www.hiwco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:02:2d:9a:a2:46:ea:b7:b3:01:3a:bf:5c:9c:80:12:50:94 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.hiwco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:02:2d:9a:a2:46:ea:b7:b3:01:3a:bf:5c:9c:80:12:50:94Serial Number (int): 349190326625778367829776389155107042906260
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 32:db:03:05:68:89:5d:70:b8:f3:e2:c3:69:e3:fa:74:82:e8:92:99
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 84:da:9c:54:dd:f7:a1:f6:b0:7f:ae:99:05:61:29:5a:33:e6:57:28
Fingerprint (sha256): 92:62:29:8d:aa:fc:8d:bd:2f:15:b9:42:3d:4e:5e:ce:fc:09:30:50:e6:e8:70:4c:52:1e:2d:dc:a2:85:76:46
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.hiwco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.hiwco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.hiwco.com
Other certificates including the domain name hiwco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.hiwco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgISBAItmqJG6rezATq/XJyAElCUMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTMwNzI3MzRaFw0y MDAxMTEwNzI3MzRaMBgxFjAUBgNVBAMTDXd3dy5oaXdjby5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDeXtYedZArw1BIeaxUKL/ZPeeg5xKZA0ZU 69eLbX/y1U4L60XP643nK+IOkyajUf1fvh25qTYrlfzIucMCju6tSLDEcpzKXOvD w7ZKUgLO+JLN1REknUA7FiA+NCZ2j7YLh8S6N2a3qFlc+MKeDDkPYjRVd5YH5aQ8 RXV6iqFj7mPk/k4QeJvcpFczu/zCWs7vpP3nwN9xPZG6Hv436t16earE7NAUFXYy oo23rE+MF22890ueZxtD3jf7HrPwMWd3247D/LmRqpLWZQc4Sgov1L3LoVAmFnaf iB1v7UffzTBIUzozm+st+CATHO0HbAdqaSsTK7hP5SpMOrdO9ox43MuBEj/3SyzS BQmWEsIMuxxSl5wDqX8tEL7B3I5jfqoHdc9DUDQhl3h84FPQMeNWlRXr0lMx17yC JDZRKFrCi94OsIqaIqseUudiftTZ77kqpSk8wdijm7bbojxOvLOvwdclOLp50+11 1nrmQwGImr76ANnlOR8o8uCgN2yn4mshshh+s3hBqe77NkpT0DoKg8P1iGf6gFU2 Jiv6qH/PNdCHGkIY2c+TNWTY4Ct7nzzmz7SkeflwxeuM3YspIbxSbTZflz9067Sb 1Z3NUZk0gDuvGWrxG0hVxF6FSCEXvXhf+7OJgfiObOGlC+e6YJDF0NmIf8Jyo9/w h5iFPa0hqwIDAQABo4ICYzCCAl8wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQy2wMF aIldcLjz4sNp4/p0guiSmTAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy5oaXdjby5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHz APEAdgDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAW3EOtyEAAAE AwBHMEUCIEbx0lM0zhTPG6k8bWXjrH159pkOhKSuxVXKYklY9NlnAiEA7RHc+u1R hUVqXikE3iXofyrnLK0Qn9yiwE/HW37dAXkAdwCyHgXMi6LNiiBOh2b5K7mKJSBn a9r6cOeySVMt74uQXgAAAW3EOtx+AAAEAwBIMEYCIQDTQziC3S70PwoAlgh/+grH RLNEKueLGUCho5kflhYQ2QIhAMAXWjCN9uoTWDCGE2zt6ncCfY3RD+DI8uhBO4uf 91giMA0GCSqGSIb3DQEBCwUAA4IBAQB9m2lSsr2gtQoF8zp+Q/GNgbMh58TwAKFQ BAZROwGiLDjai0Ymj3lJao/ZsxtRKuDLAvSaTkcdqu6nbva2wQF1dH+3q5D6YgHQ NEKPdFGwcLIAWIhxBnXNydzoO5sOfO6gFhLNs1BPoax9MrbCmczT1C1tOuvabqqP pkv95pooR9HW8ANRuOAcR/uEFjVvTgAHFfJkYu9YY37/l6B18k6gCUwMr6fjLRWa Iyf26ksGped8qiKmaKZ3xeRdLu6epkfa81OZ7UBrwO13LLSJTTcausfJMG5HoyO5 bO6qEvHDGgx/8g1WjbrXj0oFytfATHqL0dJznPk1kCCF3dCcjoP+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3l7WHnWQK8NQSHmsVCi/ 