hdg1.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:27:50:cb:f7:96:b6:df:14:b5:b2:36:97:c9:8d:ff:76:70 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hdg1.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:27:50:cb:f7:96:b6:df:14:b5:b2:36:97:c9:8d:ff:76:70Serial Number (int): 361827553334578654940554640127377151063664
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 06:5f:a6:25:61:87:4c:03:b1:26:06:11:04:d0:9b:02:85:dc:43:d7
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e5:de:8e:5b:28:d8:d6:75:e3:de:98:b3:a0:b1:8e:c8:5d:b5:6e:d3
Fingerprint (sha256): b0:21:a2:4c:e4:5c:cc:6a:e0:c4:68:98:d3:ba:2d:a4:cf:68:7c:22:cd:d7:6c:ed:0e:02:27:e0:be:5c:ab:ad
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hdg1.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hdg1.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hdg1.com
Other certificates including the domain name hdg1.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for hdg1.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGRzCCBS+gAwIBAgISBCdQy/eWtt8UtbI2l8mN/3ZwMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTMwMzE4NTZaFw0y MDAxMTEwMzE4NTZaMBMxETAPBgNVBAMTCGhkZzEuY29tMIICIjANBgkqhkiG9w0B AQEFAAOCAg8AMIICCgKCAgEAnDlB3GKGCnEClAEGreHDng11Q4+NFEAcNm2DXNVy j4iVaVrwgoCvCB5CkBR0mYOgdLLIMEjkNi1Bl8Gndgaj/kzdbgFigkP1VO0wja5u wKDMWYZ1Gb+M6MPz+Vmb73CMeqNZCWYYjqPkrsyHE2TYxJTK+I4ABVIMlvEregrV Q1Q9nYjDKk4CAnZ0Br8x+L8kboRwVnAN8iJhin7B+MEdS+2tdfoDL+Do2TIggmkq x/vyjU+xpPFUFJ5qKb74ILHvGn+By4P2VcnlbVy4rj6xdXEi6Vl2T9oLyBEpl716 gJerRidRPpHpC0Z+yGoJ34wbTV2JUh2wmnJrxoz614IN2xA/a9lEHkG4JLO0MDYY XEcBMeSIEkWFoNGu32se0+ejwKew+K0q57rjJQ1+KLycOKJlcqt8akzUMIe5+mnK hM23wX8SJmIIMV9GAQqDIuotn/7+QPASMVQrWE1owwPJ/KbCoJ2Rco9VWy4MD8yj GTMBE9vEtgTqe5sN19jtk8pcmIoDbEeWG3r/lE+ZAYKV4DYpTtxeLIZSqV1bxa0u NrHEw/kr9Pzrh4uk4bFXRvlCkQhCFLRIGwBOrCugOCwoAiuYTuJDIuq0xvmiTAs/ tw5KFzDop+yy19gvct1a7Y+hRWSenkPWu1yR2jzK5l1nc3LiLHIPKC7rwz4SppHz JmkCAwEAAaOCAlwwggJYMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEF BQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUBl+mJWGHTAOx JgYRBNCbAoXcQ9cwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEwbwYI KwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMubGV0 c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMubGV0 c2VuY3J5cHQub3JnLzATBgNVHREEDDAKgghoZGcxLmNvbTBMBgNVHSAERTBDMAgG BmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRwOi8vY3Bz LmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2APCVpFny ANGCQBAtL5OIjq1L/h1H45nh0DSmsKiqjrJzAAABbcNXOC4AAAQDAEcwRQIgEnGk iSzGZqs8GAHJ+UFeHK7cmIRc+xKC2OXpyD4ZH0ECIQCLLdda6IxzEqDaxPl2qbSJ xXYmocfN+5y6S5DoCwG4SwB1ALIeBcyLos2KIE6HZvkruYolIGdr2vpw57JJUy3v i5BeAAABbcNXOCEAAAQDAEYwRAIgX7U4N7Vjie9JBaJkkgswm9JvBCPzezs/vMW6 wEzFnQUCICfTps4iOdhA3Fc2PsyIFA6sPGNfHS/hz7r2u9LiaZR/MA0GCSqGSIb3 DQEBCwUAA4IBAQB/ObNnKV0RyCWDlv921Gw52q8hrQodZLMlK9tDpIr+id55KH/b D7qF1a6ES8JJf4xtyk7RYBEkcCs5QzBVqCVoIoA1EUr+qooj4MuNUB1ehNdk3drW s0cQByic1qpNOymB43HXkXC2KynjPWHB0JFzgRn25kRRlKj7Sm5jdkI8InP3fP0q DXw5RJ1BXbDOQGcECe15YaIWuj9Yfq6sDBZ34gxWyHkNNnZTgVLI0g/qb7vNefi+ YU8OuxKnGsFLhbHw//qUMEVkILYTC4Kg17FcB6LquKoSiDdQMSNGwxj8EH581e65 