taggia.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:c1:1f:16:ed:a8:b8:97:1f:18:fd:33:71:c8:18:80:90:ee was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=taggia.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c1:1f:16:ed:a8:b8:97:1f:18:fd:33:71:c8:18:80:90:eeSerial Number (int): 327052679729720618850873359802929520873710
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b8:ee:4c:f5:64:f8:71:2c:83:e6:53:d9:26:bc:26:43:3b:10:75:d1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): db:f1:d4:27:04:45:02:02:05:77:db:8c:47:f1:66:b5:4f:d5:a0:1a
Fingerprint (sha256): 0d:f5:89:04:64:54:83:17:b0:f7:e8:17:77:28:4b:1c:7e:15:be:61:88:fc:1f:9a:b4:24:87:29:b8:80:4e:00
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate taggia.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for taggia.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
taggia.org
Other certificates including the domain name taggia.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for taggia.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTjCCBTagAwIBAgISA8EfFu2ouJcfGP0zccgYgJDuMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDIxMzM0MTBaFw0y MDA1MDIxMzM0MTBaMBUxEzARBgNVBAMTCnRhZ2dpYS5vcmcwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQDZ9SGYRqnxeBzX+kHuaBYwzfkxLwx1N+TNtcKj l28b8pexEfTqFTn6B5mwajKqNXX+fveHRJwTMk/uUTqS75ZUs4R1PveUYz2r0tFK MWvxCDdnB5ufPKI//j1M0s1SIIaMSwPgUQBa/6EF/3wiS79crrC0Kk/wNTyRpeT0 Zh3ySyirOoJE4l9KUa3p+2BClDY2/daahN4J1w+/z2SAzwBE4IiKcdUtK3Yq+KVm C8IVq/NV6D0NXbYrJD5IYgtz7ykaGvdQqsjs01uuTqb3GkEC1HEobtWc1n6HfAAz 1HH6px50UT9vOTUsxa47sRBvTRRpnqzI+dr4p11q9YuU5mPlmM0J7ns7ycibFFEo 3FsVDfuh9JtqYcAmZEFCIzYW+/5tT559ORBqbaBjXPITVyLA5u6bCZmYq6w92vPk y2aXFKCnqeP4d8H2zTPInKeOa57qfRZjJqKS4I+C6VoHaWQzJSCcx3ierxd/FAJI 04AeW8kq5WpjA1flV8qoOKzoddV7hFuqB7yyNdRjpKPwWIMU4cdP7C3XiVCXJcm2 Uo7fTt+r8bPE9MnEHQQDiN8YWGGrXuVb7rdPaz6btEGrjve1iEF5WNql/q7o7oAo Dd5rpHIJBrYiKTHe+h+PFvYmqv2BLJ62OGtQZdFSeekvWS6xMdhF4/3t4bUi76c1 tKwaOwIDAQABo4ICYTCCAl0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS47kz1ZPhx LIPmU9kmvCZDOxB10TAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCnRhZ2dpYS5vcmcwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEGBgorBgEEAdZ5AgQCBIH3BIH0APIAdwCy HgXMi6LNiiBOh2b5K7mKJSBna9r6cOeySVMt74uQXgAAAXAGUrt9AAAEAwBIMEYC IQDp5b+aSZvOZqJ5Na/Yi+34CoAczXKgY16jEPTZxOfdMQIhAIUMt6pjvTdVLAtM Bn5vktglMju2DYOlgXTthHGcJ9q0AHcAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQAp Bo2yCJo32RMAAAFwBlK8+gAABAMASDBGAiEAttUfrBRpvNsLcsKy7SmPEKQIbrGf ll7Gj0Bgsx7GVt0CIQC4H16qXG1334ZDyNJOYWxIEgJ2xVgdQ6DWEAHZg0LMCzAN BgkqhkiG9w0BAQsFAAOCAQEAmg+UWpKXXNfP7JHNLryrzb/Uaoz3/7hxqg8+8Wbd wgk3ka5neFs7sdhGyinw/59NSx/4R0F3FbNBPztARbK+4q8XxESoZlVktOLMBNfA RpLg9ky8ocFe2njoQjQl670YSHbeAjKuoYM7A8qgWjvxrn8vv0jSARP0+LAZf4md 1+v4nRpKCPaHgDVoeYSr6h9DzCHhk2Abww7s2eF7bewmxmQ2Ls3DOkFPtnRf6HPE 5MPKrNRfl7CLV/MaX/QETNKU+SaS41IcRhCbZBhCheSsUotxq+vG08yX5cmGAWjP Ipf1fP+jREv4FNUPZ9e9DVCk1uq5TSlVBbwxBPhVfwwIMA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2fUhmEap8Xgc1/pB7mgW