tu3XPCF5JwtO4yzQexvWSGun DlbCDamzvXdylbydZJ8tqI20mhaWSbyQwGeBw06toNiYzLj2/+XSFX8wpYj/Zv/F H4Xz4BCHHkYTIol/6DQ2WjOc/tifRSvKD4Bo/4TIxL8JIwJJreNZlHotAI203SZ3 tCoXjGXrI9Iv4F/Y0AzXrnECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 289192274046969803367064731727113370406666 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-01 18:35:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-31 18:35:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.hjrco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 669275416358425146513488476935497349062270083971439072145077190739902345118433543025839856569764317692730302188148149797804857693445235408934435810696693756765090755509378239974482472864644326366171380314581845159435524836045435033797148135399931527507456543315762451578612314815100123378034974169869486766630648315910978987718040915074210967410262981426693318421267102809624092776742429870969899214645421475769641371472648869038953418557381615050255727547034323782082057541749698951006818829242371487869754118333494154039354057604624783753152230960386701245676467987629140790759223367886437670011862903316940693251538848515418413668326912730984893489766747924132849348763609814337078603746001857950534325530792029459106545735427810905601970360602345563754867315742084653145252571203178019804147097974150201248046309062737409745208480463335623826683992529757248007067236699239371557017811815252216788144087140583640121952479129702320293686696323891821570979410705847437988554910572357374153785176368318849345873691755077286424969348028453408845774974856362876506048830842577828432568633878714252480896389083498119959000173014639822108847041499518087245884338857032159979427949293361941491485140906888796928771749248151647622914354801 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 08f9805af2c07a202d76dc414db2a9eba65877be . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hjrco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016f629b851a00000403004830460221009a5680b8919fff5dcbe5dda2674c6f104fdd342076044598ae530cf1c56701b0022100a993a8ce4a4ae87fdcb33ae1e9527143d5dc60de2d43ef2928e2c6447aea9aa0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f629b850a0000040300473045022066316a81a2855fcd874ea8a830544ea5f819edb0709f2c9c9ba921c7390ebe07022100a83b19d5b31792d6a93e5a3c4fbef3a819b1303db052f664687bf801904e7d3e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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