www.hakvo.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:ac:76:60:47:ff:4b:04:e5:1d:b2:1b:e9:f7:2b:8c:95:1f was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.hakvo.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:ac:76:60:47:ff:4b:04:e5:1d:b2:1b:e9:f7:2b:8c:95:1f
Serial Number (int): 320022773729960675665842718935999660725535
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: ed:61:87:e4:aa:4f:46:f6:25:b2:d7:59:2e:60:5d:18:2b:06:fc:0f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): f1:35:bf:c4:91:48:7d:23:06:5c:64:56:bc:28:74:65:2d:da:ac:85
Fingerprint (sha256): 31:75:44:53:cd:fe:cf:a5:73:86:8a:7d:00:ca:6b:60:5c:1b:50:b4:8f:da:3e:74:ab:bb:d4:f0:f7:af:ac:9a

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.hakvo.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.hakvo.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.hakvo.com

Other certificates including the domain name hakvo.com

(limited to 100 certificates)
www.hakvo.com
hakvo.com
www.hakvo.com
hakvo.com

Certificate

The complete raw certificate details for www.hakvo.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 320022773729960675665842718935999660725535
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-21 10:13:16 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-19 10:13:16 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.hakvo.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 843284063146819518325644506758971556025308276066804361147647199450830023289632834513251464002627924710357271753942549151649547620355387064083257626240412389334063028108693141576148613085586827208058611424216533052950280295232165142626161703700141565320524865002286221742165126578142457057298952891295110140191292831787700169902356499896948347184785282783291678277068930287055499263102190880544908073613804005491916243409116853513962067942051529841742249154770942803144621509351098921412650976312168757505792864420662711939109394816880333863925283785170409360898172265832399952442629784170878567136859113525541965630096976082604544567901508060256166962352145878880984228343655932822880985241996964460193048514558392499502077800047313034660790969056182341066533066080240120733138926460204402888045223544802646482521588425273246777417957336331045972127070324558829328811617697769130824986521393547926553885837268333879436279777528417706037055363182092036323514224373863086141315794764524276020515039788382411216386958082906849897774813251962008731882060620381185912795495795418592497434116277697019704315286261335306285014074629547408773251580383109514765637175951121405144742596130407764971007704777608020186418229338075306658838687621
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							ed6187e4aa4f46f625b2d7592e605d182b06fc0f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hakvo.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016cb3e1846800000403004730450221008368937c7790dd58f46ebe862409308ed933051fe59cfc7afc21f3d200e699f302205f410fce1f8ea663be0b74746968ea400677f04cb2dbbcee0bc77130135ae47b007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016cb3e18483000004030048304602210084ef31b80d9f09269cd2029385bf2b9c1f0b04a8c8a35265ca51d50850e91ff9022100e7e147d5f80cad5b161670785687c32f007bddf53292fde3fba3d53ebc7d918f
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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