knmed.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:7f:d9:13:ef:85:04:ab:89:7e:6a:e8:62:76:27:67:77:c6 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=knmed.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:7f:d9:13:ef:85:04:ab:89:7e:6a:e8:62:76:27:67:77:c6Serial Number (int): 304841264381000249908662370989992837609414
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 14:dc:b1:16:ec:9f:4b:92:46:93:02:12:40:75:85:62:6b:8c:af:a0
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f2:fd:06:95:c7:f0:70:90:26:0b:d5:55:81:37:bd:2f:55:2a:e6:06
Fingerprint (sha256): 9c:92:5e:e7:20:26:5b:c1:d8:66:c4:98:0b:8d:aa:9e:82:33:77:80:c5:9d:29:1f:d9:5b:8b:08:e8:d2:00:07
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate knmed.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for knmed.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
knmed.com
Other certificates including the domain name knmed.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for knmed.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSzCCBTOgAwIBAgISA3/ZE++FBKuJfmroYnYnZ3fGMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTIwMTU2MTdaFw0y MDAxMTAwMTU2MTdaMBQxEjAQBgNVBAMTCWtubWVkLmNvbTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAK1N0VZCL5BFfHChJYiUSIMrzTk1SYICJVaXJpHj DV446jSbSQ75uZ5r0U40R2shz/Pb19mbZr9KY6ev5e2PD9VsaVf+1draJsOTyY87 +4lP7PrC4IVnySXDMI/t1u882cgurO9nKa+LdgxGGc9PHSHkKd4CTWqSiGdrR5GU Pt35QmYNaCU6V3eDj9pWoW52ti/jZ5mz5olQktr9vURCXu9s3USXzm54BPIkZmxH v1y9S89ImRcT49EQpuvJSb1wTP6Fcw24J+vsHTq0OOMMBMPx7pXNHcI9+yVDehlR JEHysQRxZn3B4n8ghu8ce2x1wfDQBJHTcr1dWWMX1gYgT2+TrbJ61hqrV7461UOT iZwirWZAfINlWUSH4bNSN2MJCNe3zLqulEUu+SoMa2wyqUEne3JJWIlsTpB6+/Bg ofFsz7IVcCDIpfe+UzVtvx+rhJBgUl6zy9VApBEvwxl8ddDjc6cfCs27xpXWOXQ0 hvKNsmteQmpgzkjMpz1EuADXsYRBchLQCfndbkFWSZ0SPvd3TyplBBPXdE9yMi9i 2j+pt8DGrCd8J0H0qWA/3F9SWOuUh4aNLF4il5QTbzjlWOvRQ7pEL92oI9l7m32b XBnsn/okkNS3o25jrsA3+dRRhlLgG2def+AGUxI+/nDPk9wdhPWczEWoDtUk81xT nqYfAgMBAAGjggJfMIICWzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFBTcsRbsn0uS RpMCEkB1hWJrjK+gMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wFAYDVR0RBA0wC4IJa25tZWQuY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB9gSB8wDxAHcAKTxR llTIOWW6qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFtveUxTgAABAMASDBGAiEA vMyS1Dmhxwjt+37MfmgsRFOfjNPGleEPlenhquaHs3kCIQCfF2/WjK6+LkyfpU7y lPq7y5iFJPQ7ZHszV74BzMDpRAB2APCVpFnyANGCQBAtL5OIjq1L/h1H45nh0DSm sKiqjrJzAAABbb3lMekAAAQDAEcwRQIgc9Xz5JKrCU26rFMsMo/Sum4MtMESafUQ 6tAHXiCiSUMCIQDJfjDjUKAtkQLEEzWQON9Z5+jpMzQw+DPUX3LdHg2GqDANBgkq hkiG9w0BAQsFAAOCAQEAWHtpoo46juRH8xZcpWpjQqO2sLf9txPfwUL3fIEjibZ3 KIQ5PGWGpBU+X65pznfb/mI8iqau6fLyZOm39HhiHm1txcdNuNBhrT8+SJSqX+5b y67ZbVv+OAsXXi2cBq/f8Kx+1/hVzlOlD7U5ILX4ZrEWS8wXoglCWX4NuATIsPvm tU1QF6X+kUqRbyRMfFjsdHn90aHi6+By3kdjcfTajD8w3N1vgSoxNayM5AT1bv96 xZjlr98bZw082Rn8d1h+kJtpPGHcS6GEtZQ/L4fzQ4T75Q/hwPRkHjtz0QHZ923K ZYdS6sSWZe/OHSJx4xMOjlsDDsv8K2kf4nV1Yw9xIQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArU3RVkIvkEV8cKEliJRI