fontenuova.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:49:e0:89:25:31:97:19:dd:a1:09:59:bd:62:d8:6a:54:02 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=fontenuova.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:49:e0:89:25:31:97:19:dd:a1:09:59:bd:62:d8:6a:54:02Serial Number (int): 286475929750612787004166470296766060844034
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 44:95:b3:f6:24:65:5a:5d:45:09:95:74:1c:79:f5:bc:8f:7c:44:1c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): b4:e3:63:93:c7:17:78:e8:ec:30:70:3f:ec:1d:7a:10:0a:5c:62:41
Fingerprint (sha256): 04:1a:97:ed:14:a0:09:05:5b:21:08:d2:98:3f:1f:b3:65:93:ae:cb:81:96:c1:1a:03:ff:23:05:bf:7c:eb:8e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate fontenuova.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for fontenuova.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
fontenuova.org
Other certificates including the domain name fontenuova.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for fontenuova.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISA0ngiSUxlxndoQlZvWLYalQCMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDQxODQ0NThaFw0y MDA1MDQxODQ0NThaMBkxFzAVBgNVBAMTDmZvbnRlbnVvdmEub3JnMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAydGWDULc/vEbO7se7QalaO3iTtMR8Ple g1MAd5vzcYqSAEEXdGOg2ieNyZfak7C5+B2V5+lh5GwiEENuN3dzhWz1SBl2uc3F V2jTL2KrAT7mnydGdivwlfhiudQyO2Eiz6tYEPYGVsZK1rMlXBhmFNB781KnxwMK nyIe7zEjh1UdYwg+9UBMWuEFjcQwBVFkelQUuNqwYH0nfF3y5JsbpYF5QMyvaaFF qqoiEr//boUram8YfuPUCqbNKJQvvCgA+bwAfuT9EA07HANJc9Yj0F6T7vbaKGeQ PRvoq7QPd81WukkgKTuNBo1SXAiijHlaX/ydi80uNSBzkN3XTMnhoDkQsQFmBaQN mdEqb6hVLosGri5hojz2GZLsTV9RmBkNJEHUfWET0/g4lxlBdo5uZBMx6mpVfMDj OB5wm/w2mO9dF1t6ZhJtcKY99YsPAjTfjaqsagIZGXe20LRWapQoShHf5tHi1yHe TkqCi/epxOYzb5nO9GKo9jZ2waVeBFWfoqZjBbVfGgKSkex9mUQIwgUMHHatPbt3 Ejhb1GUBDcvBhyiAUXUPDgtFi6y7MtjUVNiE2IsYvE3/bLbaBtGzTG7JP4/N6lx0 5MdlbHhDzFgN8Z+Rars+mUjMi2P6Vqc9dIyex3ZzDaf8HH2NeaJx6Ggv7blIbNrl 13bY5D3csM0CAwEAAaOCAmEwggJdMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQURJWz 9iRlWl1FCZV0HHn1vI98RBwwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg5mb250ZW51b3ZhLm9yZzBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQIGCisGAQQB1nkCBAIEgfME gfAA7gB1AF6nc/nfVsDntTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAABcBG8AM8A AAQDAEYwRAIgTv8IJahRuZeqa9AwajlM9tB8alK19gVbgJmcMy/zsfwCID0h2vP5 n87MUx/eZVRH4KFXQRIR/LerKL6BRy3otGw9AHUAB7dcG+V9aP/xsMYdIxXHuuZX fFeUt2ruvGE6GmnTohwAAAFwEbwA9AAABAMARjBEAiAMB6sAfWxmgfjp3ummlPJi K3bOiQpNWUZFwcFiLjAnywIgPOr88R0YdKJ1k+9l0vcwIjzQItubOAtLDvlyx/JG zo0wDQYJKoZIhvcNAQELBQADggEBAJoG2Vo6G5+MYoIj3XJFBUW/GmjRBnLbs6HV MvNGPs25WnJdWC6MJ7tVH8ulrIj36wPliDjQVBS/NehXjqxecb0s/mB50VQTvMBa aIEXsyB9TXykuUxjpNkASuOTN2jtHtNWVDdqPmS0PTHLGnxMnwJ2Z4ebkd64YSm7 Zq0+7Xfo3Q5o3HfPSPuWo8ip02H4aRaUkfXrfOgbUFjf7VsBPs6v5We+XyT8cqCF fmsBJUWPPHCaLU6evZnKFU3PAbGfg95498I/7vr1zSpgq5xLmUm3wWIi0+Kh8Sbt Y6n3VfbzpOvx+EkxKvToDTViX+fuKXJaKDTaLEZ7XGkWlzkFmek= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAydGWDULc/vEbO7se7Qal