hoitavahengitys.fi
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:2d:28:03:5b:a8:47:56:26:62:db:36:b0:ee:11:b8:c5:c6 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hoitavahengitys.fi
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:2d:28:03:5b:a8:47:56:26:62:db:36:b0:ee:11:b8:c5:c6Serial Number (int): 276702750862476625854412316644381141026246
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f7:e0:0a:95:70:42:f0:79:2e:62:d5:fc:9c:d4:c8:38:b0:74:ba:ea
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 02:5a:a6:80:c8:4d:72:1a:33:23:0f:8e:fa:27:07:d5:09:87:c5:0f
Fingerprint (sha256): 68:7d:fd:5d:f4:9c:08:68:9b:14:8f:58:4d:32:81:c5:e1:e3:7e:a3:90:1e:7c:0e:9a:78:f9:6f:9e:c9:7e:cb
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hoitavahengitys.fi
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hoitavahengitys.fi
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hoitavahengitys.fi
www.hoitavahengitys.fi
www.hoitavahengitys.fi
Other certificates including the domain name hoitavahengitys.fi
(limited to 100 certificates)
Certificate
The complete raw certificate details for hoitavahengitys.fi in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGdTCCBV2gAwIBAgISAy0oA1uoR1YmYts2sO4RuMXGMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MjMyMDE5MDlaFw0x OTExMjEyMDE5MDlaMB0xGzAZBgNVBAMTEmhvaXRhdmFoZW5naXR5cy5maTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANH9+L3OBA1+Ain6pwBR3rUO1B6J N0/1hPKW629dETWuUg/Q/FH4SQXlIcptRUD0uKxx07tkhjbPzI+C0fjBXBP9sBCp nVuvNcBUYSJG1AJXlU9G1zCpDh+0gZeaFQNA6KEPnFlCy9uvsE1bbWbJiTOA54qs SjFbNYJQUjJWe5WKhmWxYf4u9ZjQoKuZsluwsbUtlhZaXVN6PiNE33EZHEFV87Dq U2Ho2QT2OKsktIgLxEiSYcfd3pZtnpkYUeSdLI2ch+I7dPGf+T2O6Q1AK+fKFHdJ E1fUIipUK5IiZVIwqFEMhXavDleK3C7q7oyAH82Vh+Qyx9S50BKXD4cFqDcOXCUf rEoBmT6UaXGx5upPO6A7IGvYqvpRkOP7T0/lZtSoJ1HE0GXHL9vIk4cN43ACm8b3 RTqwmcY2fjX/zUMYX7vnfmTb79XF7mb1kSTd97dNZSnjLiQtnizCwFl+3dJ3zSmY v98c0rwdUAr+yx+kzEeyDCKeAFk2SjfL5zx7ovpKRlBVNjzKaiP0q+wesZYchb9h Fzfeb7QuUi/pBB3H8eOSHLSm43cbab6vAeaWgmX44OdUQxxRswHyhzJp66p3s0oM XtPBzweVq7MiP2oo700JksvpBPMadSOaFpcnCHZK8NUrV3GfQ0krR87jn4JLFzFq u/ejs1w2hWop2Z1vAgMBAAGjggKAMIICfDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FPfgCpVwQvB5LmLV/JzUyDiwdLrqMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wNQYDVR0RBC4wLIISaG9pdGF2YWhlbmdp dHlzLmZpghZ3d3cuaG9pdGF2YWhlbmdpdHlzLmZpMEwGA1UdIARFMEMwCAYGZ4EM AQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0 c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcA4mlLribo6UAJ 6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFswFjtXQAABAMASDBGAiEAo8goQJ5o P+7yxXiHxKgUyeCc38yEfnNis0Xp9wg0ijACIQDgV3oS/OIpn+t3rNcjFAqEiwxn K+Gv8qFalj3OGnDO+QB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4 AAABbMBY7X4AAAQDAEcwRQIgZUr+q0ENxJeTacATT3NnmKf8RC/r8Y8JX8EvvQ5q XagCIQCM21IWrsjSfrDmNrBoM1dqvtHWABt/JnuZ0rSu5hHD0zANBgkqhkiG9w0B AQsFAAOCAQEAeLmodrhPZP1+7G4cBD/tgjCXxm6EOFIGgOSWRmZ/DooFjG4b44Ca YfLCuohtOw7JM9THh8hiol6WA2moc16L6kbaLk8PiFxHDmAsIUYukWCDjTf/yDEn bGpfKY5tSV64GR+H6ADLT/iuvIiKa7j2XNTU/IEy5HQrSDydO1qfjRE0tC208cX8 Pat016Y0Q93DLR/jqqWqpf/5jHSlblokbHUQIM+tHC+jUeA53/MRTFAoxcXSv3y5 Q/t6SnOCecuxzLnad5fKb4koh2aLSkLLWPuIvc1Db+bJPjN+oxOCxrX7cKv9R2rX 