hmatic.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:84:9b:6b:bd:b2:f4:bf:84:e8:26:1d:7b:85:c5:65:d8:61 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=hmatic.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:84:9b:6b:bd:b2:f4:bf:84:e8:26:1d:7b:85:c5:65:d8:61Serial Number (int): 306460719991508916196460973205720624650337
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: df:88:bb:f8:02:2e:13:93:49:10:9b:02:57:e2:f4:34:8b:ab:e5:b8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 07:43:42:07:77:b5:8b:15:77:4d:cc:15:16:08:c7:a8:47:3b:b1:b7
Fingerprint (sha256): fa:99:b1:7e:d0:f8:e4:9c:c5:b4:b0:34:4c:e2:48:92:fa:d7:e8:6e:dd:23:1c:e1:57:48:5f:ee:af:29:64:09
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate hmatic.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for hmatic.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
hmatic.com
Other certificates including the domain name hmatic.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for hmatic.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTDCCBTSgAwIBAgISA4Sba72y9L+E6CYde4XFZdhhMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEwMTIwNDM3MTNaFw0y MDAxMTAwNDM3MTNaMBUxEzARBgNVBAMTCmhtYXRpYy5jb20wggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQCjb9Y5E2MJ2H2UDwyDDrY5TLIFIhIAiqM0q02B obLoUcx77UM9ZcIDeLednl5oHzf4vTtQ3SnbQG84VJhCLtLmvc/SK8pJYAByQwtO 8V24qFX/y0Kh+ELZ3yM/ResGhfcfUHVcnxcEOCpKl5sU+yUY2OUHB/Vp3s9JWH0x uckpSxp5wAFVB2rtcZF6udwZvWu0eLHr4xTrv3n19S6CGmUBhCcoqrMqNxed0NTe i64BoyCYPDqYJn3lsxUDqPqY09Ar7rH8CVS1hbyHLLpl7iCkTkhq1I1awCEjgNfj vCbA0kqqsvAhMejaJYIWMJURNrWdIf2eEc3mUYuVLo9ibh7FKknloS58N5aF1iyK zR/pjd/ZphPhSPr+6l9vTBe/0H+H3GfCtmzwyP19b47FDM4frTms89H1DjcDeXsL kDuo4L5LZ5hIOKPqcJhj4tOHVHBh9j/BYs8YQ82OtNIQY8O8sOnYmMoiobACINjG 2awEBlw7r8pilPEVIHy6vjlo0VSl/oO0Z4JwgtPWJeH5Bwpa7aOWNr4nPFXAY/YC 1nrtLFnxqBjO3x0PDbZHmQGuIXqDDjGkATKiJmuMNK7nIA/1ciuvsifv20GIrYts 62n8tihFF2tcXGZQ1TmVw6g9mklOcWJQs3lXwCq4zRl5zkUaOTBKtzzmAAHqHuqG xycivwIDAQABo4ICXzCCAlswDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTfiLv4Ai4T k0kQmwJX4vQ0i6vluDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCmhtYXRpYy5jb20wTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdwDw laRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAW2+eIkkAAAEAwBIMEYC IQD6O22e9nOwRVb68My7GQaRPHrkjuzUiX3mgCB3wDpK+wIhAK07ETwbggvZFz2E XrMRQNg35SrRqDjEeFbKO67hsdu7AHUAsh4FzIuizYogTodm+Su5iiUgZ2va+nDn sklTLe+LkF4AAAFtvniIIQAABAMARjBEAiBGBe1bwHscEAGf3mNTYApJAeoUd0iV vxgZHXVwY+bTBQIgD4a+1JS0Pe6RA8SGg7RGGHPUtse4JCvsJ3fqraOP1jEwDQYJ KoZIhvcNAQELBQADggEBAJDpFdeoa94xTc+LVjmxmubTfTyqbL8U4qeakXSAnUil ia5PBQ18AO/hQTbfSYlFG1w8zFANUrT1XQgB5D1LJ3gE6vGThgvLEYIFHuIcJpgc RZHTTDzZ5l+Q9i1HdcYGXybw850Vs3C0KMqoOFSctUYfJCphavGOmzUZ4XbK+Jto RvY5JxSUAn5nRi5wvYopfFe47id3CfiAPlUVygIrSU1FjqxDTdeZzEaLhUu1fh+1 7/zVAUt4P8t6smXRvc/S1G4urEczMyNKcPP19SwZ5KIRxbckCWt04pHsf1A69wJw KbGb+0nyGbi0XHWx6jPJ0pFXNDe3+dReqTJZuMw0iuM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAo2/WORNjCdh9lA8Mgw62 