hravetlapky.cz
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:8f:78:34:c3:a1:79:44:20:3d:6f:38:9f:dc:13:5d:7b:99 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hravetlapky.cz
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:8f:78:34:c3:a1:79:44:20:3d:6f:38:9f:dc:13:5d:7b:99Serial Number (int): 310157017591768910853184808545387158535065
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d9:c3:d9:27:31:24:41:f8:29:fe:0a:e5:5a:33:33:6a:c3:ca:91:9d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 15:ae:e7:5e:9d:f5:7a:69:8a:31:05:1e:fe:e7:4c:55:f3:ea:ce:ad
Fingerprint (sha256): 5e:91:4f:c6:37:55:dc:82:09:21:a2:04:5f:e4:a3:f3:7e:61:98:ec:89:33:09:22:ef:0e:17:da:83:9e:fa:ef
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hravetlapky.cz
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hravetlapky.cz
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hravetlapky.cz
www.hravetlapky.cz
www.hravetlapky.cz
Other certificates including the domain name hravetlapky.cz
(limited to 100 certificates)
Certificate
The complete raw certificate details for hravetlapky.cz in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFajCCBFKgAwIBAgISA494NMOheUQgPW84n9wTXXuZMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMTIyMjU0NTNaFw0x OTA2MTAyMjU0NTNaMBkxFzAVBgNVBAMTDmhyYXZldGxhcGt5LmN6MIIBIjANBgkq hkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4wHYrY/CgkCOVC3zDH4lx+1zhPiSCRJC 8Nm7b+IRrShAUk3NUE/tcK1isFmoEMZpqLR17xv7VYKpR9pcMrbKXXqKYMMwO/UD Btq8TkOnYj4sn8GP9gLYKmXW7qC+eNxgiFb5pKIwE9B1JQk2V7nozryUtthkizmZ xesC7mNL56QqoNcekUFM/Es4JfRmQIOW8pBxobE5m3xOgChC4FBL/Tg8spkkcmyW obaDAmaqi7x49PgzbrNSBPvoT7h5AXqdzB6xI7TBWKliR76oHubfHp7hicMecvu1 lfKSW67YTK4Rth3D7lMo/L6BO4Ver94XfFXEzC84u6JnPYFv3S7idwIDAQABo4IC eTCCAnUwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEF BQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTZw9knMSRB+Cn+CuVaMzNqw8qR nTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRj MGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5v cmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5v cmcvMC0GA1UdEQQmMCSCDmhyYXZldGxhcGt5LmN6ghJ3d3cuaHJhdmV0bGFwa3ku Y3owTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEGBgorBgEEAdZ5AgQC BIH3BIH0APIAdwB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWl0 VJHBAAAEAwBIMEYCIQCLbZSPIynO2h7rrv7SPSCTGVMHvyHl3tni0uwzs1PoCAIh AKkhGUXp1tKL6XNQgRxpBIjfNb6kCrleB8anGpexg7mKAHcAY/Lbzeg7zCzPC3KE J1drM6SNYXePvXWmOLHHaFRL2I0AAAFpdFST9AAABAMASDBGAiEAnFsai83IzAkk 2UUMEUYtXklXKR0uVE8YoV8gPY72QDECIQCcv19n35tKFFwTkVngF9kHSqIDrpir 06QX6Y3m4RgCGTANBgkqhkiG9w0BAQsFAAOCAQEAgnUzkv/Npo5KnIJhLFa8iu4I 6F6Djse2MU5YCdHrDr0u435HX7dUhNbEuaDuFSe7cpx68ec6R8p316vIfx9OED2l m4YzqtSIre8/fPl5Vrpal5XnX0PMIzbNV4N/f7HqINBWlxHzJ0UjSzfr+EeTUnRR tZaNneIJYanUCjS7qP2eAvXZeGpQfIBm0eoXl1VG6mq8cBj4VYgFIUZO2q/LJHrt kIBZuvhBSIyntEHQiotxBVsvTCeQVId3MXxsCkTmKKbtJ/JAfg9P3oY/b7J7dIgC +hv3ibc9TKQdVlIPceapm/hIYg41fjeWdkCt8fRWIsM9NffkZC+I0Kn4aGrH6A== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEA4wHYrY/CgkCOVC3zDH4l x+1zhPiSCRJC8Nm7b+IRrShAUk3NUE/tcK1isFmoEMZpqLR17xv7VYKpR9pcMrbK XXqKYMMwO/UDBtq8TkOnYj4sn8GP9gLYKmXW7qC+eNxgiFb5pKIwE9B1JQk2V7no zryUtthkizmZxesC7mNL56QqoNcekUFM/Es4JfRmQIOW8pBxobE5m3xOgChC4FBL /Tg8spkkcmyWobaDAmaqi7x49PgzbrNSBPvoT7h5AXqdzB6xI7TBWKliR76oHubf Hp7hicMecvu1lfKSW67YTK4Rth3D7lMo/L6BO4Ver94XfFXEzC84u6JnPYFv3S7i dwIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 310157017591768910853184808545387158535065 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-12 22:54:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-10 22:54:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hravetlapky.cz' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 28657005720250933350922324389926937732552383123402846940730876183921982299974381080510731612248432287217198572650142699974625140582903906000836744026669037411315742983324486881967148097344049685631439363476358709505021520369464580242372090716648427176212281979384834330651881471562651980886629064377969497201246348021347834420444664459190382858563898110922886965503851819298529102338345460255830113227522121787968354230032064782710546743784877404668327035049775762380019812529467507020648419088124047953285369670907432679986669345430238377249081289016150579363481811029697179580215507997708185096258895648399995888247 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d9c3d927312441f829fe0ae55a33336ac3ca919d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (38 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hravetlapky.cz' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hravetlapky.cz' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169745491c100000403004830460221008b6d948f2329ceda1eebaefed23d2093195307bf21e5ded9e2d2ec33b353e808022100a9211945e9d6d28be97350811c690488df35bea40ab95e07c6a71a97b183b98a00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169745493f400000403004830460221009c5b1a8bcdc8cc0924d9450c11462d5e4957291d2e544f18a15f203d8ef640310221009cbf5f67df9b4a145c139159e017d9074aa203ae98abd3a417e98de6e1180219 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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