www.fontenuova.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:50:3b:7a:07:f9:a2:95:37:d9:42:37:0d:dc:ea:d0:0b:f1 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.fontenuova.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:50:3b:7a:07:f9:a2:95:37:d9:42:37:0d:dc:ea:d0:0b:f1
Serial Number (int): 288638505222678864959303237267949962136561
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 81:28:7f:74:30:ed:e4:5f:e8:e7:4f:7f:64:72:77:7b:ab:c2:dd:1c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 21:26:ee:fd:c2:59:93:89:13:1f:be:d4:48:0c:65:33:3c:d6:53:35
Fingerprint (sha256): 0e:1f:3a:df:53:a6:fe:b8:f8:c0:35:85:de:5f:29:51:31:f9:b7:16:73:c7:89:f9:e0:f4:51:6d:a0:5a:90:d5

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.fontenuova.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.fontenuova.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.fontenuova.org

Other certificates including the domain name fontenuova.org

(limited to 100 certificates)
fontenuova.org
www.fontenuova.org
www.fontenuova.org
fontenuova.org
uscmarshall.mba
www.fontenuova.org
celena.boston
fontenuova.org
www.fontenuova.org
fontenuova.org
coconutcoir.ca
www.fontenuova.org
fontenuova.org
fontenuova.org
fontenuova.org

Certificate

The complete raw certificate details for www.fontenuova.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 288638505222678864959303237267949962136561
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-27 16:45:27 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-25 16:45:27 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.fontenuova.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 877592736039111519144226894476262127592130641774467639366467361455040578267107227224274554974221992765160698980045009933636142764994425975444326752517945478184101054335865354031561294818683304602776608353484252430791835221294812270157530356322735836943782372024410513841561104442790805375659709740480596878996981856519700472439052330251495474016553466392815288624062495123040901755159678396869106928930290634503354117470572291461855224560997211112025552907894141895802342916756779838411159688060169768592227493398245812290617744109146898182534471674092269479338739235503460087293587922762926928193755885009696135082529747834501702132281329232387884995735518805778914135923035469183414003777699838528731418514462566723503224992105212818410987839085185056117458125458114446617450870306011091311857075098952343237480546867211043763017282086150678855295591093227625654174210256096399083598901906512290349735574910359919400968444722158224902307334205854359075886536213352032237437831358555661656590635191090326466757186980493914309600987432827753372603846364326615110888023704563435875709867575289665554530431589028612411127536098594745731510646279678767454957952940027673911197097277133594037426386444447245277428083758618831520232846901
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							81287f7430ede45fe8e74f7f6472777babc2dd1c
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fontenuova.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c3489981c00000403004630440220539b73297691fce71f117fd0685982adbd259f33e83629e34882a29fddb9ba3e02203d84295de239bd91d4804634ad153d385e85961d95602bfd81b96c9e24f2a0e400750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c3489982c000004030046304402202b741b117b6e9de2942caa1f1dcee4c30ddeae8bf2ad2902b417f9cfe00a47bd02204a3b4421153916092fae6bdcb5e7251d1b34b241d28eebc015c54759878af2a3
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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