OUyyBSISAIqjNKtNgaGy6FHMe+1DPWXCA3i3nZ5eaB83+L07UN0p20BvOFSYQi7S 5r3P0ivKSWAAckMLTvFduKhV/8tCofhC2d8jP0XrBoX3H1B1XJ8XBDgqSpebFPsl GNjlBwf1ad7PSVh9MbnJKUsaecABVQdq7XGRerncGb1rtHix6+MU67959fUughpl AYQnKKqzKjcXndDU3ouuAaMgmDw6mCZ95bMVA6j6mNPQK+6x/AlUtYW8hyy6Ze4g pE5IatSNWsAhI4DX47wmwNJKqrLwITHo2iWCFjCVETa1nSH9nhHN5lGLlS6PYm4e xSpJ5aEufDeWhdYsis0f6Y3f2aYT4Uj6/upfb0wXv9B/h9xnwrZs8Mj9fW+OxQzO H605rPPR9Q43A3l7C5A7qOC+S2eYSDij6nCYY+LTh1RwYfY/wWLPGEPNjrTSEGPD vLDp2JjKIqGwAiDYxtmsBAZcO6/KYpTxFSB8ur45aNFUpf6DtGeCcILT1iXh+QcK Wu2jlja+JzxVwGP2AtZ67SxZ8agYzt8dDw22R5kBriF6gw4xpAEyoiZrjDSu5yAP 9XIrr7In79tBiK2LbOtp/LYoRRdrXFxmUNU5lcOoPZpJTnFiULN5V8AquM0Zec5F GjkwSrc85gAB6h7qhscnIr8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 306460719991508916196460973205720624650337 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-12 04:37:13 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-10 04:37:13 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'hmatic.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 666764226727913428528292704500019534409008165418543519455458739198409858851653244285794768276641482917119060592850483639095934312222886386551421695342319993657254858477734230026655068525658552990721714970353031350481808644202320499590501718900405419300069707125441335646708759989840853765328175715918649763202532748642575416488453663958999223943662248269299410837651708112615662109663293304547362879917858274020130114407356915421790489159046436137798392166395741887161253887666192957541416946515332713252103484697084823899025988883392876697766525596108794047172174239965625799212781373741404621140908371475570274872954277863364421752223176090255840639071169671119071075297206472046776472372488948440904980808280913102849032215082248232485003003485482599673428992339872563632958829805958311012586489147323686683397148132085956439681522365157972347611264429595471431587329595211030710368040843736862220705157435988292849318638418755926875062812988080512415238785119568641635422921360901129362532354742851821243130540108726689267061462069044284131082516974532552344229816898388115989638125738631089306481164774891846848599370820736541817115284693224348836408207510042967266183314729077460051525574185937656076032960763399362247049814719 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) df88bbf8022e139349109b0257e2f4348babe5b8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'hmatic.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016dbe7889240000040300483046022100fa3b6d9ef673b04556faf0ccbb1906913c7ae48eecd4897de6802077c03a4afb022100ad3b113c1b820bd9173d845eb31140d837e52ad1a838c47856ca3baee1b1dbbb007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016dbe788821000004030046304402204605ed5bc07b1c10019fde6353600a4901ea14774895bf18191d757063e6d30502200f86bed494b43dee9103c48683b4461873d4b6c7b8242bec2777eaada38fd631 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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