aO3iTtMR8Pleg1MAd5vzcYqSAEEXdGOg2ieNyZfak7C5+B2V5+lh5GwiEENuN3dz hWz1SBl2uc3FV2jTL2KrAT7mnydGdivwlfhiudQyO2Eiz6tYEPYGVsZK1rMlXBhm FNB781KnxwMKnyIe7zEjh1UdYwg+9UBMWuEFjcQwBVFkelQUuNqwYH0nfF3y5Jsb pYF5QMyvaaFFqqoiEr//boUram8YfuPUCqbNKJQvvCgA+bwAfuT9EA07HANJc9Yj 0F6T7vbaKGeQPRvoq7QPd81WukkgKTuNBo1SXAiijHlaX/ydi80uNSBzkN3XTMnh oDkQsQFmBaQNmdEqb6hVLosGri5hojz2GZLsTV9RmBkNJEHUfWET0/g4lxlBdo5u ZBMx6mpVfMDjOB5wm/w2mO9dF1t6ZhJtcKY99YsPAjTfjaqsagIZGXe20LRWapQo ShHf5tHi1yHeTkqCi/epxOYzb5nO9GKo9jZ2waVeBFWfoqZjBbVfGgKSkex9mUQI wgUMHHatPbt3Ejhb1GUBDcvBhyiAUXUPDgtFi6y7MtjUVNiE2IsYvE3/bLbaBtGz TG7JP4/N6lx05MdlbHhDzFgN8Z+Rars+mUjMi2P6Vqc9dIyex3ZzDaf8HH2NeaJx 6Ggv7blIbNrl13bY5D3csM0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 286475929750612787004166470296766060844034 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-04 18:44:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-04 18:44:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'fontenuova.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 823348445375860893182093122744298251379453796095512934602713548654291314208947231980624755431092422191859660921420617144430703206782506556093817006536170580089815187737845018398209582363649618423479318119410397651939740401584366187754243783181455329988042998067149745103663910781763754034112988011639897557623276975236627714254577681013672776042946648190676943975320218336461783478432949364998750489553964336136632651133511977130199331006877714992042901252829810558513084620714980678285534211540445286449879918642911332450714935506891617843782537932645793728979204897514743433872532487543948350029887058443053805174593448021515833421600918303277018090840536658297611383778492035341397098804062182820092010770185504084430409320184878412789798004122546678725791623877973093466145008496706861838864205820505755156914008161205644997068158752244692856548889612404234969013156636837832467361000973989250646996312617738866487049075230988724437883673515807445237082927039922979676180519679276554134473794206655274782345949029055581211312592392524266148311732770369952730661791256603947038080783137163883254252525677400113189619847575469505317255476916361253484872420214685351709206102135657949386662511849396038741430244840340630426030485709 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 4495b3f624655a5d450995741c79f5bc8f7c441c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'fontenuova.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000017011bc00cf000004030046304402204eff0825a851b997aa6bd0306a394cf6d07c6a52b5f6055b80999c332ff3b1fc02203d21daf3f99fcecc531fde655447e0a157411211fcb7ab28be81472de8b46c3d00750007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000017011bc00f4000004030046304402200c07ab007d6c6681f8e9dee9a694f2622b76ce890a4d594645c1c1622e3027cb02203ceafcf11d1874a27593ef65d2f730223cd022db9b380b4b0ef972c7f246ce8d . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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