www.hntco.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:e3:b7:f9:d4:04:8e:18:6a:76:22:b6:db:a7:14:fd:c7:e0 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.hntco.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:e3:b7:f9:d4:04:8e:18:6a:76:22:b6:db:a7:14:fd:c7:e0Serial Number (int): 425937786923472157582078088073843700516832
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: cd:0d:db:af:4c:2e:b4:11:e7:8b:2b:6b:33:3f:84:09:ef:d6:87:ee
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 04:8c:eb:de:a5:04:48:9e:64:7d:04:45:ca:25:c1:d4:fd:31:13:5d
Fingerprint (sha256): cd:1c:33:d5:2f:0e:f8:6f:bf:99:e4:63:41:fb:a6:6c:05:b6:ca:3e:2e:8d:bc:99:5c:a4:07:81:f6:ee:e0:ca
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.hntco.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.hntco.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.hntco.com
Other certificates including the domain name hntco.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.hntco.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISBOO3+dQEjhhqdiK226cU/cfgMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTYyMTM2MDNaFw0y MDAzMTUyMTM2MDNaMBgxFjAUBgNVBAMTDXd3dy5obnRjby5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDAnTH5ODJM9HcTSznSWuqAPNjEsxBNgb+i wNG1K/+1EJx1OX2BERYU6m44WprgYBwV8OhzU/3uNk1qeyNHVzflhqXEFiGxmt1g FT+WvNkd43aM+l1bqtxPa68d+EtY3s2zGhK2Cj1vezOPM6bdFrGq4mbz8iaeBwuy Hjk9JLda69W1HI7skInmlRZH1k8K2wrESmonJXuRlV9e2g/qd/VW93lyF5ZipfEX GYMM27DCVidwP3S80mmq71pWL32ZKbqLXMD804V1ueebQCB/HmyKMKAcfXK2eTy4 eU3Dn3twLIdQWzsX3MzvZBly1VBTb8+6Fd8er3xQKhujO2h0hnr/yhVKJrgH6zy7 6kST3bldprEKOrVFHxI98wCstCxP9Mdi7aUFYGFgNQ6/7QbuxS7SKVjiLdPBRU2Y 2NFL0+8sNsV53n2vq/iAMCYkcOk/I+Ob6dIsuiZ4l4aImfiMtn3WSjXsNdGARcui 1coZRgbesgN9QF47kcrr0FsoycBXOuf++ZHr0DJxHSQQajkiN3du25fIsHSUV7ms chdl+Ro3oqmcdXzvtOjgVGtHwf8p9bjgaa7gpvLr3WmXC/GJvvnx7YM7KM1gT86K pHKkVlFjwiGr5kRiL19FER3GLdDa/UsHzI9F8Uq4BxcN78Sv3gMuHA1JzncBVqo2 5G8/+fFQOQIDAQABo4ICYjCCAl4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTNDduv TC60EeeLK2szP4QJ79aH7jAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy5obnRjby5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdgDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAW8Q2qk9AAAE AwBHMEUCIQDZRfKFcCXfrANlabDunYLkR69y1L3vkYAzVNNY+ttRYQIgOkiqf3Od bijiOIybxmJDiCc7RgPx+a9xXSH2zr5xjqkAdgCyHgXMi6LNiiBOh2b5K7mKJSBn a9r6cOeySVMt74uQXgAAAW8Q2qkwAAAEAwBHMEUCIQDRlSFYd39lcZW9U4TcTHtx 7glaBHfk+ukcmg1rQwDVOQIgKXFou9zo9UniSlL+0Y5L5scLHaFMWBYFq9cjxSxQ NQ4wDQYJKoZIhvcNAQELBQADggEBAIomHk0OPX0oMHC1Hd/AlxCClvemoAIHIekJ Niz45BtT4/Djd/3YRT+lhHRzc6mwNlMV4PxlrxpdfRwSf934upFbX8uiHGKPlJex Nzl2+vpr9zaYq4rxM90r5X5l+UDvllq1F5MD1cS1T63uWoEE56mXgvGDSxgjinqp bnUzDauEpLCKoe5MXI9QurhbBAqgeZDz344wcx/X/yBgI2/kuGML8wPMLRwdsWcV Um10WN36dj5yfXOU/O608vOQNdxLlnhAsQmouXJoyawFVMbf3UNVpl1NPiYRT1j8 KdmlA8TEFponJxOZZPbmxc+FgSuDUBoQ7lDPIUEI/Z9M8eJQTRM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwJ0x+TgyTPR3E0s50lrq