www.fontenuova.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:50:3b:7a:07:f9:a2:95:37:d9:42:37:0d:dc:ea:d0:0b:f1 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.fontenuova.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:50:3b:7a:07:f9:a2:95:37:d9:42:37:0d:dc:ea:d0:0b:f1Serial Number (int): 288638505222678864959303237267949962136561
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 81:28:7f:74:30:ed:e4:5f:e8:e7:4f:7f:64:72:77:7b:ab:c2:dd:1c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 21:26:ee:fd:c2:59:93:89:13:1f:be:d4:48:0c:65:33:3c:d6:53:35
Fingerprint (sha256): 0e:1f:3a:df:53:a6:fe:b8:f8:c0:35:85:de:5f:29:51:31:f9:b7:16:73:c7:89:f9:e0:f4:51:6d:a0:5a:90:d5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.fontenuova.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.fontenuova.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.fontenuova.org
Other certificates including the domain name fontenuova.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.fontenuova.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgISA1A7egf5opU32UI3Ddzq0AvxMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjcxNjQ1MjdaFw0x OTEwMjUxNjQ1MjdaMB0xGzAZBgNVBAMTEnd3dy5mb250ZW51b3ZhLm9yZzCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBANcdcki73Wg11o9NygTGPMLbcAzr 7OPXnFvfBxobByxDdJta+FsBJeLF9q63+uU/J3YftuFLUuN7nN1aq6T3Qt3MIRQ3 nQv6FuUCtW4kLm9VYylSS1EU4ozOd5ceDf+GHX03kP/SPrPmbzMiJIeSONrd3MHA a/ouKxHulSm+eOXDFD6dhx/mDTdwp0v171WIwJrKg7uFs79RW2TWdTPSIwIoKYy+ J5Pzvuq5XJU1kShHj/8ni9vPfAnS+LTPrml45BStOGf3/wjqJXUqCXBT1lu5/2qV x/NRLoYNR3mPSROg7iVk8tetseGlZjaviYoLH5NEp2R+ok3TOd8URWl+gPL0Qgnv JrdRrcD8Ctuc950wUcjhWkGKyJEhec+N/0Jej0eYMy8L6ZUMDFCPia8vK9kSX7P+ W9GSu0ZiaVR2M/SC9aQy53uKdtG1DIo2DbvfdaSvwxTybsc8xoYvrmatpPK+RDUm F8r2k8J808+3lcQjB9acGJCw/vKC7/DMOtWs+QNqK+SgiefM62mHpzjI53s1w1vs oGE1N7SUZkgGaGo1QYAmaeBwZoJZ9GL0qQOCnh8Ure77CGskxMl1XNm5s3k/6O7t FFcbHP+xL5+GrsvLnlWEnjmOjxrMTUAfSugTHbyIaS+kl6LjA5Cr4/MqbSvGhoP4 U6vfJ1RasqtvQzY1AgMBAAGjggJlMIICYTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FIEof3Qw7eRf6OdPf2Ryd3urwt0cMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISd3d3LmZvbnRlbnVv dmEub3JnMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHW eQIEAgSB8wSB8ADuAHUA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4A AAFsNImYHAAABAMARjBEAiBTm3MpdpH85x8Rf9BoWYKtvSWfM+g2KeNIgqKf3bm6 PgIgPYQpXeI5vZHUgEY0rRU9OF6Flh2VYCv9gblsniTyoOQAdQBj8tvN6DvMLM8L coQnV2szpI1hd4+9daY4scdoVEvYjQAAAWw0iZgsAAAEAwBGMEQCICt0GxF7bp3i lCyqHx3O5MMN3q6L8q0pArQX+c/gCke9AiBKO0QhFTkWCS+ua9y15yUdGzSyQdKO 68AVxUdZh4ryozANBgkqhkiG9w0BAQsFAAOCAQEAWRRQ3zUCxZm9GMLhdTWwxKxa QQtM93+uw0OFaJI01XmMtae+dzhqgyKJlOOjh0rQ0ain+LPAm4V4YojX3wiZUfyh 0SQFivFVH63QldJMkfG3nNx8+DUQaWBSv2ZJPTfQfwpUp/CS5S3nQaNbvIBZYk8T Zg1vMnlulnKrdt65rEbeqgc0AuVlGEa/Z8O4nDit+aPEYZb6Ex3+ZUutj4+9zrh5 POFW94CkYbS0jybmnpuhiY1Be2d+kgtTShv3GNznZk/wjR6T2GYm9QfJSSfQR/AC hgmckrxWCSZOUN1TuOVokoVmXApYnBs1bQXR9YDQGxRcGugylkEwx9ZNfPQHog== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1x1ySLvdaDXWj03KBMY8 wttwDOvs49ecW98HGhsHLEN0m1r4WwEl4sX2rrf65T8ndh+24UtS43uc3VqrpPdC 3cwhFDedC/oW5QK1biQub1VjKVJLURTijM53lx4N/4YdfTeQ/9I+s+ZvMyIkh5I4 2t3cwcBr+i4rEe6VKb545cMUPp2HH+YNN3CnS/XvVYjAmsqDu4Wzv1FbZNZ1M9Ij