9DwjaQ1r+Aij/xpaSYmUgCiZnwnfxEu1VtC3 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnDlB3GKGCnEClAEGreHD ng11Q4+NFEAcNm2DXNVyj4iVaVrwgoCvCB5CkBR0mYOgdLLIMEjkNi1Bl8Gndgaj /kzdbgFigkP1VO0wja5uwKDMWYZ1Gb+M6MPz+Vmb73CMeqNZCWYYjqPkrsyHE2TY xJTK+I4ABVIMlvEregrVQ1Q9nYjDKk4CAnZ0Br8x+L8kboRwVnAN8iJhin7B+MEd S+2tdfoDL+Do2TIggmkqx/vyjU+xpPFUFJ5qKb74ILHvGn+By4P2VcnlbVy4rj6x dXEi6Vl2T9oLyBEpl716gJerRidRPpHpC0Z+yGoJ34wbTV2JUh2wmnJrxoz614IN 2xA/a9lEHkG4JLO0MDYYXEcBMeSIEkWFoNGu32se0+ejwKew+K0q57rjJQ1+KLyc OKJlcqt8akzUMIe5+mnKhM23wX8SJmIIMV9GAQqDIuotn/7+QPASMVQrWE1owwPJ /KbCoJ2Rco9VWy4MD8yjGTMBE9vEtgTqe5sN19jtk8pcmIoDbEeWG3r/lE+ZAYKV 4DYpTtxeLIZSqV1bxa0uNrHEw/kr9Pzrh4uk4bFXRvlCkQhCFLRIGwBOrCugOCwo AiuYTuJDIuq0xvmiTAs/tw5KFzDop+yy19gvct1a7Y+hRWSenkPWu1yR2jzK5l1n c3LiLHIPKC7rwz4SppHzJmkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 361827553334578654940554640127377151063664 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-13 03:18:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-11 03:18:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hdg1.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 637336932728544411644532289692563255513621780021277498818750331838203901987430176417959006796832124020231047549429367436374300420332329966609549017778294394254244005519729516718677067249890075076114980016053709291236427291791675204409627157704219562278568131870350428778100012337383274181267524441771064283777421335482282769441427348644513763644759210183791246321713476926722366357275846075224406992607413035073843154973299762392998376284767377079388244768072321702691305756773074233423649357288037374601809127570361416852432773155877323520456735499954454257354715836999433476244518288847961652537755456281352302741358517216985574866190959399149247391347203294385240264116287947165650098332301374375465935830276872450301829175574914958100763096620918998951752380507894147185263983884057917972674270199193919688945479594289841703224691250525296354921129041502637944073190835796212879116984515521247755568078369897217819794053362133428910765395893133544928827093981944421478703682159544770201675129257583860203075318622536035792473921632175626779202376553433663502230306880047404175485167349641526050653799186843311212847404526961049266160393473036888659436472953036463269585773402771112633771695408750236467465083156614896422053160553 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 065fa62561874c03b126061104d09b0285dc43d7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hdg1.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016dc357382e000004030047304502201271a4892cc666ab3c1801c9f9415e1caedc98845cfb1282d8e5e9c83e191f410221008b2dd75ae88c7312a0dac4f976a9b489c57626a1c7cdfb9cba4b90e80b01b84b007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016dc3573821000004030046304402205fb53837b56389ef4905a264920b309bd26f0423f37b3b3fbcc5bac04cc59d05022027d3a6ce2239d840dc57363ecc88140eac3c635f1d2fe1cfbaf6bbd2e269947f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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