www.htk.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:3f:5f:10:e2:bc:7b:cd:18:37:3c:03:5f:4e:96:7e:bf:1c was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.htk.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:3f:5f:10:e2:bc:7b:cd:18:37:3c:03:5f:4e:96:7e:bf:1cSerial Number (int): 282901011246406946281548165574350153367324
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: e8:f9:79:e2:f7:f7:79:40:68:d4:14:80:d7:d6:ff:9b:0a:d6:dd:8e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e6:70:65:74:04:82:cf:10:48:bb:d9:68:2b:d7:61:cf:0e:dc:d0:ac
Fingerprint (sha256): 8d:06:0c:b6:0c:43:f5:e1:dc:26:49:3a:8d:c7:75:b6:ae:5d:64:dd:2e:5b:f7:8a:0d:a3:45:c7:56:34:67:81
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.htk.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.htk.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.htk.org
Other certificates including the domain name htk.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.htk.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTjCCBTagAwIBAgISAz9fEOK8e80YNzwDX06Wfr8cMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTExMDE4NTBaFw0y MDAxMDkxMDE4NTBaMBYxFDASBgNVBAMTC3d3dy5odGsub3JnMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEA7K0F1/FfNXwI1zs94ccdIR1haYdxPJZyvmG5 W/fYkk8lIJoJVyUD5FAXmpbTR0k3Z138xuAd+JfR/Dz+LeZ8T0LwRwnH6o5jJH5l rbfw4kL5eG7RlqP3iW379/qPM7VKIy5eO3Lm0qmxXxVvJxzpreCRloHJC6L40SGQ aLULa+qDr/JhZco3f9ZqNEA2v5e8koXVlmwDCpDINJ7hcHS1fCyXcjzzHcgHOLl2 sPy3nbnDpLPSgUdTUxGL/DVJZqr8eFFHQhrYWeMfa3Gx42L068ZXa3NFInUilxRh 8GDc5/kbO0zc9Hh8HtgWyMAObHF05QXuXDqYZlbMvTmqhXa1XiwT67e0jsdJsOO6 ITd3JE/lgp4w2B3coJcoyQnwRNzMLH2ivb1ycsB2ILT7C5ldbgXPUTOT9YdhewBo ksDlMPD6riy3g3S8UPJV6Xx7zCptlGFY4rqd/KXQ1VnvFFVgyUH5W/7IhPoO86kn 3BouaxN5t27E2tgXkkoR+e1Cr4Ya+7OK1Uj0xlf9FCtD677/oqtYBsmJFVZEpWa+ AQAttYWVPxi3JITt/Oh15d7gfIEM5o58e26dUGpvhQnvyaLSPS9CEX3uANW4qM+o Sal9/WygFeQWYeBVbbeSRVKho59oNWiRT4lMR2xsipCvajk6Ah+x5JijFVKupyMR E4Ix9PMCAwEAAaOCAmAwggJcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU6Pl54vf3 eUBo1BSA19b/mwrW3Y4wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAWBgNVHREEDzANggt3d3cuaHRrLm9yZzBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJUy3vi5BeAAABbbqK8WoAAAQDAEcw RQIhALLGTIp5x8mm1b74hEALynbEnnaW24N0KtHhL40UgwkLAiANNDF5aU4alH7D /mNatOhTsncubXtx5KuEXs1fd6/QpAB2AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEA KQaNsgiaN9kTAAABbbqK8Z0AAAQDAEcwRQIhALi2lKYAxlqP773cqyL5iGss8MCv 7k9nNYYXD+MEmuQZAiBkd0476sATRGvfkW5cCOTvP+lq9hqrn+Ga5/cG8/4x8zAN BgkqhkiG9w0BAQsFAAOCAQEAS/wnCsOxdFJSi+fQcU2AKteOx1h3VPGLDyUdXaz/ MyWdlmEre8ABRChVthS5x6YKEW+c7xdWGudCuXDcb5oRDZPhMHewVIQIv9HX2/gv PZnM3+lMSWSDWv0zV0LgD/47iB1zU6hWYG2mbfjDBYNelixDQi7K+FZRnpwV5oqR xCE3DjEJFAxUVbDctdvG7onxGtmglN/Lls3p10HaY4kOJ6nR2dRy9V6oVhI+f3RR Rv817WYPaQkd+cJd4ZGOF6cfRi0N7SweeFfkHV1VRZvctbns6AiucxMnlIlBa+xM UuzmDyOw4AutqTvDmVBSPsxVZQMep+8wbLFGL99NhfSWjg== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA7K0F1/FfNXwI1zs94ccd