f1xed.com.hydratight.ca

Issued by R3

About this certificate

This digital certificate with serial number 03:46:48:95:a0:e1:0d:07:08:ad:24:46:81:92:83:b3:c9:af was issued on by Let's Encrypt.

With 12 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=f1xed.com.hydratight.ca

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:46:48:95:a0:e1:0d:07:08:ad:24:46:81:92:83:b3:c9:af
Serial Number (int): 285253104810690772973031637265329163585967
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: c2:27:2a:2e:c7:cc:89:f0:2c:0c:b2:76:f9:35:5c:6b:11:04:6f:9d
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): c4:42:53:cd:55:5b:b5:68:56:13:4e:1a:85:53:ec:d0:6a:f9:14:f9
Fingerprint (sha256): e7:d0:96:50:52:86:30:90:f1:74:04:2d:44:96:60:06:22:b6:26:b4:de:80:a4:0b:78:e9:ae:3f:02:92:f6:a5

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate f1xed.com.hydratight.ca

12

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for f1xed.com.hydratight.ca

Public Key Algorithm

RSA

Key Size

2048

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

climatetoken.com
dailyroamer.com
defypropaganda.com.houseof.horse
denverwomen.org
erythritolsucks.com
f1xed.com.hydratight.ca
gettheroom.com
lawbyzipcode.com.rivercruise.life
michiganmetalandscrap.com
organicrates.com
tepintask.com.aacconservation.org
thewirelessconnection.com

Other certificates including the domain name hydratight.ca

(limited to 100 certificates)
hydratight.ca
hydratight.ca
bramptonhomebuyers.ca
hydratight.ca
hydratight.ca
hydratight.ca
hydratight.ca
hydratight.ca
hydratight.ca
medicusshop.com.34725625397.ca
hydratight.ca
www.hydratight.ca
ticketsdirect.ca
hydratight.ca
medicusshop.com.34725625397.ca
virtualblackbook.com.finland.biz.hydratight.ca
westernaesthetics.com.hydratight.ca
bramptonhomebuyers.ca
bramptonhomebuyers.ca
hydratight.ca
www.hydratight.ca
hydratight.ca
hydratight.ca
f1xed.com.hydratight.ca
hydratight.ca
www.hydratight.ca
hydratight.ca
hydratight.ca

