www.roncobiellese.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:61:23:84:26:cc:87:f7:6b:78:a9:1d:cc:39:c4:d4:7b:71 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.roncobiellese.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:61:23:84:26:cc:87:f7:6b:78:a9:1d:cc:39:c4:d4:7b:71
Serial Number (int): 294391456536585759228813371154479690578801
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 3f:d5:fc:f7:d5:e9:29:d8:92:6b:3b:14:97:e1:c1:87:da:03:4b:fd
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 3e:6a:99:45:4b:24:72:46:86:bf:c6:b0:15:22:67:01:6a:64:7c:95
Fingerprint (sha256): 05:9f:ed:38:38:1b:b8:c0:89:af:76:a1:a8:d2:49:ef:eb:07:2d:e3:55:d7:a5:b1:c0:1a:cb:5f:ba:87:f7:18

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.roncobiellese.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.roncobiellese.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.roncobiellese.com

Other certificates including the domain name roncobiellese.com

(limited to 100 certificates)
www.roncobiellese.com
roncobiellese.com
www.roncobiellese.com
www.roncobiellese.com
roncobiellese.com
roncobiellese.com
www.roncobiellese.com
www.roncobiellese.com
roncobiellese.com
www.roncobiellese.com
roncobiellese.com
roncobiellese.com
www.roncobiellese.com

Certificate

The complete raw certificate details for www.roncobiellese.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 294391456536585759228813371154479690578801
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-10 04:26:04 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-08 04:26:04 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.roncobiellese.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 962904660799905302931382199216741250138550914610331917123467178009036835783422942740238606284973026505734714738545944087030234697605525859804985151822426460842672084614448119544580543234084346740306922561357061708855700950611803185915844100785917084144580841226731714302118878686813235602952073052764166754670472370612030792335519002854014777723787326649960240644762350783443673283339140863701340825632261355561693283138184584927675252320446938738306681176118859357963631851615036005769470354241691261600425671790140556171399492096450896711940565404561597312478110317756025536939268176740139757644233866862346273283737910883019600480458218996945239331849063282626550727532182608644802746578223115613204776861776229960228316746699926248349284614896467255609539659731298585067586974939884396485403437341765543570857690378111643826055022233372582621817809457436816861936098662371130007817398839180515148020664628745928778551272037798360087923979835437651632349018709080022650413877856937867121473560140140453578943523896977701571495260928815865838753043610935433516922602298359088346474229017601989643212655524073125485127047191044806003996946830950286090215899442050334012012404722670756569666393292869543609449383396548422816521432541
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3fd5fcf7d5e929d8926b3b1497e1c187da034bfd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.roncobiellese.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
							00f200770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016e53c6c03c0000040300483046022100a44969d32cc484a59bbde957beae1bdc45121720a65196f270724be85062ac26022100ecc1d99dc66a33820ccaf5e24e2fd6a337ac952547da3e9f44d1725b37a29e300077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016e53c6c1f90000040300483046022100cb0ed01a8a890a6840196b8917d1c61748a964e8696bba9bb779a6d06f590981022100acc9299082cf5b415c35eac0b4543585ee2dd95fd4253ed4849086f72c4140e1
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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