7WpwJT6e9upKvAjQkn9YKd2Ft0kG6vuGaQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0f34vc4EDX4CKfqnAFHe tQ7UHok3T/WE8pbrb10RNa5SD9D8UfhJBeUhym1FQPS4rHHTu2SGNs/Mj4LR+MFc E/2wEKmdW681wFRhIkbUAleVT0bXMKkOH7SBl5oVA0DooQ+cWULL26+wTVttZsmJ M4DniqxKMVs1glBSMlZ7lYqGZbFh/i71mNCgq5myW7CxtS2WFlpdU3o+I0TfcRkc QVXzsOpTYejZBPY4qyS0iAvESJJhx93elm2emRhR5J0sjZyH4jt08Z/5PY7pDUAr 58oUd0kTV9QiKlQrkiJlUjCoUQyFdq8OV4rcLurujIAfzZWH5DLH1LnQEpcPhwWo Nw5cJR+sSgGZPpRpcbHm6k87oDsga9iq+lGQ4/tPT+Vm1KgnUcTQZccv28iThw3j cAKbxvdFOrCZxjZ+Nf/NQxhfu+d+ZNvv1cXuZvWRJN33t01lKeMuJC2eLMLAWX7d 0nfNKZi/3xzSvB1QCv7LH6TMR7IMIp4AWTZKN8vnPHui+kpGUFU2PMpqI/Sr7B6x lhyFv2EXN95vtC5SL+kEHcfx45IctKbjdxtpvq8B5paCZfjg51RDHFGzAfKHMmnr qnezSgxe08HPB5WrsyI/aijvTQmSy+kE8xp1I5oWlycIdkrw1StXcZ9DSStHzuOf gksXMWq796OzXDaFainZnW8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 276702750862476625854412316644381141026246 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-23 20:19:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-21 20:19:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hoitavahengitys.fi' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 856692930215530457946060626250523748218989878377110879950115091595236333901790824549837900117176715481926178982288386314329786699964249434245462589992656591698898319219781179827525852632475348939174733222734079588000569063900775813811052781659624386750524865134450080009202743486520140123241788062553522310302571892631851489675472553333952628765650653998182500875562996982808379660004403882066068687330074122370942490462337968165663747254077499956178305977280992032730046440991217020759843117763176593006187199955725503422821349874757048308345954684381483646372813555096318988141606982891391536782218505054156219421092310782008952165892999250798837682422346221808384399620013554240428693788963984399951009062146434982555668359969898328873535938557101303765271742532981545290419358862737341097610465020743369027889909643913955476550542156584274777306524145503108859469129951861183757888786480126531725132641579829432729538987082311179661670674808689214210983813117125218864332148219684449779866644640820089444265526254226271917178244547176026664531155161279328171738860890187264915632908429897893435662411099327762545060823596165848578418443835809605196595596325725146648563995295440193763651322574299871632881245255537751787463875951 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f7e00a957042f0792e62d5fc9cd4c838b074baea . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (46 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hoitavahengitys.fi' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hoitavahengitys.fi' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016cc058ed5d0000040300483046022100a3c828409e683feef2c57887c4a814c9e09cdfcc847e7362b345e9f708348a30022100e0577a12fce2299feb77acd723140a848b0c672be1aff2a15a963dce1a70cef9007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016cc058ed7e00000403004730450220654afeab410dc4979369c0134f736798a7fc442febf18f095fc12fbd0e6a5da80221008cdb5216aec8d27eb0e636b06833576abed1d6001b7f267b99d2b4aee611c3d3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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