raffaella.net
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:58:73:3f:9c:f8:42:8d:22:e3:83:45:d1:3b:fe:96:c8:f6 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=raffaella.net
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:58:73:3f:9c:f8:42:8d:22:e3:83:45:d1:3b:fe:96:c8:f6Serial Number (int): 291434897602265756851317446009962110568694
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b1:9d:2f:41:00:85:55:4a:43:24:95:cb:b7:a3:60:45:c5:26:9d:50
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 30:6b:06:c0:27:c5:dd:47:c8:69:f3:61:2f:35:21:29:6b:36:4f:81
Fingerprint (sha256): 07:b1:56:2c:0c:7c:25:76:11:49:0e:05:de:82:ea:5a:b7:d2:6a:3e:b9:5e:28:a7:f5:2d:a5:b8:0b:b8:77:0b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate raffaella.net
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for raffaella.net
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
raffaella.net
Other certificates including the domain name raffaella.net
(limited to 100 certificates)
www.raffaella.net
raffaella.net
www.amaretti.info
aboccaaperta.com
copisterias.com
raffaella.net
www.raffaella.net
raffaella.net
raffaella.net
raffaella.net
raffaella.net
www.raffaella.net
bike-bags.com
raffaella.net
raffaella.net
raffaella.net
raffaella.net
www.raffaella.net
88154.com
raffaella.net
www.raffaella.net
raffaella.net
www.coinflipper.in
raffaella.net
www.amaretti.info
aboccaaperta.com
copisterias.com
raffaella.net
www.raffaella.net
raffaella.net
raffaella.net
raffaella.net
raffaella.net
www.raffaella.net
bike-bags.com
raffaella.net
raffaella.net
raffaella.net
raffaella.net
www.raffaella.net
88154.com
raffaella.net
www.raffaella.net
raffaella.net
www.coinflipper.in
Certificate
The complete raw certificate details for raffaella.net in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgISA1hzP5z4Qo0i44NF0Tv+lsj2MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMTEwNjQ3NTdaFw0y MDA1MTEwNjQ3NTdaMBgxFjAUBgNVBAMTDXJhZmZhZWxsYS5uZXQwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDYGr2nNTN7i37TCVhFWsGObkcJmHTlFHpl igImfERoPD6LhKol1TVBx7IcQe3uMtUlVW7/TnZLhAVSHvTHWvb2It4jIb1y6dP8 ugTngpAZ9zLiXmT4rifbhvNdLmd/FyVuy+roHGQOs0EHPou47xpRsNNXj3D9Fz2T QPr1ZFcoJrLaEVr5eCcufoBaXOS4Ka0I75aMSKXIpeKOcTkbBMhahjShpSWb3cov 5zvlPLztESVTdmLzfrQxDhWAPnxqpSBmAkV3jXGAy3sNhhRgwZnrAOilMNNTap5K n1pRHMPwRLuMQxWmgahpH8CPpoWJ5MMgPD11re8I1vD1ylLESsQ//HGL3PJ2ERwB u19pmBuH/vyQr2yuXRIsHsE+PVNR62Elgm2e3DSZTxKhDYZ4ZIzknDC+qePJhq1F tk29Z9PyHVC0vCgrWHOdYWHz2F3ZIg6gh9b6OGhSXt2p4L2p3xH+Cd9vtg/TQ1BY 5PWvnwzeSVyyXjKU0hKNFoHLPTpt3WUxgc/M8YNH9cVkoE8iI5jzmtv0leac1Tag ycy4VS+C68sx848KXzSIN+4mIguriq8sfAfi3cEn4d2xwMWkS19eWA3Kj9HqLAmL 0u/oyOFZApCc0NbgMUcPpM6VBX4aJpJn4AMAYTHXvQn4eD0+/EETG2QuMdCuyp8v PwCl0CpLowIDAQABo4ICYzCCAl8wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSxnS9B AIVVSkMklcu3o2BFxSadUDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXJhZmZhZWxsYS5uZXQwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHz APEAdwCyHgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAXAzOBKYAAAE AwBIMEYCIQCZ4wjdDs1YaWbfZSasLZ9ibq8Of6JyEao+oHBmdcR0BQIhAPIzpWbu Ae+x5frxoZGyoQ+5KNF3gm02zCmckdBIhCPkAHYAb1N2rDHwMRnYmQCkURX/dxUc EdkCwQApBo2yCJo32RMAAAFwMzgTSQAABAMARzBFAiEA4W1oIVcXShVizitzy7Pw XfC69nCDBRTy8KKeImYw7FMCIGkAhRqfo4hq3RVt7lGVBCczkMcsbC1aERWIYGjY aqbpMA0GCSqGSIb3DQEBCwUAA4IBAQBR5X78AHWM/unqL9etaCL7f1tt70K7hXT4 