huapingdao.ca

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:42:f3:04:61:96:cd:52:a9:f1:44:0c:29:3d:71:9b:45:44 was issued on by Let's Encrypt.

With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=huapingdao.ca

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:42:f3:04:61:96:cd:52:a9:f1:44:0c:29:3d:71:9b:45:44
Serial Number (int): 284118519163567347517693332002496220710212
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 6f:41:98:ff:3e:d8:b9:e2:60:d9:0b:de:2f:7b:be:ec:d5:54:05:a0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 8c:e3:ef:20:2b:72:7d:d0:b6:5e:2a:a1:a3:08:27:2f:b5:dd:a0:f5
Fingerprint (sha256): 3b:7f:59:07:9e:53:91:66:db:25:8d:a8:5f:9d:86:4a:3f:ed:30:2d:51:8d:9e:ae:38:7b:a9:b5:92:74:69:57

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate huapingdao.ca

2

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for huapingdao.ca

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

8 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

huapingdao.ca
www.huapingdao.ca

Other certificates including the domain name huapingdao.ca

(limited to 100 certificates)

Certificate

The complete raw certificate details for huapingdao.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 284118519163567347517693332002496220710212
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2017-12-06 02:59:21 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-03-06 02:59:21 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'huapingdao.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 865084004595382881614994526381115863591685407544535098817000722257794083854121711345306501596269291291313547313019559915705109552635861913482374155041978370070237952920409651251731386949094075788418438062295647959281250601662699594822055210217465687044001783278639135827977623580802662982691094178164237772453963243277640140705341099154834022606935450654162670509026762315580825279726522820693885633282541909595211143856774080716846834133482191138905181668997628141237162697974304059941391943760999151756550052592844969319196159668578878094514826857936098882229549802023496231035482166546440502516289878840173825078137006027642338572169308466426765541059000374666805400359255480412929606729296532523396483038311439799354055454160025193472736200504476646977793104823660349832290028723543564461683240238771326006719492733834554508037442183643645233501235951638376034010630472313828153441226466035037150853547461755957687505743070776470224717151128619955155397655711413250519858541809117175900011542398512914139413089972731531947153514867292862194587127088899569650822200780095048277983825158773951003938300626509684344072589278646679982453059388138817221467547455923872422174316276498263634865266524560727593716006361794316312478408593
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6f4198ff3ed8b9e260d90bde2f7bbeecd55405a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'huapingdao.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.huapingdao.ca'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/'
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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