hockeyregina.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a5:bf:8c:c3:f4:04:23:d0:21:8d:bf:c7:86:2a:5e:58:f8 was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hockeyregina.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a5:bf:8c:c3:f4:04:23:d0:21:8d:bf:c7:86:2a:5e:58:f8Serial Number (int): 317738061780393525819791518179851686009080
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 44:2d:1c:98:9a:e8:78:53:66:7e:20:92:81:99:da:de:fd:76:fa:63
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d1:4e:7d:dc:06:f0:0e:4c:21:38:45:46:c7:a2:4e:9d:41:e1:61:d3
Fingerprint (sha256): d0:a6:bd:51:7c:85:2b:ed:e5:85:59:d5:8c:c1:3c:74:e6:1c:ab:c9:1f:f3:8a:a4:f5:fa:2f:da:56:91:22:6a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hockeyregina.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hockeyregina.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hockeyregina.com
www.hockeyregina.com
www.hockeyregina.com
Other certificates including the domain name hockeyregina.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for hockeyregina.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGbjCCBVagAwIBAgISA6W/jMP0BCPQIY2/x4YqXlj4MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMDcwMTE4MDFaFw0y MDA0MDYwMTE4MDFaMBsxGTAXBgNVBAMTEGhvY2tleXJlZ2luYS5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDDUKBE63+2wkB7AcEr+gqkLTBbK4Hx vqIT+QKWvz7UE/qiSx5SxknLqjFjY/YWktKXUq/6ZZN4h0sIkHCrSHWPyfzPXZR+ rxbk/DtwRTsIFKAPR5Otjv0PHV4Z2pO/b1oVf3Cl/DFPQptya2PkyK3V8qzDOSdO isXZDg0pIvW+jieGb6HVvvyfMf5YeCGVJAVOksKCqZ8AWN64I8ZsWs47Mr+HN+oC wHeq9rH0MJHS3RMJBIrz17zGQtG2H3joVYhqPOr27GqViNADe8A3F2gqRf+An8jc TLcyJx/8q6lPgyD6hFilafY0JCQBSx2MS9jUhBwHbWgqAn9vhJKYNaOJcc4FhyQ8 QGF7OXMIdmKMnOc7Zmvdpx3HW4Ug/CrNk2ym/5Fci/S1kT8aAkgtXsMnOV5j/om6 fP8S4XpA/ANvexvjf9CAvUypYRnrTCPFg5VlGziQnVWwaEYfzPUzsN7PLSXaaE8k RybSqsbWjRVNB9S6gU8TnMng/i+kOALcTYhvFKaFKF9O+/gRF7B1dj0TRvlX1yjL w6xFmFSnHd0aSy9sCYwYKlDrSbHxmzseyVnDMxWQheaItySyVZyuDmxmO+RzQ6AN z12iEckngaMikGKNfnbkXnwwFSeTUVCR17HmuZ8G7r5fW7A2HHE+n7j33gpVih6Z sW/bPGtsEa/3SQIDAQABo4ICezCCAncwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRE LRyYmuh4U2Z+IJKBmdre/Xb6YzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMDEGA1UdEQQqMCiCEGhvY2tleXJlZ2luYS5j b22CFHd3dy5ob2NrZXlyZWdpbmEuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcG CysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5 cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHYA8JWkWfIA0YJAEC0vk4iO rUv+HUfjmeHQNKawqKqOsnMAAAFvfctsywAABAMARzBFAiEA2QBToKwTg/Qj1e7x 2o94E9JjsO81NkpHKd/Gm6KFhmICIHUzXdSJbOZs5AyVVeoT19zY0zLj55uPHtxD RdN81qQiAHYAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFvfcts ugAABAMARzBFAiBSfsKihvMDHLerWsvzjMyXhuVwrhae8ccFn5xewEeg7wIhAI0I wz037Z1oiJ/y0Ow3lmJtfEpwba3dGKtSRoVr36DKMA0GCSqGSIb3DQEBCwUAA4IB AQB4Dwl4B4bawlmu238lGCFFKCwiWnrje290W6MLrCpmR+1iyVKcya8tQSF08381 fxFkbBGFSTZhaQz47rHZ6zcAp975V16gNDUVbxFxke+/pjWuEKntr17XHTo3OvFY WMNTAMjfo494zdnYPJZAJghZxcuqexhL09HUL9oyC5+G/iKXJtNlnsp9/O45undT 6TMQFYI4Gm21flqFTZfodJpTdxgUUE8B7AJLP3SFUY1Sc86KQ71Bpy2M/oKg8xVO ccHuBkMR1gIE8WVqq03MEoC2MTgP1/sp6xui8u1TDoJRbbvDZMpYq4rejZcvy59o nBnJ0itDISeC/s1c+7ftkflK -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAw1CgROt/tsJAewHBK/oK pC0wWyuB8b6iE/kClr8+1BP6okseUsZJy6oxY2P2FpLSl1Kv+mWTeIdLCJBwq0h1 j8n8z12Ufq8W5Pw7cEU7CBSgD0eTrY79Dx1eGdqTv29aFX9wpfwxT0Kbcmtj5Mit 1fKswzknTorF2Q4NKSL1vo4nhm+h1b78nzH+WHghlSQFTpLCgqmfAFjeuCPGbFrO OzK/hzfqAsB3qvax9DCR0t0TCQSK89e8xkLRth946FWIajzq9uxqlYjQA3vANxdo KkX/gJ/I3Ey3Micf/KupT4Mg+oRYpWn2NCQkAUsdjEvY1IQcB21oKgJ/b4SSmDWj iXHOBYckPEBhezlzCHZijJznO2Zr3acdx1uFIPwqzZNspv+RXIv0tZE/GgJILV7D JzleY/6Junz/EuF6QPwDb3sb43/QgL1MqWEZ60wjxYOVZRs4kJ1VsGhGH8z1M7De zy0l2mhPJEcm0qrG1o0VTQfUuoFPE5zJ4P4vpDgC3E2IbxSmhShfTvv4ERewdXY9 E0b5V9coy8OsRZhUpx3dGksvbAmMGCpQ60mx8Zs7HslZwzMVkIXmiLckslWcrg5s Zjvkc0OgDc9dohHJJ4GjIpBijX525F58MBUnk1FQkdex5rmfBu6+X1uwNhxxPp+4 994KVYoembFv2zxrbBGv90kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 317738061780393525819791518179851686009080 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-07 01:18:01 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-06 01:18:01 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hockeyregina.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 796815458862668921116513024015782089175576211369805589733479261401236872742266621001518167978751806520990430736937582468596580211788790037654467058869717250931595313534260918485740932898456350269018110010737697688743902529047091924062779604406766018922005931448884409911050000424548774896334595962016100723771180347024371396110517110883588305354163425273109017582034641926351123354247446856511890785156330194619874377978134483291912752972090648033044455957533916851070910375616175773624349310972086950646851727367948039231395188152967562255915760741974481988309275187466195521543100245726250525136163765790157751826186219926032241396497156581201073901250124921728941846415034281424192769927174645320283010603777762617603438237638651463402957340060095254736165790293040649938652472782622157331972013167973823641198789574645826355330529497880423371721931600461861934802018082455756783610388539836890397821150550970788699717011073851376490324667262600402406100077170312764112587161435477441965672936131350805770869743302965043218627585031842710181432529137045641807267305166387504956146082463795648356642720684707433872736225449679352293379254124154253394566633597849649304247762702478238942333817469720453205267980067943536965868058441 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 442d1c989ae87853667e20928199dadefd76fa63 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (42 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hockeyregina.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.hockeyregina.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016f7dcb6ccb0000040300473045022100d90053a0ac1383f423d5eef1da8f7813d263b0ef35364a4729dfc69ba2858662022075335dd4896ce66ce40c9555ea13d7dcd8d332e3e79b8f1edc4345d37cd6a422007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016f7dcb6cba00000403004730450220527ec2a286f3031cb7ab5acbf38ccc9786e570ae169ef1c7059f9c5ec047a0ef0221008d08c33d37ed9d68889ff2d0ec3796626d7c4a706daddd18ab5246856bdfa0ca . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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