knmed.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:33:46:42:a1:37:b6:32:3d:2b:ff:fd:4f:d9:65:78:72:72 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=knmed.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:33:46:42:a1:37:b6:32:3d:2b:ff:fd:4f:d9:65:78:72:72Serial Number (int): 278784650429428091119388506788376314671730
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 98:e6:9c:a6:47:ef:c1:1b:3d:3a:17:5d:48:ac:5f:c0:bc:40:29:f4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 27:60:b3:fe:dc:cd:a8:7a:83:5d:76:8c:ee:b8:f1:da:e5:8f:4e:bd
Fingerprint (sha256): 45:76:50:99:e0:11:27:ee:7f:92:d1:ef:c4:20:89:1c:d2:83:14:53:95:65:ce:88:31:30:1b:f9:29:26:ef:b7
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate knmed.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for knmed.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
knmed.com
Other certificates including the domain name knmed.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for knmed.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgISAzNGQqE3tjI9K//9T9lleHJyMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTEwNTQ1MDZaFw0y MDAzMTAwNTQ1MDZaMBQxEjAQBgNVBAMTCWtubWVkLmNvbTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBANL9EdJEstz852E4SIw+5S5+jwpYGFqpzr/2GJJo soAEkKRzAxAX3hyUgvIwaB3+Yl4FoULIMOsXnVCQYR47otLAY6BBGZ7XXMR4q+7Y Vj7bdYgzVX85WLW8AW3HmyI5dntN3obTRBYT+BfGMAXCGiai/cnr96C+IWHP11Y6 NW6PWunnea8BjyXniryRtlAappKuTtBGqQqPH/StafVjl+aybnHThBpo3sHVPVkt H9w912y9TZnHhy85IhVki6nNiyjmHNIgqjuG88bPxQY2aXzhIlJqIXMYjmjBKATv jg1FBThZlMKsQq7DJdJsze7FScTS15zGa3pMmVWSr3E4G5nfyt1Jez+xtBMSXfiZ R5qtZsA5p67wR+eEvPOSeHR8A2QFc8mh2KqOB+bY3X6Kp41q545IxC5C1NZCxBXw beV8g/xF+ek4WgeHPLDQaSWBan2P2JBt1jkfdc9rACJvAdktiiqHw9N5s+yyYUz+ tGB92pvRYyp9XKr9DZKfWXgehc7Y/9DWyteUcJfS8ybLzPFa6YaXHhkLvsloUf4k 0blrHT8yOPwe4SulJrW5bVaNEJuEiOVbItL2ponWB4kOE1ltpa2ftw3YFFHP3cIq D4qrdfTSEuSGXOFdL3kT5LTvJ5ZDssXuOgWrSiD+6RULQ9jbQhMbYHdEFeqzey1T 5BN1AgMBAAGjggJdMIICWTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFJjmnKZH78Eb PToXXUisX8C8QCn0MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wFAYDVR0RBA0wC4IJa25tZWQuY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUA8JWk WfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFu87Q/jwAABAMARjBEAiBA 2poEyIPfkDMnb9yvG8k6Up7WLBZ7WOC+eZjex9cbtwIgLor/uyYjfHXWXPMqcbO0 yWg9EZYsf50b6rNT1gIY9qwAdgAHt1wb5X1o//Gwxh0jFce65ld8V5S3au68YToa adOiHAAAAW7ztD/oAAAEAwBHMEUCIQCn831nn61wBT3UcUoLnQbOYUjNsuqvMTFG aG7Kh6LgwAIgeqr22vGSu66e4LLAch5luBpC/ddrJtZsJYgpOOH1mKQwDQYJKoZI hvcNAQELBQADggEBAC7rpmVSgH5nrYAlXc7nuFKM3JxeWonoafhE6+5ksij3BhE/ NHDT7KyfhK5nZ0fWT2fkKkaOWXoGv0DkmrXSGlIy5YL7b6S75xDZ8kjafyDa1OxI LkRwuPNqPlE7ErELoVMK3PpZ9FbJPqAGNYDn2p7P2SjTUqyebUDb8hsd/iBbzMR6 k5yao8LxdvZ94FFnAlgyQQgkULYMmXXeV0B+Bc4pyZmOFB1SkrSvN8FGGgboxsys s6pcYW/JV7AE42uO6BU8ROgmBUAnmOU17YIFfJIpRfoNqc7orUo2+cMpXiI/OQ3G YFdx4cR7hj7tcio2yIupRgkP7M2nfwakintgHi8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0v0R0kSy3PznYThIjD7l