hikingplaces.com
Issued by R3
About this certificate
This digital certificate with serial number 04:30:40:51:e7:57:10:75:e2:f0:e4:4d:4e:48:77:31:f2:7d was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=hikingplaces.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:30:40:51:e7:57:10:75:e2:f0:e4:4d:4e:48:77:31:f2:7dSerial Number (int): 364868193199156371628094730121399648776829
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 6e:06:af:23:4b:6e:b8:5c:44:01:90:49:4b:41:05:b8:8f:a0:a4:58
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 17:81:cf:5f:7d:cd:a9:3b:db:c7:f4:a8:3d:41:0b:9f:b9:31:ab:7d
Fingerprint (sha256): 11:d3:15:37:c7:db:a1:21:7a:be:20:36:b7:a6:d2:9e:e7:16:1b:81:a6:45:8f:b9:63:cc:b4:46:15:40:dd:5c
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate hikingplaces.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hikingplaces.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hikingplaces.com
www.hikingplaces.com
www.hikingplaces.com
Other certificates including the domain name hikingplaces.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for hikingplaces.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGAzCCBOugAwIBAgISBDBAUedXEHXi8ORNTkh3MfJ9MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MTcxMjA1MDFaFw0yMzEyMTYxMjA1MDBaMBsxGTAXBgNVBAMT EGhpa2luZ3BsYWNlcy5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoIC AQChVVFFjjgDyntL/AvJ0+yjQlp2P6Sclu8Pd1M0Hvuu0y440xTf/Qbd9RyUtWHD o2p9xxXZn5RHhy5kaE5Kzf5MCmFHCjKjt2ec8H35h499S97qNorHGUtVC5zc739W siSwQN1EZ5SsEPaeP8haXqv2X5BAN60qNTP7ubIz0WEy3xcldFNJvV9FmZG8BWhi FA5AOy2lUsHmQ/DwWxtIBVeYnxvG+mTAp6WmMv0NGkFo0KdDbG1rqvGLtNw24aBd zLOQF/n86tW8r8hRyszU7lfVLHHKuehiwjtCtu80rdriD7pewe4LuDgAzRBm2r4U vqWbZNtLDwvPPkECwF2trYuCfRN36AS7+eie4btoxEBMfAMwwYeRbjz0TZEuuDaj 66TgFEt1yfrRnuBH5nTJvghEdMVTVkJ/klSg9A0rO5U6gJmpBAuyBSewVC5/LZQU 6UhdRLAqi/lHHKe945N8cmlYp92GmNcI460T5/IK+7UQa24FSjHaksWJ4ExDh9Bj u3DqbkXLdWSbzJwIFTlYWyevH50d/SqDKuG9Zf3o6q2cwmp3v0BbfgQzYZlUhHFF FviwAf7hUw1ZeFoZlR4hON8j713jKwuxyx8/A897kJRhZ6GfpVoAiYxRdZbDUYT7 d5GglF1wxEO8Hl+a5hiMm/zidGojN1wSMW6kchWl7oqO/QIDAQABo4ICKDCCAiQw DgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAM BgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRuBq8jS264XEQBkElLQQW4j6CkWDAfBgNV HSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYI KwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0 cDovL3IzLmkubGVuY3Iub3JnLzAxBgNVHREEKjAoghBoaWtpbmdwbGFjZXMuY29t ghR3d3cuaGlraW5ncGxhY2VzLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQQG CisGAQQB1nkCBAIEgfUEgfIA8AB2ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4d CYEl7bSZAAABiqM+krIAAAQDAEcwRQIhAO6u6KR4WIZG3mNvnnyDmdfA7KPxDUak ukYu/EaTtIXzAiBTkFiCcyN2THmFcXky27amRQ8ROTCsumnWHKA6e8KMoAB2AHoy jFTYty22IOo44FIe6YQWcDIThU070ivBOlejUutSAAABiqM+ksIAAAQDAEcwRQIh AMY8EJkJU12k1J0u6ZXxAB1lILUQqrN6FR3em0bgDFRyAiAvwIFi7rY544WV+drW V7qRhS1tzQPbQCN9jRbJS+j1EDANBgkqhkiG9w0BAQsFAAOCAQEACB6nhIJvnAzB 333MqNlLS55mQVZAYw3ho+YwCvGrn7dZz2CHF1zC6I4YW8ofRvQ7YFXE/VcKePiv rk1aIqhwqZmJY/PuwHa0+QfUMz9oud5qoWr9PzmAA/tNCw6fUUChnAjbo5ZKgrgB 03FpDcWOlElycodkFOF8UJQ2Dr1kAjGKiFaH0Se9om3mFDSohWRWdAftmfzhw68T 0djnn2FOVxSs8EWvlZhaP5wxdHIa58yzmQxU8SU7C21hPWbsGKLvRZzownOPRTl2 X3Ykl/OBP8n/9vcaP9AOFIPERS5838Ajjrny7wtSYBOr8lXSkTqMOXalebcT8pSH shgv3ubQOA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoVVRRY44A8p7S/wLydPs o0Jadj+knJbvD3dTNB77rtMuONMU3/0G3fUclLVhw6NqfccV2Z+UR4cuZGhOSs3+ TAphRwoyo7dnnPB9+YePfUve6jaKxxlLVQuc3O9/VrIksEDdRGeUrBD2nj/IWl6r 9l+QQDetKjUz+7myM9FhMt8XJXRTSb1fRZmRvAVoYhQOQDstpVLB5kPw8FsbSAVX mJ8bxvpkwKelpjL9DRpBaNCnQ2xta6rxi7TcNuGgXcyzkBf5/OrVvK/IUcrM1O5X 1SxxyrnoYsI7QrbvNK3a4g+6XsHuC7g4AM0QZtq+FL6lm2TbSw8Lzz5BAsBdra2L gn0Td+gEu/nonuG7aMRATHwDMMGHkW489E2RLrg2o+uk4BRLdcn60Z7gR+Z0yb4I RHTFU1ZCf5JUoPQNKzuVOoCZqQQLsgUnsFQufy2UFOlIXUSwKov5RxynveOTfHJp WKfdhpjXCOOtE+fyCvu1EGtuBUox2pLFieBMQ4fQY7tw6m5Fy3Vkm8ycCBU5WFsn rx+dHf0qgyrhvWX96OqtnMJqd79AW34EM2GZVIRxRRb4sAH+4VMNWXhaGZUeITjf I+9d4ysLscsfPwPPe5CUYWehn6VaAImMUXWWw1GE+3eRoJRdcMRDvB5fmuYYjJv8 4nRqIzdcEjFupHIVpe6Kjv0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 364868193199156371628094730121399648776829 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-17 12:05:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-16 12:05:00 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hikingplaces.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 658182323468915835817190990968219467052910946555710173232376605227347782525078351183875370476199890637752611973358916165237511120935973622112745715297477357472386314379478863132505482378777254228039279051473411208553250660225699872216153938452176313621594120874683390549541937336440491787163810822444963486440323724733838817838026353671209261890182954937871825648331655986485918906177920020703337977961570378132888170872127064311315065444127336290855595614075752412345866145489261499136671909942339570623350753178785272909579505198135787783748826640737472422728306555442355069501243543046336390055412962464384234680289633615589147079119990972415485065099088447507647037910031327706128287292530936409075744072351333967359954786165102879978023126578400285321635703902353841010220982747922348371286105138582901516677378847166285667725573490219972269670729022381097198111089757631483273078134808350008934340701884913333086044489692236972711926483186385144703069239201982847513437762608940443010348349646307470248818049673335623949286311472799480409585871825166560753834269725876211216958236502531697868720050634300260028963565739966651042800109458488706120325776945373527581066687836710649853830997893297863776201672891904292425726332669 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6e06af234b6eb85c440190494b4105b88fa0a458 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hikingplaces.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hikingplaces.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018aa33e92b20000040300473045022100eeaee8a478588646de636f9e7c8399d7c0eca3f10d46a4ba462efc4693b485f30220539058827323764c7985717932dbb6a6450f113930acba69d61ca03a7bc28ca00076007a328c54d8b72db620ea38e0521ee98416703213854d3bd22bc13a57a352eb520000018aa33e92c20000040300473045022100c63c109909535da4d49d2ee995f1001d6520b510aab37a151dde9b46e00c547202202fc08162eeb639e38595f9dad657ba91852d6dcd03db40237d8d16c94be8f510 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00081ea784826f9c0cc1df7dcca8d94b4b9e66415640630de1a3e6300af1ab9fb759cf6087175cc2e88e185bca1f46f43b6055c4fd570a78f8afae4d5a22a870a9998963f3eec076b4f907d4333f68b9de6aa16afd3f398003fb4d0b0e9f5140a19c08dba3964a82b801d371690dc58e94497272876414e17c5094360ebd6402318a885687d127bda26de61434a88564567407ed99fce1c3af13d1d8e79f614e5714acf045af95985a3f9c3174721ae7ccb3990c54f1253b0b6d613d66ec18a2ef459ce8c2738f4539765f762497f3813fc9fff6f71a3fd00e1483c4452e7cdfc0238eb9f2ef0b526013abf255d2913a8c3976a579b713f29487b2182fdee6d038