www.hewz.ca
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:f5:e8:d3:24:7b:fa:3a:3c:a1:b6:c8:58:b7:6e:56:a2:a0 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.hewz.ca
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f5:e8:d3:24:7b:fa:3a:3c:a1:b6:c8:58:b7:6e:56:a2:a0Serial Number (int): 345015514900559166196734388845573033075360
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 04:ba:ff:6b:d1:33:ec:8a:16:cf:c4:dc:8b:68:0c:60:32:c1:79:d9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0b:de:2d:f2:51:ec:69:14:0b:de:7d:7b:73:a6:a1:b5:35:e8:fe:83
Fingerprint (sha256): 7b:5d:ee:46:66:31:a4:92:0c:a9:70:65:8e:61:01:0e:e5:a6:6d:3d:32:30:6f:8a:89:56:9f:88:a3:e8:f1:52
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.hewz.ca
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.hewz.ca
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.hewz.ca
Other certificates including the domain name hewz.ca
(limited to 100 certificates)
support.theperipheralstore.in
fr.hewz.ca
*.staging.hewz.ca
hewz.ca
support.plcorp.com
www.hewz.ca
*.dev.hewz.ca
support.strataprof.com
hewz.ca
hewz.ca
support.pelicanqsrsolutions.com
hewz.ca
support.simpleintranet.org
www.hewz.ca
help.wisetronic.com
partners.hewz.ca
www.hewz.ca
servicenter.tecnologi.ca
hewz.ca
hewz.ca
www.hewz.ca
support.plcorp.com
www.hewz.ca
partners.hewz.ca
support.worldhook.com
support.simpleintranet.org
www.hewz.ca
support.acentric-surveys.com
hewz.ca
www.hewz.ca
support.pointii.com
support.highendiron.com
www.hewz.ca
support.simpleintranet.org
support.fastclock.net
hewz.ca
*.hewz.ca
hewz.ca
cdn.hewz.ca
hewz.ca
partners.hewz.ca
support.techchaps.com
support.simpleintranet.org
help.hewz.ca
support.littlefrenchkey.com
help.shindamgmtcorp.com
www.hewz.ca
support.simpleintranet.org
*.hewz.ca
www.hewz.ca
www.hewz.ca
support.fastclock.net
fr.hewz.ca
*.staging.hewz.ca
hewz.ca
support.plcorp.com
www.hewz.ca
*.dev.hewz.ca
support.strataprof.com
hewz.ca
hewz.ca
support.pelicanqsrsolutions.com
hewz.ca
support.simpleintranet.org
www.hewz.ca
help.wisetronic.com
partners.hewz.ca
www.hewz.ca
servicenter.tecnologi.ca
hewz.ca
hewz.ca
www.hewz.ca
support.plcorp.com
www.hewz.ca
partners.hewz.ca
support.worldhook.com
support.simpleintranet.org
www.hewz.ca
support.acentric-surveys.com
hewz.ca
www.hewz.ca
support.pointii.com
support.highendiron.com
www.hewz.ca
support.simpleintranet.org
support.fastclock.net
hewz.ca
*.hewz.ca
hewz.ca
cdn.hewz.ca
hewz.ca
partners.hewz.ca
support.techchaps.com
support.simpleintranet.org
help.hewz.ca
support.littlefrenchkey.com
help.shindamgmtcorp.com
www.hewz.ca
support.simpleintranet.org
*.hewz.ca
www.hewz.ca
www.hewz.ca
support.fastclock.net
Certificate
The complete raw certificate details for www.hewz.ca in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIFTTCCBDWgAwIBAgISA/Xo0yR7+jo8obbIWLduVqKgMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMjgyMzQ1NDRaFw0y MDA0MjcyMzQ1NDRaMBYxFDASBgNVBAMTC3d3dy5oZXd6LmNhMIIBIjANBgkqhkiG 9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwevuukhcdRYc4P75ShUTlkDaxHP56Nw7oftD ysxfysJo1LttXn7Yfm9FRQUaThDkFobrTeK70NWn3x6OEoHrsOm+FXhwXcxga7HS 69fOMGo9d9m6aOAPd2ogJPQrqe4vggIeUX+rtvgK8rdWAzS4lpOBn6jjGj8KDWr5 5E85oSL6jjzkQjqzD3SpZcaavZxdEPmel8SRAoeQXlm8u3qDL2IrPo/Br7g9bV2m yUYkiVm80+9Qy5SP6VX6tf/WHkL2fwSTbppbfffInxN2zKNoQ55MagHJc1DYkfKa 