Ln6PClgYWqnOv/YYkmiygASQpHMDEBfeHJSC8jBoHf5iXgWhQsgw6xedUJBhHjui 0sBjoEEZntdcxHir7thWPtt1iDNVfzlYtbwBbcebIjl2e03ehtNEFhP4F8YwBcIa JqL9yev3oL4hYc/XVjo1bo9a6ed5rwGPJeeKvJG2UBqmkq5O0EapCo8f9K1p9WOX 5rJucdOEGmjewdU9WS0f3D3XbL1NmceHLzkiFWSLqc2LKOYc0iCqO4bzxs/FBjZp fOEiUmohcxiOaMEoBO+ODUUFOFmUwqxCrsMl0mzN7sVJxNLXnMZrekyZVZKvcTgb md/K3Ul7P7G0ExJd+JlHmq1mwDmnrvBH54S885J4dHwDZAVzyaHYqo4H5tjdfoqn jWrnjkjELkLU1kLEFfBt5XyD/EX56ThaB4c8sNBpJYFqfY/YkG3WOR91z2sAIm8B 2S2KKofD03mz7LJhTP60YH3am9FjKn1cqv0Nkp9ZeB6Fztj/0NbK15Rwl9LzJsvM 8VrphpceGQu+yWhR/iTRuWsdPzI4/B7hK6UmtbltVo0Qm4SI5Vsi0vamidYHiQ4T WW2lrZ+3DdgUUc/dwioPiqt19NIS5IZc4V0veRPktO8nlkOyxe46BatKIP7pFQtD 2NtCExtgd0QV6rN7LVPkE3UCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 278784650429428091119388506788376314671730 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-11 05:45:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-10 05:45:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'knmed.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 860758199410664516708691674401249247823698480320434323788596804565124493051238601172829764864128835441936721780927689281451593877368654911120180941866425266817170732822431678636011958099088003091574812703052259810647634945830708095106432225516582023049670661153585605204093877030017319681823100629092091102922215836326210996088911506900054983787682621967261188417919413147751403909495984612405525898744262467472258617632260596495057433908488777522071614119770566375195563648064195614057507077072347493160557936864002848533310103137175123133590708741971382803574295105351888246648905327836510539500188444370496628232685038380017992690365686362008431364396903377448019544114134905828776114585376418482279981625631001931853907576953657875733312985717996224366106118419179132790160355286067524963461496052297855405582451020298772869247466623498166540822472513210867787181208596130577022087306936757659776963727861878438271547122498682413796849662395507352967713080971650781051174243603148421540075508683134519663486759026411750377687251635349846785985607503970994873662714891761619955964233249969568836004793609887814995464847325914467135008581007931545741683308226722779786564987422485537415702699454948437412314469991337489542408311669 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 98e69ca647efc11b3d3a175d48ac5fc0bc4029f4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knmed.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016ef3b43f8f0000040300463044022040da9a04c883df9033276fdcaf1bc93a529ed62c167b58e0be7998dec7d71bb702202e8affbb26237c75d65cf32a71b3b4c9683d11962c7f9d1beab353d60218f6ac00760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016ef3b43fe80000040300473045022100a7f37d679fad70053dd4714a0b9d06ce6148cdb2eaaf313146686eca87a2e0c002207aaaf6daf192bbae9ee0b2c0721e65b81a42fdd76b26d66c25882938e1f598a4 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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