healio.co
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:b7:50:c9:1e:1a:ee:98:9f:eb:64:53:47:6a:58:df:20:e5 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=healio.co
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:b7:50:c9:1e:1a:ee:98:9f:eb:64:53:47:6a:58:df:20:e5Serial Number (int): 410828199375510146449660322244513843060965
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 49:09:84:8d:03:c3:cd:9a:46:c5:cd:13:69:6c:79:55:7b:fe:f9:1f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3c:d8:aa:10:29:68:12:1b:3c:39:e6:a0:07:3c:a6:39:e8:42:cf:b4
Fingerprint (sha256): 1e:b6:5a:c7:b5:b7:d6:96:91:6f:24:2a:3e:e4:4c:00:44:0e:fd:b1:01:c9:eb:c3:81:57:2d:b5:ab:50:92:4c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate healio.co
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for healio.co
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
healio.co
www.healio.co
www.healio.co
Other certificates including the domain name healio.co
(limited to 100 certificates)
Certificate
The complete raw certificate details for healio.co in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgISBLdQyR4a7pif62RTR2pY3yDlMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MDYyMjExNDVaFw0x OTEyMDUyMjExNDVaMBQxEjAQBgNVBAMTCWhlYWxpby5jbzCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAMd5mpN1aY73ixP4wz00H0F3KO7RfSvBRqWxRPFg JnKfpL32BncVoAMb/2aPpf8Rf6pG5x2fySlS4Uo1ToS44MxJpiQBLGWg9vYdVlj+ T76MAH+PS24b0GFyAtYGDZxG9Uyxs6SC8cGgHKOSEDKZB/qyjQgUkgHn6Pre2viy x1iaqyZpI1WreS0kHATVtVyq4d7Ny6D/TlozKJjg5Cjt6Q0WErFE0LovoZFwFxHF 92tHF4LpwbfPKB3sYJqugs/wv0/YZr2FaVV9HGT6AEs47dDRZQ6NIRdFULSZR19m SjPwecIhsHFKcHoF9vQkwIzbBym/bN5JO1jfa97xLGsTDL/eGOcicPMYS2V0CPeq +A7VUG9Q6GBeJBJvhau9JGDV77qDewXptRqoDRB08qiWCbe4NLXCfTYmi/iP66gv PEJBc4mEs39FGh3BN3/fnMiWcD6Asi3E3INOvqOoYZ/Ug266JvKXNMzoEociWjPE wjnLUzAaiJ7siek31sQ1WMs7Gt9NuFku4W9cWtMaFd9/F1DxevF02gPBO5BTn0ib kgQtF/wLT3sMr80X/TLwmbsxxNZ/5ExFG3j+MbyNfSt/zQ92eml78UWE15CyL7nY BmqxPIpY54bCisz4a1Rl1ZDwbIs1UBlfcG5pp6YeDO6335r2UpmaVTtampUkLSYN aJe3AgMBAAGjggJvMIICazAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFEkJhI0Dw82a RsXNE2lseVV7/vkfMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wIwYDVR0RBBwwGoIJaGVhbGlvLmNvgg13d3cuaGVhbGlv LmNvMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYB BQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBgYKKwYBBAHWeQIE AgSB9wSB9ADyAHcAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFt CNkNCAAABAMASDBGAiEAw+SNykm/O08qcc7Qr5rOMafQiliQ/iGNqlgngqpBY9EC IQCcYNn+VzNqL93JxzuVcdCPRs1Pe5GZ9FR8+WGmmitvIQB3ACk8UZZUyDlluqpQ /FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABbQjZDPoAAAQDAEgwRgIhAKxr9XRu8XA8 97DqiuPo+Lz8lffPdHaI27GkvrHcTJ02AiEAnSoaWTN+Oe5uoe2lW8OGqT+LqAEN PwP9OSrhf0QUhjcwDQYJKoZIhvcNAQELBQADggEBACISClYoU4Pgg6DqPIODu/ml 9sOlApPTRLuaiwfQcnU1vldPlgHuPOhR4SDghX9A+5xUr6gC3Eh8WXuEa934uktt TgvOX8q/WzVU9egUFmM7VMpou1ABS0cRPHGdZEFg0fUF59kRn2tdBdWFKG2IRxGp Z6mrrSnGkPgwn8hUbPSDHGHhIZpp1DlsWYrPqSsXUun44gP9/Ez7sGV6K8MeM8zz hv9O6gvY1aTKISPhD0VTTcfadbpXyzy4wUXqAIZPbtmFZrceUANyUu/jM/mGjQvh