www.genzanodiroma.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:43:33:1a:08:41:af:63:a9:c2:cf:84:8b:6a:f9:18:42:30 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.genzanodiroma.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:43:33:1a:08:41:af:63:a9:c2:cf:84:8b:6a:f9:18:42:30Serial Number (int): 371315988105710604008267112416735508578864
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 6e:17:c4:9a:74:c9:cd:63:f2:f4:56:d9:da:ef:24:e6:57:63:67:b4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 9d:7b:b4:ad:85:a6:a8:d4:72:6d:48:76:02:26:c6:82:5a:dc:b0:a2
Fingerprint (sha256): 04:7a:18:63:a0:8a:72:a9:2d:c1:87:69:ed:5b:ae:51:15:49:87:90:d1:06:58:f0:5e:21:c3:63:0d:00:d6:3a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.genzanodiroma.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.genzanodiroma.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.genzanodiroma.org
Other certificates including the domain name genzanodiroma.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.genzanodiroma.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYjCCBUqgAwIBAgISBEMzGghBr2Opws+Ei2r5GEIwMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDIyMDMxNTdaFw0y MDA1MDIyMDMxNTdaMCAxHjAcBgNVBAMTFXd3dy5nZW56YW5vZGlyb21hLm9yZzCC AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKflAv0eDs+Pf8DktYGaJAHd Qt6rmW13Mb4lGi87Rf2Q9TNAaT/6cUd2EjumCTSSiL+JuoEb4ZaxbevjfCI8rpNp YhIVBm1W3nXavAfOIqJZAjWGSzx8djhXTj2lEFoK1oinvLMtXrLke5ZjWiiSVlMo iPrxW/qeLDT9M92IYsSL9TUzqs4wzSavpCVahtGNKvoddOvOl3eZJBQcwG7elb2g ZVH9xQoh/yg+cMJi3L2CIIEp6cPtLRfW07FgDddmV2+wXwwgq6YSiWlenaulmXTw lbzmOZ8cPtPUvz1HTsZXUVsDWW5BuM0rtzkVPvMGYogsB8dyGVEDbRcf68fNnfpp mAwAzHE7p3OxPQ2SENK0LUcugZmgZBaSGdR17BZKRrNShwh4o4eAB2eNzKOEITHX 7h08bgOR9O30jwiHt4aaDxh6K9ZGff3MVsWEfsDxGmvFOcZHCr4ESITZIycMsOFz iOtL0COykzoV33GmVOyjY6jGqxI53DgcnmmYx9OZ8jahFl+rLU6xM23qHuGNmDVW uoqOleECnxN50O3xtXFUboLnq3wNWcnJ/JutH/6Mo/C7wkCf6kRMWC6oH25KwVBW 8vumWxyrysn8FZOtGmHhK1Tns7gSWptKwe8hlMYqjaBYASVqcbEMONHDAThchUru HemPRRo/nc4aGrio88T9AgMBAAGjggJqMIICZjAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFG4XxJp0yc1j8vRW2drvJOZXY2e0MB8GA1UdIwQYMBaAFKhKamMEfd265tE5 t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29j c3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2Nl cnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wIAYDVR0RBBkwF4IVd3d3Lmdlbnph bm9kaXJvbWEub3JnMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYK KwYBBAHWeQIEAgSB9QSB8gDwAHYAsh4FzIuizYogTodm+Su5iiUgZ2va+nDnsklT Le+LkF4AAAFwB9E7gAAABAMARzBFAiEApW5dS+XZgOEHRkyvMutfsPyybuYP9Tpi nG3JQ5r34RkCIBkgtUOo9b/ZME2zgAjdLnmzZ4a/YPoeI4DANCoYz4ivAHYAb1N2 rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFwB9E7twAABAMARzBFAiEA 1+Svqz4F98U8NwYFs5C9uBiynPlxxYw3J4c9kqkOHN8CIB7+v1ZFntfVubNY0O0a XPwvOsJCwevSC8F6ZJ4Kl0W1MA0GCSqGSIb3DQEBCwUAA4IBAQABK+1NdbI+0u2L a2nXLrkU7NAzRRY9N59Z8ih7hc+jS6knhP4KBRUv1+FWbUQLgraOb2xpCKl4sjU1 dgHeCpZyWs91qhC4ClcANyWq6DQKtFIHZdzwxEzJj6u4CxvdSUwCdjATwcPIzOp0 qhSepOR11h2TJzUkYpn0n8SCF9ZA4x7wE6gXVhPAF6ZfVxLclmGkTbEw2F4jqUYs QBF7GQllyIIrS0n8M/vuyUfdy9nwEVxU7eU3Kc/cEuLpRuLkpnH/loTIWu2fK6Hc 