AigpjL4nk/O+6rlclTWRKEeP/yeL2898CdL4tM+uaXjkFK04Z/f/COoldSoJcFPW W7n/apXH81Euhg1HeY9JE6DuJWTy162x4aVmNq+Jigsfk0SnZH6iTdM53xRFaX6A 8vRCCe8mt1GtwPwK25z3nTBRyOFaQYrIkSF5z43/Ql6PR5gzLwvplQwMUI+Jry8r 2RJfs/5b0ZK7RmJpVHYz9IL1pDLne4p20bUMijYNu991pK/DFPJuxzzGhi+uZq2k 8r5ENSYXyvaTwnzTz7eVxCMH1pwYkLD+8oLv8Mw61az5A2or5KCJ58zraYenOMjn ezXDW+ygYTU3tJRmSAZoajVBgCZp4HBmgln0YvSpA4KeHxSt7vsIayTEyXVc2bmz eT/o7u0UVxsc/7Evn4auy8ueVYSeOY6PGsxNQB9K6BMdvIhpL6SXouMDkKvj8ypt K8aGg/hTq98nVFqyq29DNjUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 288638505222678864959303237267949962136561 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-27 16:45:27 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-25 16:45:27 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.fontenuova.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 877592736039111519144226894476262127592130641774467639366467361455040578267107227224274554974221992765160698980045009933636142764994425975444326752517945478184101054335865354031561294818683304602776608353484252430791835221294812270157530356322735836943782372024410513841561104442790805375659709740480596878996981856519700472439052330251495474016553466392815288624062495123040901755159678396869106928930290634503354117470572291461855224560997211112025552907894141895802342916756779838411159688060169768592227493398245812290617744109146898182534471674092269479338739235503460087293587922762926928193755885009696135082529747834501702132281329232387884995735518805778914135923035469183414003777699838528731418514462566723503224992105212818410987839085185056117458125458114446617450870306011091311857075098952343237480546867211043763017282086150678855295591093227625654174210256096399083598901906512290349735574910359919400968444722158224902307334205854359075886536213352032237437831358555661656590635191090326466757186980493914309600987432827753372603846364326615110888023704563435875709867575289665554530431589028612411127536098594745731510646279678767454957952940027673911197097277133594037426386444447245277428083758618831520232846901 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 81287f7430ede45fe8e74f7f6472777babc2dd1c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fontenuova.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c3489981c00000403004630440220539b73297691fce71f117fd0685982adbd259f33e83629e34882a29fddb9ba3e02203d84295de239bd91d4804634ad153d385e85961d95602bfd81b96c9e24f2a0e400750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c3489982c000004030046304402202b741b117b6e9de2942caa1f1dcee4c30ddeae8bf2ad2902b417f9cfe00a47bd02204a3b4421153916092fae6bdcb5e7251d1b34b241d28eebc015c54759878af2a3 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00591450df3502c599bd18c2e17535b0c4ac5a410b4cf77faec34385689234d5798cb5a7be77386a83228994e3a3874ad0d1a8a7f8b3c09b85786288d7df089951fca1d124058af1551fadd095d24c91f1b79cdc7cf83510696052bf66493d37d07f0a54a7f092e52de741a35bbc8059624f13660d6f32796e9672ab76deb9ac46deaa073402e5651846bf67c3b89c38adf9a3c46196fa131dfe654bad8f8fbdceb8793ce156f780a461b4b48f26e69e9ba1898d417b677e920b534a1bf718dce7664ff08d1e93d86626f507c94927d047f00286099c92bc5609264e50dd53b8e5689285665c0a589c1b356d05d1f580d01b145c1ae832964130c7d64d7cf407a2