IR1haYdxPJZyvmG5W/fYkk8lIJoJVyUD5FAXmpbTR0k3Z138xuAd+JfR/Dz+LeZ8 T0LwRwnH6o5jJH5lrbfw4kL5eG7RlqP3iW379/qPM7VKIy5eO3Lm0qmxXxVvJxzp reCRloHJC6L40SGQaLULa+qDr/JhZco3f9ZqNEA2v5e8koXVlmwDCpDINJ7hcHS1 fCyXcjzzHcgHOLl2sPy3nbnDpLPSgUdTUxGL/DVJZqr8eFFHQhrYWeMfa3Gx42L0 68ZXa3NFInUilxRh8GDc5/kbO0zc9Hh8HtgWyMAObHF05QXuXDqYZlbMvTmqhXa1 XiwT67e0jsdJsOO6ITd3JE/lgp4w2B3coJcoyQnwRNzMLH2ivb1ycsB2ILT7C5ld bgXPUTOT9YdhewBoksDlMPD6riy3g3S8UPJV6Xx7zCptlGFY4rqd/KXQ1VnvFFVg yUH5W/7IhPoO86kn3BouaxN5t27E2tgXkkoR+e1Cr4Ya+7OK1Uj0xlf9FCtD677/ oqtYBsmJFVZEpWa+AQAttYWVPxi3JITt/Oh15d7gfIEM5o58e26dUGpvhQnvyaLS PS9CEX3uANW4qM+oSal9/WygFeQWYeBVbbeSRVKho59oNWiRT4lMR2xsipCvajk6 Ah+x5JijFVKupyMRE4Ix9PMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 282901011246406946281548165574350153367324 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-11 10:18:50 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-09 10:18:50 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.htk.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 965553310782637250431829931628120190644471470915146821006713328989941856302415520796841731982301238104588275602270849544600821921769411047343291047190595097216897259624447760709009016197103593050617277139974460915006306547805261615694794667140032720003423720930760174993583757201878300228720344030373698958209212783273235552336802014768394966141270190959899372230346497476462221701301583537072806153738314298843794419994707675489548065460764500555226867391839453166073053564001853209468495983966546063797156256632105558801939904442829894640317458804318841723921409267580736768484757256839477410965447348404028819003802139889005408957475869878878208392487554697007891143751943423460789394577541024583770386510003011345828147790113804360427100099941403539382486600738090493729749350703981335754247293857817334154557836596046513842012747151700269547280662954383227932952738417672236179984433904249442272598251589214154046258870595090373831411047900375153544494505426891900380099832895174498904443125050416997229226609267898644855229188671176624938610881070746759364630318782548444257032618710975027634416724218927701111999725205042158292498841266892428750369301319979529560516020781174109111559052687149403406497722537523914787762861299 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) e8f979e2f7f7794068d41480d7d6ff9b0ad6dd8e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.htk.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016dba8af16a0000040300473045022100b2c64c8a79c7c9a6d5bef884400bca76c49e7696db83742ad1e12f8d1483090b02200d343179694e1a947ec3fe635ab4e853b2772e6d7b71e4ab845ecd5f77afd0a40076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016dba8af19d0000040300473045022100b8b694a600c65a8fefbddcab22f9886b2cf0c0afee4f673586170fe3049ae419022064774e3beac013446bdf916e5c08e4ef3fe96af61aab9fe19ae7f706f3fe31f3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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