yNYQwc8xC9TqjQU8etsrOPzv916jRHD8fcUg1JGZ1rb2qJcxIApfnmzMGuXvTIk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAx3mak3VpjveLE/jDPTQf QXco7tF9K8FGpbFE8WAmcp+kvfYGdxWgAxv/Zo+l/xF/qkbnHZ/JKVLhSjVOhLjg zEmmJAEsZaD29h1WWP5PvowAf49LbhvQYXIC1gYNnEb1TLGzpILxwaAco5IQMpkH +rKNCBSSAefo+t7a+LLHWJqrJmkjVat5LSQcBNW1XKrh3s3LoP9OWjMomODkKO3p DRYSsUTQui+hkXAXEcX3a0cXgunBt88oHexgmq6Cz/C/T9hmvYVpVX0cZPoASzjt 0NFlDo0hF0VQtJlHX2ZKM/B5wiGwcUpwegX29CTAjNsHKb9s3kk7WN9r3vEsaxMM v94Y5yJw8xhLZXQI96r4DtVQb1DoYF4kEm+Fq70kYNXvuoN7Bem1GqgNEHTyqJYJ t7g0tcJ9NiaL+I/rqC88QkFziYSzf0UaHcE3f9+cyJZwPoCyLcTcg06+o6hhn9SD brom8pc0zOgShyJaM8TCOctTMBqInuyJ6TfWxDVYyzsa3024WS7hb1xa0xoV338X UPF68XTaA8E7kFOfSJuSBC0X/AtPewyvzRf9MvCZuzHE1n/kTEUbeP4xvI19K3/N D3Z6aXvxRYTXkLIvudgGarE8iljnhsKKzPhrVGXVkPBsizVQGV9wbmmnph4M7rff mvZSmZpVO1qalSQtJg1ol7cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 410828199375510146449660322244513843060965 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-06 22:11:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-05 22:11:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'healio.co' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 813787061225375264711566574728148065398965734815863615185647400977594130360203179459198319651044097854562694977815945232969540955033820056994744485550777464990921196754636019640904885263128853116385940687831909667269111068839963116009538291932960708911948974036565100280613255487980470948699257350488755012745570716784290984116250758796691251798689034233402843490906755949331168008194642733622503796378663672183899201283656256410609319553777780103568377800408463331148251806996557556757311492200346384706602319113783661474148955310465775869966899356695028541072876242404887508043126379737330223696383731589464018200831492799206716249109949504395953083562986186340898644881362245721238644439737197659251596107809948698015902596877218152329758799227517119937762889085600853859762476662028663107013408220604165594949182728676948419159490241980633085842682951509971504995403353371025454049172986572986346477977279923756199575590879242006396758927033207354374476061168126567014987993152763225005323658208895183885540020165641657776650762477066468880104261139028946141505110866489676947431621031003212115532963775365659858946695160074622258325537855713670664037616863359783827952966537400218882549057796141238832406179638570884816955807671 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4909848d03c3cd9a46c5cd13696c79557bfef91f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'healio.co' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.healio.co' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d08d90d080000040300483046022100c3e48dca49bf3b4f2a71ced0af9ace31a7d08a5890fe218daa582782aa4163d10221009c60d9fe57336a2fddc9c73b9571d08f46cd4f7b9199f4547cf961a69a2b6f21007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d08d90cfa0000040300483046022100ac6bf5746ef1703cf7b0ea8ae3e8f8bcfc95f7cf747688dbb1a4beb1dc4c9d360221009d2a1a59337e39ee6ea1eda55bc386a93f8ba8010d3f03fd392ae17f44148637 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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