www.hielt.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:8d:56:9e:6d:f4:53:9b:97:a5:0e:a8:c1:0e:6d:b8:37:d4 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.hielt.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:8d:56:9e:6d:f4:53:9b:97:a5:0e:a8:c1:0e:6d:b8:37:d4
Serial Number (int): 309431807751814408362994447864241617123284
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 95:a7:56:f7:45:a1:8c:b6:9b:17:5d:c7:85:d2:33:ea:81:c6:3d:32
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): d1:ae:48:0c:74:80:1b:7a:c8:94:69:4e:ff:9d:c8:f9:0a:86:13:d0
Fingerprint (sha256): 22:ac:05:3c:e0:68:7b:19:a2:63:64:d4:a4:a9:5e:cc:bd:bf:7f:ef:44:9c:47:90:c5:34:44:9c:cd:15:2a:91

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.hielt.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.hielt.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.hielt.com

Other certificates including the domain name hielt.com

(limited to 100 certificates)
www.hielt.com
hielt.com
www.gtabot.com
www.hielt.com
hielt.com
www.bitcoinviajes.com
www.hielt.com
www.oroio.com
hielt.com
hielt.com
hielt.com
hielt.com

Certificate

The complete raw certificate details for www.hielt.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 309431807751814408362994447864241617123284
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-19 22:38:43 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-18 22:38:43 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.hielt.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 867020489218708325284870772606586903175013664087903734780922235246015394502840711583429220870773388742214649055283257484981972688071050828971650757670996444541681976943546604593674663501892796139234712587971756155077711992817192303995175522628482562086686304057960252564923753681207165811257286991120029522519249212976357897027896806055215904488625483980813051581055741555120107378521936557280622759999946486836833242516900086826998111074862163469041081694992034223621658079794194273720543259247603982997168137857039394523840672403423552347840812770508488009251281725781853197365749632109995251439528077798256129247435830873720754896237671466252939497462713374055263573693407492333824499504987302657427200236089948650853100324946803725507002839080488003217310330296087684322067527696077776272208825101691735586198484388389713959233955652676494514887984250522006403937136011179626835091131531545183150407016776150092036722274593927568854176344624974520066419560051649402922196362946354977536179585548090319051190930477276835815827439716050789414415160722395504131878222620182417320437554506241397108930783057456752433346051081346081428765753072751090193238442992046255396179287518188777272965471842940395127794360572367828855552354249
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							95a756f745a18cb69b175dc785d233ea81c63d32
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hielt.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016d4be46b4300000403004630440220330e71df3aa8aa3bb6e72f9b1ef2dd70e8bab9c4a3b5263d72f21c95216b1897022031cb0e280339994b32bca287d350f6c0934a5a2a739c09014274de0bb4aae105007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d4be46b3d0000040300463044022060518cc2e485b8fbce5685366a1f868f8627fb18657a2052e4ddf51000830158022027b97a08d60da781957097af8a10874709170d3f9bff12d5a5f43ac738b43607
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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