hip.cat
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:fd:71:04:f9:76:39:6f:24:0d:1e:3c:6f:4c:7d:5a:c9:74 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hip.cat
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:fd:71:04:f9:76:39:6f:24:0d:1e:3c:6f:4c:7d:5a:c9:74Serial Number (int): 434690811150436236968200119096783966751092
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: bf:52:80:02:78:76:2a:19:01:2a:79:33:2c:d0:8a:2b:6a:de:95:ea
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 27:35:e3:c4:fd:27:46:dd:fe:3d:50:f2:03:8d:00:0c:85:e1:2c:bc
Fingerprint (sha256): cd:7f:a9:85:3b:b0:63:17:81:a0:06:98:d9:e5:bf:79:c3:93:30:83:1c:7b:18:a4:27:a1:9d:51:2f:6d:e1:f2
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hip.cat
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hip.cat
Public Key Algorithm
RSA
Key Size
2048
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hip.cat
Other certificates including the domain name hip.cat
(limited to 100 certificates)
hip.cat
sociam.cs.ox.ac.uk
hip.cat
hip.cat
sociam.cs.ox.ac.uk
hip.cat
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
hip.cat
sociam.cs.ox.ac.uk
hip.cat
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
hip.cat
hip.cat
hip.cat
sociam.cs.ox.ac.uk
hip.cat
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
hip.cat
hip.cat
sociam.cs.ox.ac.uk
hip.cat
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
hip.cat
sociam.cs.ox.ac.uk
hip.cat
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
hip.cat
hip.cat
hip.cat
sociam.cs.ox.ac.uk
hip.cat
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
sociam.cs.ox.ac.uk
Certificate
The complete raw certificate details for hip.cat in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgISBP1xBPl2OW8kDR48b0x9Wsl0MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xODA0MTcyMjMyNTlaFw0x ODA3MTYyMjMyNTlaMBIxEDAOBgNVBAMTB2hpcC5jYXQwggEiMA0GCSqGSIb3DQEB AQUAA4IBDwAwggEKAoIBAQDBHjqM9rCf3hGfjBe9GLXNSI32684tvC4EMblnUe98 tmt851fD4JmnWvS2BUddefCfBxednJswe7UOiVdGHs+PYG7bZ7O+etlrb4/ZVxC2 OraPWs2UHk8BvzRspq4O55Xt1oNIXF6EFC/CHNsafvRc0220YU2wspBuy4vTz77A EmXwbqPshNGy343/2fbHl5Kw0+g1UPMgnaiXtKc+WVLNLR5CZBL1SMIBKwthrrsU KrYVXFX31SMo2Yl/igK0D5txqPbz3+0xN1j8/oKhbJWPV7vTPzjLXxj3Bw8tv2Sj yiaLeun7blJCCrvxDDice6SsBPXJ0OdKamCdS/14zrp7AgMBAAGjggMPMIIDCzAO BgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwG A1UdEwEB/wQCMAAwHQYDVR0OBBYEFL9SgAJ4dioZASp5MyzQiitq3pXqMB8GA1Ud IwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggr BgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggr BgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wEgYD VR0RBAswCYIHaGlwLmNhdDCB/gYDVR0gBIH2MIHzMAgGBmeBDAECATCB5gYLKwYB BAGC3xMBAQEwgdYwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQu b3JnMIGrBggrBgEFBQcCAjCBngyBm1RoaXMgQ2VydGlmaWNhdGUgbWF5IG9ubHkg YmUgcmVsaWVkIHVwb24gYnkgUmVseWluZyBQYXJ0aWVzIGFuZCBvbmx5IGluIGFj Y29yZGFuY2Ugd2l0aCB0aGUgQ2VydGlmaWNhdGUgUG9saWN5IGZvdW5kIGF0IGh0 dHBzOi8vbGV0c2VuY3J5cHQub3JnL3JlcG9zaXRvcnkvMIIBBAYKKwYBBAHWeQIE AgSB9QSB8gDwAHYAVYHUwhaQNgFK6gubVzxT8MDkOHhwJQgXL6OqHQcT0wwAAAFi 1fRIKQAABAMARzBFAiEAwxeeyjOGZuNa4nZiab6rcJen1QqsIrEBEmtgpabTn+cC