gyvNOTVJggIlVpcmkeMNXjjqNJtJDvm5nmvRTjRHayHP89vX2Ztmv0pjp6/l7Y8P 1WxpV/7V2tomw5PJjzv7iU/s+sLghWfJJcMwj+3W7zzZyC6s72cpr4t2DEYZz08d IeQp3gJNapKIZ2tHkZQ+3flCZg1oJTpXd4OP2lahbna2L+NnmbPmiVCS2v29REJe 72zdRJfObngE8iRmbEe/XL1Lz0iZFxPj0RCm68lJvXBM/oVzDbgn6+wdOrQ44wwE w/Hulc0dwj37JUN6GVEkQfKxBHFmfcHifyCG7xx7bHXB8NAEkdNyvV1ZYxfWBiBP b5OtsnrWGqtXvjrVQ5OJnCKtZkB8g2VZRIfhs1I3YwkI17fMuq6URS75KgxrbDKp QSd7cklYiWxOkHr78GCh8WzPshVwIMil975TNW2/H6uEkGBSXrPL1UCkES/DGXx1 0ONzpx8KzbvGldY5dDSG8o2ya15CamDOSMynPUS4ANexhEFyEtAJ+d1uQVZJnRI+ 93dPKmUEE9d0T3IyL2LaP6m3wMasJ3wnQfSpYD/cX1JY65SHho0sXiKXlBNvOOVY 69FDukQv3agj2XubfZtcGeyf+iSQ1LejbmOuwDf51FGGUuAbZ15/4AZTEj7+cM+T 3B2E9ZzMRagO1STzXFOeph8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 304841264381000249908662370989992837609414 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-12 01:56:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-10 01:56:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'knmed.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 707018535524448400288235179007053146718653040720348620292683328489102832626650743597322855574256575731249073500609061162497773683883091447078744675576055880439852238575009060595562103105377583976769815101966720532537515377501714370916559532824910556062256520710387908964680533842888632697013655921085888653251885423170566955749685309956992589547465429784562242934395256467201291469303239167504391760251429922816035654771285731438629849103179231813321824444432331720690529268346019743630073998232246131667758734402747918281419531728062273591678396782791289962548738333187987990963375349907064380153601608097265425447655190893608393549527215982373113757102915152238892573010793718060803045364182344067121628339582670458496311864713815160342979987408317937560654758744278004996987021481776561239686320054983691542344382268350730830385645101466017970428578302283974811070892679232443143156240838946376258266738629497853259421501290146495921480214772650901083231063572600870490387983856545840182823863627646896313559314133658504330011958812466601161961997509264691331255839673839826921096167436185571494958095285840182625288009855946104572521386239008975168558898923439260839118253352668976893128258284204545629497897705642377459842065951 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 14dcb116ec9f4b9246930212407585626b8cafa0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'knmed.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016dbde5314e0000040300483046022100bccc92d439a1c708edfb7ecc7e682c44539f8cd3c695e10f95e9e1aae687b3790221009f176fd68caebe2e4c9fa54ef294fabbcb988524f43b647b3357be01ccc0e944007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016dbde531e90000040300473045022073d5f3e492ab094dbaac532c328fd2ba6e0cb4c11269f510ead0075e20a24943022100c97e30e350a02d9102c413359038df59e7e8e9333430f833d45f72dd1e0d86a8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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