Moi/dtIf5fecrrziGBklzE7Zj6a3X+FqG7OjnUL0jRiF/izmMWT4Z1P2/uWuTOw0 +Ck1vHbEoCeIk3PRjvGl7aTm/wYC7R+KzFl64o/oe4xfj+bX480m/UYZsErAtFsY shSrahoWF0YIpAbutx5tNTV8KczPIO4RUF5SlMExPfLb/1tDpt0Q3I4rN4yDQ4hD jN7930PFI7HzQ3q+cjF0Zwk0ur0KuynDWWcxkpLgb2rFuBsgqKSWB33uazgWKbpm Xvul0lemhgioP8MpikZiFBivAb/ZtiX3ewApyMrnYKVE49BKQ06v -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2Bq9pzUze4t+0wlYRVrB jm5HCZh05RR6ZYoCJnxEaDw+i4SqJdU1QceyHEHt7jLVJVVu/052S4QFUh70x1r2 9iLeIyG9cunT/LoE54KQGfcy4l5k+K4n24bzXS5nfxclbsvq6BxkDrNBBz6LuO8a UbDTV49w/Rc9k0D69WRXKCay2hFa+XgnLn6AWlzkuCmtCO+WjEilyKXijnE5GwTI WoY0oaUlm93KL+c75Ty87RElU3Zi8360MQ4VgD58aqUgZgJFd41xgMt7DYYUYMGZ 6wDopTDTU2qeSp9aURzD8ES7jEMVpoGoaR/Aj6aFieTDIDw9da3vCNbw9cpSxErE P/xxi9zydhEcAbtfaZgbh/78kK9srl0SLB7BPj1TUethJYJtntw0mU8SoQ2GeGSM 5JwwvqnjyYatRbZNvWfT8h1QtLwoK1hznWFh89hd2SIOoIfW+jhoUl7dqeC9qd8R /gnfb7YP00NQWOT1r58M3klcsl4ylNISjRaByz06bd1lMYHPzPGDR/XFZKBPIiOY 85rb9JXmnNU2oMnMuFUvguvLMfOPCl80iDfuJiILq4qvLHwH4t3BJ+HdscDFpEtf XlgNyo/R6iwJi9Lv6MjhWQKQnNDW4DFHD6TOlQV+GiaSZ+ADAGEx170J+Hg9PvxB ExtkLjHQrsqfLz8ApdAqS6MCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 291434897602265756851317446009962110568694 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-11 06:47:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-11 06:47:57 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'raffaella.net' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 881629263533163151235799183211439479563357106040786279960693344819134794131779979387359761060023726649037409735382741948462349300780689994099705824876988019797054248347472875445591599383419906227508757813567586690980613459269765118201251690281635788692546382520918574865983428746752668582227265101569697092702100167092411241093494030227129229008189240863055827687162441848886977783591835253612816284512214485189878222512750544250618310387474688686985330838081510330953995109528467730592932311429159385193703344771453679593793853414313395682471295838560759363801450350950096990964056547420043611292016891537566498268826966092863977958659850344053713361769995596240922633185192303774847915389275773771195505872124510540698439328948121830043530115985327252128139114739383170784371818658456834033460752072588215038844229498365371437735635279135631708735798451314806715328093181121004282011395708945890481292997129272021655044656487587526608674293319303599405494752168204393932505556033120902176832959072610359152686425771542605220759952892745864497440030542564670730256958790783373289153786820752118300107110088854923686283028693237931162233753223128402467731541001146524624162111562621079039190653378772410416883669792291254803398020003 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b19d2f410085554a432495cbb7a36045c5269d50 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'raffaella.net' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000017033381298000004030048304602210099e308dd0ecd586966df6526ac2d9f626eaf0e7fa27211aa3ea0706675c47405022100f233a566ee01efb1e5faf1a191b2a10fb928d177826d36cc299c91d0488423e40076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d91300000170333813490000040300473045022100e16d682157174a1562ce2b73cbb3f05df0baf670830514f2f0a29e226630ec5302206900851a9fa3886add156dee519504273390c72c6c2d5a1115886068d86aa6e9 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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