gDzYxLMQTYG/osDRtSv/tRCcdTl9gREWFOpuOFqa4GAcFfDoc1P97jZNansjR1c3 5YalxBYhsZrdYBU/lrzZHeN2jPpdW6rcT2uvHfhLWN7NsxoStgo9b3szjzOm3Rax quJm8/ImngcLsh45PSS3WuvVtRyO7JCJ5pUWR9ZPCtsKxEpqJyV7kZVfXtoP6nf1 Vvd5cheWYqXxFxmDDNuwwlYncD90vNJpqu9aVi99mSm6i1zA/NOFdbnnm0Agfx5s ijCgHH1ytnk8uHlNw597cCyHUFs7F9zM72QZctVQU2/PuhXfHq98UCoboztodIZ6 /8oVSia4B+s8u+pEk925XaaxCjq1RR8SPfMArLQsT/THYu2lBWBhYDUOv+0G7sUu 0ilY4i3TwUVNmNjRS9PvLDbFed59r6v4gDAmJHDpPyPjm+nSLLomeJeGiJn4jLZ9 1ko17DXRgEXLotXKGUYG3rIDfUBeO5HK69BbKMnAVzrn/vmR69AycR0kEGo5Ijd3 btuXyLB0lFe5rHIXZfkaN6KpnHV877To4FRrR8H/KfW44Gmu4Kby691plwvxib75 8e2DOyjNYE/OiqRypFZRY8Ihq+ZEYi9fRREdxi3Q2v1LB8yPRfFKuAcXDe/Er94D LhwNSc53AVaqNuRvP/nxUDkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 425937786923472157582078088073843700516832 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-16 21:36:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-15 21:36:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.hntco.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 785796741146088040793764369322401214198501936544692682832007052589532871602100297122830627659190953419208159610914026108552796831993342028099856076485979002990559498309186084444116933354159383175504105666256250188620029081773998341892959929988889289423476700401236958651457638710947486731705975348368403716949554145661860492441031842043504990380516925579676275267326168282442318960691668188423839561862256828268205085906952281791438340538523476498220696538202206653180934693271038689833699560927535392363801679130732568428354806381761518969182320324036636867900509745671282303134464679531200114377193449039425483315579867511253765874586709471829703824434499719704150825984239943533268649259569964780264387409699022884313348747181433705984141449794510627620018844380492263643367696917513953373784118022023642038716023362853579205112274578499531980763590884445393612469158746745246365725654897344214548877383953178270551093406224762196755883843591697486874211993414174392839594720973358185080061567076601868015256912241179047071033600997178397505841469035144539601881355536382243635252319642117546425471376854208934938113173932834567287412205297674945239589197530844603207961841980012936542455894052798658744842717118986608439515500601 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) cd0ddbaf4c2eb411e78b2b6b333f8409efd687ee . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hntco.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016f10daa93d0000040300473045022100d945f2857025dfac036569b0ee9d82e447af72d4bdef91803354d358fadb516102203a48aa7f739d6e28e2388c9bc6624388273b4603f1f9af715d21f6cebe718ea9007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f10daa9300000040300473045022100d1952158777f657195bd5384dc4c7b71ee095a0477e4fae91c9a0d6b4300d5390220297168bbdce8f549e24a52fed18e4be6c70b1da14c581605abd723c52c50350e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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