5NzvrLWS2wW5NDUGrNbAfnBzluR7phTiIzFAnz3p5pQByAbQJv2F8ro9y/akkW9T ZgOH0kH/ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAp+UC/R4Oz49/wOS1gZok Ad1C3quZbXcxviUaLztF/ZD1M0BpP/pxR3YSO6YJNJKIv4m6gRvhlrFt6+N8Ijyu k2liEhUGbVbeddq8B84iolkCNYZLPHx2OFdOPaUQWgrWiKe8sy1esuR7lmNaKJJW UyiI+vFb+p4sNP0z3YhixIv1NTOqzjDNJq+kJVqG0Y0q+h10686Xd5kkFBzAbt6V vaBlUf3FCiH/KD5wwmLcvYIggSnpw+0tF9bTsWAN12ZXb7BfDCCrphKJaV6dq6WZ dPCVvOY5nxw+09S/PUdOxldRWwNZbkG4zSu3ORU+8wZiiCwHx3IZUQNtFx/rx82d +mmYDADMcTunc7E9DZIQ0rQtRy6BmaBkFpIZ1HXsFkpGs1KHCHijh4AHZ43Mo4Qh MdfuHTxuA5H07fSPCIe3hpoPGHor1kZ9/cxWxYR+wPEaa8U5xkcKvgRIhNkjJwyw 4XOI60vQI7KTOhXfcaZU7KNjqMarEjncOByeaZjH05nyNqEWX6stTrEzbeoe4Y2Y NVa6io6V4QKfE3nQ7fG1cVRuguerfA1Zycn8m60f/oyj8LvCQJ/qRExYLqgfbkrB UFby+6ZbHKvKyfwVk60aYeErVOezuBJam0rB7yGUxiqNoFgBJWpxsQw40cMBOFyF Su4d6Y9FGj+dzhoauKjzxP0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 371315988105710604008267112416735508578864 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-02 20:31:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-02 20:31:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.genzanodiroma.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 684950114517420919066465654599349514125522036866510497334707399250196024859697779824929546563030446729600328946900187613162432370571681731665084965033456916097585418681703267962095817442516199229667961422358953916093797124653604322542935153551502894203852824924845073108304315286701628653026404674376303316189846406897466255973697309477635127755133659925686801371059069621229901375443305000476591566863734489088408319971234394084505322559676228073088584805374882011884533280158141181577208407410484238160889041138418041808171412836698752568947224442520224178773356108972520052483025605737625234205805886437953478873559340033634587382185423144869859010057258943166303503935757356782276245869130653441911022992268716619519878873375692099091290985464754981306762864405895524743915681937705778190139774223230503017640714675790737854964387584016065380715069691783786340726527963812343373009921536417789050086747676191761942990500254768451865950138074728129726373394787186988113896190963893613848507860449340624353573515558824881962180916654925482418102365521218325052007221362755315701424261641657445953965410721843632522315102183833223249737201380525095043796960823577434462804392732542398926231256467990958737510434948512273218646820093 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6e17c49a74c9cd63f2f456d9daef24e6576367b4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.genzanodiroma.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000017007d13b800000040300473045022100a56e5d4be5d980e107464caf32eb5fb0fcb26ee60ff53a629c6dc9439af7e11902201920b543a8f5bfd9304db38008dd2e79b36786bf60fa1e2380c0342a18cf88af0076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000017007d13bb70000040300473045022100d7e4afab3e05f7c53c370605b390bdb818b29cf971c58c3727873d92a90e1cdf02201efebf56459ed7d5b9b358d0ed1a5cfc2f3ac242c1ebd20bc17a649e0a9745b5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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