giammaria.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e6:ac:39:72:36:79:9b:f5:69:19:36:f7:0d:52:ee:a4:78 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=giammaria.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e6:ac:39:72:36:79:9b:f5:69:19:36:f7:0d:52:ee:a4:78Serial Number (int): 339830727679803180372431778192378326590584
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: de:d2:c2:e8:8c:72:db:18:83:d5:3c:c1:3f:6e:51:de:55:44:c0:eb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 67:01:7b:6f:f4:01:23:90:73:2f:5a:76:8e:97:74:ad:82:af:3c:43
Fingerprint (sha256): 04:64:3f:c5:d2:ac:14:b8:06:c0:e2:77:5a:0b:0b:b6:fa:29:6f:f5:83:1d:1f:07:b3:fa:69:c5:04:d9:28:0e
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate giammaria.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for giammaria.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
giammaria.org
Other certificates including the domain name giammaria.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for giammaria.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISA+asOXI2eZv1aRk29w1S7qR4MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjMwMzU3NTNaFw0x OTA2MjEwMzU3NTNaMBgxFjAUBgNVBAMTDWdpYW1tYXJpYS5vcmcwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQCwCHQzRhdMhFvQBqSB8PSVhKjrjPXMVUtQ ZkTfwwDSia0HVI+BabeDLmMjtPBfhXshfKfcZFVrbV50dIDNVt4xv35KzWSzZGrj NbZPRnJdALpz8NhLSOWlhi1je5FzZvDfZroONDKXCO+xF5WtEtBjpZ7oPDN+Hzmp l2XSbPabvnJQvf8yeX9dtuQyeb2eFMUup3JUYLkhtzqeZbZoMr6L1O+6hLyv1gZN CLmilZPR33Fbt8e0s2wV8+vSFV9wx5xLn6DEqtM1NcXzT1gf97gATGxtFQUsNrz2 1lBJ2REEYRYFhiftkyNYlQnem1khlEILPuFxhxOiWqT67/6gcPlgX0YDsXohGkYX lat1iD5SMW9vgFvuehu4R7Hwj0uueJZcve44G0DSSj9YVzc51qcd1eVuqqbkKdkV TVAJEmIIYCDwutx594cinDloWeyIFqW/CTkJzCLiW9gPjwt8+xZ2L3A3lQG2TymJ 4JRNp3kjDjTVCrE9RksPIK1dRpkjoZz2Gf5iFjDqEFxGNhKGzB89q+c4A/Xs6/so 8IaA61QSQyvB6ePZReNQmruls+Q9QgiDuAdXl4QlWYGXZtHoJbYQhLkOYAjqj/AK /87I8uUVMCTnNtgiN5DL2+ASe2PVdcxFcPtbCE4dszzsCDz5utoL1LKSHixfxCmA 541GMb9ygwIDAQABo4ICYjCCAl4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBTe0sLo jHLbGIPVPME/blHeVUTA6zAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDWdpYW1tYXJpYS5vcmcwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdgDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWmo6ZGoAAAE AwBHMEUCIFWyEZItREIOVq2eUxNUNZDu3uIHx/xwjeGOBKBldcdoAiEAgZwUlgj5 HOIMJiMENlVt51a2vL8oDgGHrYF+ElWUkhEAdgBj8tvN6DvMLM8LcoQnV2szpI1h d4+9daY4scdoVEvYjQAAAWmo6ZIgAAAEAwBHMEUCIEexsLO2bw+dWGrpNnNZfxw/ 6sbvxBS55OIfeY0iKSK3AiEA/OdNOnu+jQ4ABHNH4yi9PadgxZJqgBPytNnSRI6v btgwDQYJKoZIhvcNAQELBQADggEBAC5Lp97bk/EkNjxlX2gqze/1gbbWtML8L+gO y9DpffSrVkbwpf8iEmlZcN0ON/677eVFUq8VD9I4e9A+f+VYptg1qVEod7AOGr2L rPu2+Kntg1HmdxZB//Vp8LqhW5nMJenbbZYhhJdsxMrkUmXtoVVLahBX8M6X15x6 9AyEHq0CmIPYHUF45ejJvWPqM0JRusjgUj1HejCnO8yg9mKDHqi/SHDFCBe8eCtD EzKFhPWOg/DCvw4YxaSDZocecuCzXtHMUpdbU+Y5c//QOY41G1ZbuwTqQxDsYzKd z23AwWw/2Mz8+uG1z+UXof1xT76AwbZvo7UWJDY3nwexVEzjj90= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAsAh0M0YXTIRb0AakgfD0 