MM35MS8MdTfkzbXCo5dvG/KXsRH06hU5+geZsGoyqjV1/n73h0ScEzJP7lE6ku+W VLOEdT73lGM9q9LRSjFr8Qg3ZwebnzyiP/49TNLNUiCGjEsD4FEAWv+hBf98Iku/ XK6wtCpP8DU8kaXk9GYd8ksoqzqCROJfSlGt6ftgQpQ2Nv3WmoTeCdcPv89kgM8A ROCIinHVLSt2KvilZgvCFavzVeg9DV22KyQ+SGILc+8pGhr3UKrI7NNbrk6m9xpB AtRxKG7VnNZ+h3wAM9Rx+qcedFE/bzk1LMWuO7EQb00UaZ6syPna+KddavWLlOZj 5ZjNCe57O8nImxRRKNxbFQ37ofSbamHAJmRBQiM2Fvv+bU+efTkQam2gY1zyE1ci wObumwmZmKusPdrz5MtmlxSgp6nj+HfB9s0zyJynjmue6n0WYyaikuCPgulaB2lk MyUgnMd4nq8XfxQCSNOAHlvJKuVqYwNX5VfKqDis6HXVe4Rbqge8sjXUY6Sj8FiD FOHHT+wt14lQlyXJtlKO307fq/GzxPTJxB0EA4jfGFhhq17lW+63T2s+m7RBq473 tYhBeVjapf6u6O6AKA3ea6RyCQa2Iikx3vofjxb2Jqr9gSyetjhrUGXRUnnpL1ku sTHYReP97eG1Iu+nNbSsGjsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 327052679729720618850873359802929520873710 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-02 13:34:10 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-02 13:34:10 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'taggia.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 889189200914786297906618889682748685185233194336484455584344466885674911222462538983717359329090046480937988073541346626872441253903014296840044263937260808910818648997335504108995541000576725650254607736466114091062679157644773555299680637374710972556710513597626495586264463021466763132153063335234787064684094178955291150659252324206798830752605963614414352985055595690238755695498329154600281172206509495782769999481381234815268218496898642929533357158891039026898366983633409894096010545343144084610346756633974550693874090344358315627050187914660208415051059436164100991769709260968848679446648356472804913257959808314253963044307187025066311023191485596114388990688919513223811502432948126743361043539071008955439802035470970737854020890321462560465523915994435327196946744867389053697862711314562163936467348707206003816208703448366742570227391717002537662946667455558955232529321244210846887351985488795130122895712996680203081155676323722399946124418927998347223524125762705846569343049361836874935952784846412863053677905909994674734310426885350522520209493988812016137802664322091531773636829231768946249176682140501004802036217839945484866018460509923576736483032792567152533117009807476311859466534356869385601829050939 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b8ee4cf564f8712c83e653d926bc26433b1075d1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taggia.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001700652bb7d0000040300483046022100e9e5bf9a499bce66a27935afd88bedf80a801ccd72a0635ea310f4d9c4e7dd31022100850cb7aa63bd37552c0b4c067e6f92d825323bb60d83a58174ed84719c27dab40077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001700652bcfa0000040300483046022100b6d51fac1469bcdb0b72c2b2ed298f10a4086eb19f965ec68f4060b31ec656dd022100b81f5eaa5c6d77df8643c8d24e616c48120276c5581d43a0d61001d98342cc0b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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