hikingplaces.com

Issued by R3

About this certificate

This digital certificate with serial number 04:30:40:51:e7:57:10:75:e2:f0:e4:4d:4e:48:77:31:f2:7d was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=hikingplaces.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:30:40:51:e7:57:10:75:e2:f0:e4:4d:4e:48:77:31:f2:7d
Serial Number (int): 364868193199156371628094730121399648776829
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 6e:06:af:23:4b:6e:b8:5c:44:01:90:49:4b:41:05:b8:8f:a0:a4:58
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 17:81:cf:5f:7d:cd:a9:3b:db:c7:f4:a8:3d:41:0b:9f:b9:31:ab:7d
Fingerprint (sha256): 11:d3:15:37:c7:db:a1:21:7a:be:20:36:b7:a6:d2:9e:e7:16:1b:81:a6:45:8f:b9:63:cc:b4:46:15:40:dd:5c

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate hikingplaces.com

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for hikingplaces.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

hikingplaces.com
www.hikingplaces.com

Other certificates including the domain name hikingplaces.com

(limited to 100 certificates)
hikingplaces.com
www.contribuables.com
www.jeffgallagher.com
www.hikingplaces.com

Certificate

The complete raw certificate details for hikingplaces.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 364868193199156371628094730121399648776829
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-17 12:05:01 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-16 12:05:00 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hikingplaces.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 658182323468915835817190990968219467052910946555710173232376605227347782525078351183875370476199890637752611973358916165237511120935973622112745715297477357472386314379478863132505482378777254228039279051473411208553250660225699872216153938452176313621594120874683390549541937336440491787163810822444963486440323724733838817838026353671209261890182954937871825648331655986485918906177920020703337977961570378132888170872127064311315065444127336290855595614075752412345866145489261499136671909942339570623350753178785272909579505198135787783748826640737472422728306555442355069501243543046336390055412962464384234680289633615589147079119990972415485065099088447507647037910031327706128287292530936409075744072351333967359954786165102879978023126578400285321635703902353841010220982747922348371286105138582901516677378847166285667725573490219972269670729022381097198111089757631483273078134808350008934340701884913333086044489692236972711926483186385144703069239201982847513437762608940443010348349646307470248818049673335623949286311472799480409585871825166560753834269725876211216958236502531697868720050634300260028963565739966651042800109458488706120325776945373527581066687836710649853830997893297863776201672891904292425726332669
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6e06af234b6eb85c440190494b4105b88fa0a458
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hikingplaces.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hikingplaces.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018aa33e92b20000040300473045022100eeaee8a478588646de636f9e7c8399d7c0eca3f10d46a4ba462efc4693b485f30220539058827323764c7985717932dbb6a6450f113930acba69d61ca03a7bc28ca00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018aa33e92c20000040300473045022100c63c109909535da4d49d2ee995f1001d6520b510aab37a151dde9b46e00c547202202fc08162eeb639e38595f9dad657ba91852d6dcd03db40237d8d16c94be8f510
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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