2T3noOcSmQNGVOvXi21/8tVOC+tFz+uN5yviDpMmo1H9X74duak2K5X8yLnDAo7u rUiwxHKcylzrw8O2SlICzviSzdURJJ1AOxYgPjQmdo+2C4fEujdmt6hZXPjCngw5 D2I0VXeWB+WkPEV1eoqhY+5j5P5OEHib3KRXM7v8wlrO76T958DfcT2Ruh7+N+rd enmqxOzQFBV2MqKNt6xPjBdtvPdLnmcbQ943+x6z8DFnd9uOw/y5kaqS1mUHOEoK L9S9y6FQJhZ2n4gdb+1H380wSFM6M5vrLfggExztB2wHamkrEyu4T+UqTDq3TvaM eNzLgRI/90ss0gUJlhLCDLscUpecA6l/LRC+wdyOY36qB3XPQ1A0IZd4fOBT0DHj VpUV69JTMde8giQ2UShawoveDrCKmiKrHlLnYn7U2e+5KqUpPMHYo5u226I8Tryz r8HXJTi6edPtddZ65kMBiJq++gDZ5TkfKPLgoDdsp+JrIbIYfrN4Qanu+zZKU9A6 CoPD9Yhn+oBVNiYr+qh/zzXQhxpCGNnPkzVk2OAre5885s+0pHn5cMXrjN2LKSG8 Um02X5c/dOu0m9WdzVGZNIA7rxlq8RtIVcRehUghF714X/uziYH4jmzhpQvnumCQ xdDZiH/CcqPf8IeYhT2tIasCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 349190326625778367829776389155107042906260 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-13 07:27:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 07:27:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.hiwco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 907192306404988444035241447069713328884908494112041901577205478284358344111578632408649249089714525058542272122883226961885488721098327142918443218323093541818117581823753198190640045632729194957172514480245460551741731279935748257796631167938262830952944583810252972097734506983391111937194610158010318647393619257525590308056001749668790453447683413281793265136221038360148512084550387133742345989995257831195682312274222182029946336166240123487963607752687826941924794108405805843877255821765808404132815310299631526988582686653365135371475371709095047744730733016963904108964230185180389013751371159873753430636426757109764111116524662789943941516547842333098283067026424956989359816345530256170711630132326129192568093810857719800718221939552874360101688982391076797083492837187653855273650904614268891762359622374969819511967261473469470938747843500438620015048961694911052273268317533387761257517413350821829040920025858281539404897754180836183463321803962466656260693977744059050581469885563910833008600703427843932482021013115847695104125090967685605096968506007862559633895783803389421684622692022462229912106915225660614197395759500299829252858712761268381557371077238267050294667807517002934504983280812986071007384904107 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 32db030568895d70b8f3e2c369e3fa7482e89299 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hiwco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016dc43adc840000040300473045022046f1d25334ce14cf1ba93c6d65e3ac7d79f6990e84a4aec555ca624958f4d967022100ed11dcfaed5185456a5e2904de25e87f2ae72cad109fdca2c04fc75b7edd0179007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016dc43adc7e0000040300483046022100d3433882dd2ef43f0a0096087ffa0ac744b3442ae78b1940a1a3991f961610d9022100c0175a308df6ea13583086136cedea77027d8dd10fe0c8f2e8413b8b9ff75822 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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