IHs7ubJhRUenaN1abcG7xGq3jblsmmbbHRLcxgXA0OYdAHYAKTxRllTIOWW6qlD8 WAfUt2+/WHopctykwwz05UVH9HgAAAFi1fRIEQAABAMARzBFAiEAylHhqICAw/Rs EbBlH/tMaUj4YV/Iic6AhwRUvlNOTiwCICri7CLm/ZhQ7kFKARk8h1fl5iJohh8n fpFxnQGkEH8RMA0GCSqGSIb3DQEBCwUAA4IBAQBxEszwgF2P8vKB5yMM7liRWJ8P jtq8SRlyvMmQTonMdkTcw0q3GZfhjUkD9DL6cpTGPFOuhOoyKBSa8YQZED2dJBJj ZjxXQOodZyA3/NzHSqFkniR02aIAIf+/afGXdJNhRP/qKny+3OzNWSV5UIFRTwov gZzDw3BFIC4tmXmjg4XiV8w7ec+lXSG0DeREHbSGzLL2xSFwwqXMfiGCzR/n7ZZR RxcRrHFlD6oaHRU7ntK02Tz1h1mncaVyER1CDDPACgp+nfTBStxgOG0jpi5Fnbjz hWXQLcgaO5V26rDcDZ8p0uI7p9l6bkHGQOtUAVtdh4jP4mLvPc2Ry2boawaj -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAwR46jPawn94Rn4wXvRi1 zUiN9uvOLbwuBDG5Z1HvfLZrfOdXw+CZp1r0tgVHXXnwnwcXnZybMHu1DolXRh7P j2Bu22ezvnrZa2+P2VcQtjq2j1rNlB5PAb80bKauDueV7daDSFxehBQvwhzbGn70 XNNttGFNsLKQbsuL08++wBJl8G6j7ITRst+N/9n2x5eSsNPoNVDzIJ2ol7SnPllS zS0eQmQS9UjCASsLYa67FCq2FVxV99UjKNmJf4oCtA+bcaj289/tMTdY/P6CoWyV j1e70z84y18Y9wcPLb9ko8omi3rp+25SQgq78Qw4nHukrAT1ydDnSmpgnUv9eM66 ewIDAQAB -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 434690811150436236968200119096783966751092 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-04-17 22:32:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2018-07-16 22:32:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hip.cat' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 24378899192610467103846295534907314639853281891242254545442540720057386136324991157789054630096472286640821680359269329620294691187747124084297592855707168600959560065344750977987477036558130688026359263305453848384196215608386531667456472756813070602326883181650879778475723197181042056014628920730281221322278449692673925756270881819113739423649350989229529229885433646067825267851242023052681419414381008611700386509045370041327901308115078234276485902526152118783707488559773743070858582535722265023433146888204318010666636365504197907169692262818878892810630407278464527146298881661892172845915642247816701459067 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) bf52800278762a19012a79332cd08a2b6ade95ea . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (11 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hip.cat' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.2 (unotice) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:12|false] UTF8String 'This Certificate may only be relied upon by Relying Parties and only in accordance with the Certificate Policy found at https://letsencrypt.org/repository/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076005581d4c2169036014aea0b9b573c53f0c0e43878702508172fa3aa1d0713d30c00000162d5f448290000040300473045022100c3179eca338666e35ae2766269beab7097a7d50aac22b101126b60a5a6d39fe702207b3bb9b2614547a768dd5a6dc1bbc46ab78db96c9a66db1d12dcc605c0d0e61d007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000162d5f448110000040300473045022100ca51e1a88080c3f46c11b0651ffb4c6948f8615fc889ce80870454be534e4e2c02202ae2ec22e6fd9850ee414a01193c8757e5e62268861f277e91719d01a4107f11 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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