Certificate

The complete raw certificate details for f1xed.com.hydratight.ca in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGCTCCBPGgAwIBAgISA0ZIlaDhDQcIrSRGgZKDs8mvMA0GCSqGSIb3DQEBCwUA
MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD
EwJSMzAeFw0yMzEwMTUxNzM1MTJaFw0yNDAxMTMxNzM1MTFaMCIxIDAeBgNVBAMT
F2YxeGVkLmNvbS5oeWRyYXRpZ2h0LmNhMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8A
MIIBCgKCAQEAy+OHTjNdtMw802aOO+GFc54+tuxT03Ak6JyJtovpSqNEIqxV9rAG
czxTGavPFpBs5AF80tRnDbn/bBXZEqBfiNsqHpEXD3j+rsdjMSKQPVBd3b3EVHWa
B7tOkpL9+Ey156XiklaJjEQk93Fb7b6GrXyOar8hH2J8/EwEiTYBJa1RIMNo4Dlg
iTEW8HPhNL6kyUzdu6E3X7mMbgIZ/2FZInt+nnxR55SwzGGLWB3rgFIHPqPg73lu
blKqLJ25/9G5eOCkpx41SDzkY2GcDUEThOWl+RRtKe7zkdB7cPJbZM6IKWEF3k3i
/NInvhtfrpTaQ0+bvaisKu9j45WsJ2yU2QIDAQABo4IDJzCCAyMwDgYDVR0PAQH/
BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8E
AjAAMB0GA1UdDgQWBBTCJyoux8yJ8CwMsnb5NVxrEQRvnTAfBgNVHSMEGDAWgBQU
LrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYBBQUHMAGG
FWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDovL3IzLmku
bGVuY3Iub3JnLzCCAS8GA1UdEQSCASYwggEighBjbGltYXRldG9rZW4uY29tgg9k
YWlseXJvYW1lci5jb22CIGRlZnlwcm9wYWdhbmRhLmNvbS5ob3VzZW9mLmhvcnNl
gg9kZW52ZXJ3b21lbi5vcmeCE2VyeXRocml0b2xzdWNrcy5jb22CF2YxeGVkLmNv
bS5oeWRyYXRpZ2h0LmNhgg5nZXR0aGVyb29tLmNvbYIhbGF3Ynl6aXBjb2RlLmNv
bS5yaXZlcmNydWlzZS5saWZlghltaWNoaWdhbm1ldGFsYW5kc2NyYXAuY29tghBv
cmdhbmljcmF0ZXMuY29tgiF0ZXBpbnRhc2suY29tLmFhY2NvbnNlcnZhdGlvbi5v
cmeCGXRoZXdpcmVsZXNzY29ubmVjdGlvbi5jb20wEwYDVR0gBAwwCjAIBgZngQwB
AgEwggEDBgorBgEEAdZ5AgQCBIH0BIHxAO8AdQA7U3d1Pi25gE6LMFsG/kA7Z9hP
w/THvQANLXJv4frUFwAAAYs0nuynAAAEAwBGMEQCID/2q5YfhomvmZFr4UKxZyI+
fG5FyA5pf3sdUGdkI7tvAiAlCPh5Oq39wLygTwPu5z3FxYiSSK6Oi2FEanyguRVP
hwB2ANq2v2s/tbYin5vCu1xr6HCRcWy7UYSFNL2kPTBI1/urAAABizSe7MMAAAQD
AEcwRQIhAPO8sm6hqtwAvIcNiStbEsc04d4qmCWci7ZJSTHYxX+OAiAY5Ja1FINd
YZFvKM4Ai7pVFpHqsFtv28bngPNgRNSl/TANBgkqhkiG9w0BAQsFAAOCAQEACPd+
f460oc6X7ZSNOzhoYyLDoOQH8Vj3Z+0COIg+K2/8Daf+ATHj4y7Njy+mk1YOV6Sm
z3eXWKi7gK/0MHL0CgphQrv9k2fVx79J8T7fEYQHMciIdvZPdo4myernmeqZg7fm
wS0UvG+hX8Wwkjz4XuMlB8sIcGFgDIkjn4ysWV25/t8nJ4KPjHA70+rn4rBmqg7f
ljQ22Llz38LPHUTmuhjoIX7iVqG0afx5K01SjHaQSiBifoA0CXIpk17Jb1tHPc5W
+6tnxCduw3mBtpbSp1pTalAzsRYolv2prJ/VV1hwWuavUAPfJxIusX2SlDRF/NMc
r9vWS4GxLBtHcvf+UQ==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEAy+OHTjNdtMw802aOO+GF
c54+tuxT03Ak6JyJtovpSqNEIqxV9rAGczxTGavPFpBs5AF80tRnDbn/bBXZEqBf
iNsqHpEXD3j+rsdjMSKQPVBd3b3EVHWaB7tOkpL9+Ey156XiklaJjEQk93Fb7b6G
rXyOar8hH2J8/EwEiTYBJa1RIMNo4DlgiTEW8HPhNL6kyUzdu6E3X7mMbgIZ/2FZ
Int+nnxR55SwzGGLWB3rgFIHPqPg73lublKqLJ25/9G5eOCkpx41SDzkY2GcDUET
hOWl+RRtKe7zkdB7cPJbZM6IKWEF3k3i/NInvhtfrpTaQ0+bvaisKu9j45WsJ2yU
2QIDAQAB
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 285253104810690772973031637265329163585967
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-10-15 17:35:12 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-01-13 17:35:11 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'f1xed.com.hydratight.ca'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (2160 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 25738574411398704491953961703953449459633607837444710328367113872766598071213784721805875543051923956301465023497598668627744636095636383800317722627734837745719576884310755067331275125889536330720240357624294687362462483064235346127128802371436894763452691869551074903563934778983261108351913086909368260492307568823369245155036710239982305571647254218978477157991306976003611733646864908039616300222807908502556107887986262800817584989449299407124859521100716712852952415648196105210593194466565566970699986824911640866641675784507793110201650610626918351188822502310620451270530966349225114393984782782799851328729
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							c2272a2ec7cc89f02c0cb276f9355c6b11046f9d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (294 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'climatetoken.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'dailyroamer.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'defypropaganda.com.houseof.horse'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'denverwomen.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'erythritolsucks.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'f1xed.com.hydratight.ca'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gettheroom.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lawbyzipcode.com.rivercruise.life'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'michiganmetalandscrap.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'organicrates.com'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'tepintask.com.aacconservation.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'thewirelessconnection.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018b349eeca7000004030046304402203ff6ab961f8689af99916be142b167223e7c6e45c80e697f7b1d50676423bb6f02202508f8793aadfdc0bca04f03eee73dc5c5889248ae8e8b61446a7ca0b9154f87007600dab6bf6b3fb5b6229f9bc2bb5c6be87091716cbb51848534bda43d3048d7fbab0000018b349eecc30000040300473045022100f3bcb26ea1aadc00bc870d892b5b12c734e1de2a98259c8bb6494931d8c57f8e022018e496b514835d61916f28ce008bba551691eab05b6fdbc6e780f36044d4a5fd
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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