lYSo64z1zFVLUGZE38MA0omtB1SPgWm3gy5jI7TwX4V7IXyn3GRVa21edHSAzVbe Mb9+Ss1ks2Rq4zW2T0ZyXQC6c/DYS0jlpYYtY3uRc2bw32a6DjQylwjvsReVrRLQ Y6We6Dwzfh85qZdl0mz2m75yUL3/Mnl/XbbkMnm9nhTFLqdyVGC5Ibc6nmW2aDK+ i9TvuoS8r9YGTQi5opWT0d9xW7fHtLNsFfPr0hVfcMecS5+gxKrTNTXF809YH/e4 AExsbRUFLDa89tZQSdkRBGEWBYYn7ZMjWJUJ3ptZIZRCCz7hcYcTolqk+u/+oHD5 YF9GA7F6IRpGF5WrdYg+UjFvb4Bb7nobuEex8I9LrniWXL3uOBtA0ko/WFc3Odan HdXlbqqm5CnZFU1QCRJiCGAg8LrcefeHIpw5aFnsiBalvwk5Ccwi4lvYD48LfPsW di9wN5UBtk8pieCUTad5Iw401QqxPUZLDyCtXUaZI6Gc9hn+YhYw6hBcRjYShswf PavnOAP17Ov7KPCGgOtUEkMrwenj2UXjUJq7pbPkPUIIg7gHV5eEJVmBl2bR6CW2 EIS5DmAI6o/wCv/OyPLlFTAk5zbYIjeQy9vgEntj1XXMRXD7WwhOHbM87Ag8+bra C9Sykh4sX8QpgOeNRjG/coMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 339830727679803180372431778192378326590584 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-23 03:57:53 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-21 03:57:53 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'giammaria.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 718152078366378510206613452447709473439257904903085517703493955160304859881264809040979384626729798265037679297630883767689576559442084927447870109953130590237353558037904030916676687597378532761231122225293483837180640114553621961345332510467040972784221098558862347847615111810847034877039340055552540728523739955701847626237633851960120737922171368746107560415174976225910074062597704524095126634384150810822771109952602167080741428715319791505181422039604686409506290905697796322354942815956755613258048885862422299962129188496465201105935842544733422432224066597831725311940093656788837065777220650028638619355245462703874163174929356640982150615834146766724140704084653598824054819970270592635048377729335749958986922424156392101470381443797812286216765098055361049129453811968540559678066581499077063376281416806090816678232988946283143016193800104969248561629643817323195591281312808087537738306015960117996880188040600475231733129512671459108972722392105302320538533921086821615691275765124732524601998595493275138730820509162864575559418421522627801335680914038186755944258869116076983535927544946684266037646339777133212542933574163071067098865726728981627678532173434233917414347862247997797201520214348936523847066153603 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) ded2c2e88c72db1883d53cc13f6e51de5544c0eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giammaria.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000169a8e991a80000040300473045022055b211922d44420e56ad9e5313543590eedee207c7fc708de18e04a06575c768022100819c149608f91ce20c26230436556de756b6bcbf280e0187ad817e125594921100760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169a8e992200000040300473045022047b1b0b3b66f0f9d586ae93673597f1c3feac6efc414b9e4e21f798d222922b7022100fce74d3a7bbe8d0e00047347e328bd3da760c5926a8013f2b4d9d2448eaf6ed8 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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