4gEGhMeRzvB4xY4d1NKEoG2oitJ4479bSNq4ZF1aw01ybyHNxQIDAQABo4ICXzCC AlswDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQEuv9r0TPsihbPxNyLaAxgMsF52TAf BgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEw LgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcw LwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcv MBYGA1UdEQQPMA2CC3d3dy5oZXd6LmNhMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcG CysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5 cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHUAB7dcG+V9aP/xsMYdIxXH uuZXfFeUt2ruvGE6GmnTohwAAAFv7sLYVQAABAMARjBEAiBfVwIIiWL5/5t8W3Vx aVWgPVcXdK6A8lnq0Y/fquPr9gIgCdJVESUaW02XvtCCBaxL2fK3rM/YQzVH1GIX UnoXZQkAdgBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAW/uwtoM AAAEAwBHMEUCIQD9nspgUafHZyP/qr8cW2l7d4EQSaj9G2xeRPsSKfWNBgIgKuRa t+TbC/5BK4TK8RSAgkbC93/RtsNr22mcII1lYeUwDQYJKoZIhvcNAQELBQADggEB AEykCNtFCltkrAXZRPtvfxOhoTIYHvWha3Ve85CQLT9zDp+mS/PMnjM4ZlshxBKr XekP6vh3LNXk/Gt8iQcYIO0SQqPx8GUAxI3GTaQGGt2hK4ORVpFTgBkIWgUVNOoB NiWeFF8+YYpw+6euj4J1bnjGQYLFfXNlR1IEd6Re3tiQDxyJVikl1FxRl9LuMUrm pZoxhmcMAXuDH1qb+HEuGhH/YpsXDRMn0itMslYttS/CEDox7RKCQgwcipfhFvSM QBY0Wc97YdgpGMgSClMlC+Cz2El0yJvtW6EZTzqhXCWaKLmlknVfuvSi5I5s34By dtrrB+U8EaveTkBPxrZAIhU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwevuukhcdRYc4P75ShUT lkDaxHP56Nw7oftDysxfysJo1LttXn7Yfm9FRQUaThDkFobrTeK70NWn3x6OEoHr sOm+FXhwXcxga7HS69fOMGo9d9m6aOAPd2ogJPQrqe4vggIeUX+rtvgK8rdWAzS4 lpOBn6jjGj8KDWr55E85oSL6jjzkQjqzD3SpZcaavZxdEPmel8SRAoeQXlm8u3qD L2IrPo/Br7g9bV2myUYkiVm80+9Qy5SP6VX6tf/WHkL2fwSTbppbfffInxN2zKNo Q55MagHJc1DYkfKa4gEGhMeRzvB4xY4d1NKEoG2oitJ4479bSNq4ZF1aw01ybyHN xQIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 345015514900559166196734388845573033075360 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-28 23:45:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-27 23:45:44 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.hewz.ca' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24480335525117156044789220542085428891387816992617314262318095654359042944744653948099835311971919679316423184431394308461940159181837060536553205471493428152865150998037006784339667122818770603100401973696870646132132932023633364958455704213880795269319007043319809273047206955999961092056478940297456960969411378583596681937681481863673499650997138164569858426140499788563736458503745789351292370817973950944097416760708640578567400310156580559869629377431151768875472972304234286908313952865950561168055777721166593309079502952142351084499839692915691561764138650143170455377534686299671379559690304951138853703109 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 04baff6bd133ec8a16cfc4dc8b680c6032c179d9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hewz.ca' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016feec2d855000004030046304402205f5702088962f9ff9b7c5b75716955a03d571774ae80f259ead18fdfaae3ebf6022009d25511251a5b4d97bed08205ac4bd9f2b7accfd8433547d46217527a1765090076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016feec2da0c0000040300473045022100fd9eca6051a7c76723ffaabf1c5b697b77811049a8fd1b6c5e44fb1229f58d0602202ae45ab7e4db0bfe412b84caf114808246c2f77fd1b6c36bdb699c208d6561e5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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