demenziali.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:4d:1b:bc:ff:95:a7:16:f2:fe:8a:5a:e0:50:64:47:fe:7e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=demenziali.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:4d:1b:bc:ff:95:a7:16:f2:fe:8a:5a:e0:50:64:47:fe:7eSerial Number (int): 287575470539759755789031781736625000152702
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b0:ac:61:96:cd:ef:ef:b6:2e:71:1c:df:8a:da:e7:60:84:19:1e:8a
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 19:9d:f0:e5:67:ff:df:53:02:bb:a4:06:71:af:da:20:76:e1:ae:7d
Fingerprint (sha256): 12:05:a6:2c:19:03:aa:23:74:e1:1f:fe:63:40:cd:0b:c8:64:55:1c:62:37:4d:44:cf:42:3d:52:21:c9:c1:85
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate demenziali.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for demenziali.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
demenziali.com
Other certificates including the domain name demenziali.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for demenziali.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgISA00bvP+Vpxby/opa4FBkR/5+MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjQwNDEyMDZaFw0x OTA2MjIwNDEyMDZaMBkxFzAVBgNVBAMTDmRlbWVuemlhbGkuY29tMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1tEtETM3PiXCyK4rxbD55/Ny01wXBHeH /AgbpsaNf+JuVzxkN2zm1NSGFYtsekKHlylLEAOnETkGeubSEJSDnwIxxw18J+Nv 6fCebZ8J1uDv6U7bCmqKQW0jXvJvIgj61hlyC3gGNelRsBgIRL0zDbaLFLbzaZJY 7QiyturSSNhBvoTNPcuYCI0RQCY5ZboUIVkcfDCWA6TOhHK9KIZrybuCZBUH3hdK oj0E1uk0+FDi/nEj+lwfyaL/RPRo1f6RaHCZAlkAbxJzzs1xHLm1uqupnhNmBvMa DFiQiWNFlzW/0QrTkj8GLHbrTg7tVOLi+8DjZ3oDGJbB863Q4qyOR8mZSo1IU005 l1CmQHH46YQw+nylUvG1d44PEENf439B9bNbnEVIi57ba9rPQgiggSF0VXpJTZpq oirFTGIcj3owb/7qV4asZ8TGR8qNb6pl0UwsMw3INcnbmHzSfHtmBrZh643/jIu6 jJ4yxG/uZigavuKRnMg6NkOeHvq5bWx0qf8hRMJvSaKj/d63gjc/eRgW0rOrOSk7 0Y6vzr0yzsUbo9XHeJxoQYT8z2e4SkMJGRTCLj4XNO+qOiD1Xei1poaJ//GBcLMD 2+dkZiDqoAAPetuUaCopVcBnC0hOp6cWrpW/ilopc1+SXqkGWuIVn4TvnQPzq+f/ /KQewyRgt8ECAwEAAaOCAmIwggJeMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUsKxh ls3v77YucRzfitrnYIQZHoowHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg5kZW1lbnppYWxpLmNvbTBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQE gfEA7wB1AOJpS64m6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d8dv+AAABaa4c82oA AAQDAEYwRAIgePduI0oW4Tj0J3qZZiwh9OwP6zmcoziyAOhqt/BzQ6gCIHLg1s9T ysBk9cQRn2sOkFVli9MPTqYPAmVKrA1qoeXbAHYAKTxRllTIOWW6qlD8WAfUt2+/ WHopctykwwz05UVH9HgAAAFprhzzyQAABAMARzBFAiADzdQhjjAwKw/aSqShwwK8 eW+U6vwD5upnt0vqNGNNaAIhAKuIpXLOsZ/00bGJeiL21/qQuvOLdTZYdrJcr3vN aB4yMA0GCSqGSIb3DQEBCwUAA4IBAQCJezP7GVJSV1Hn7KFwMg030bH0H5xPhhiK gElRojCBmx6V5ePMh5bkScmmN3kZrJfVbNJ4ACOevMP6u6D1TAEDPnur+DJXJxFg Kq05Y1pAgvLLA5/MN438kVEkvHn18d8j+tQpwod3987UG6kgh8smgbUStD37Q6E8 gtqO2gGmmmQFKhd7WU859ErB/DUrX2EOfRWY8cYYBnmajZWp9eZMWERs03JJh3mU tnAzQ8zuZ5O9A5euITHel9qCE+XUeSEJIEvZyaKH//NfYQ5H8o87QKG03dXCp3Tz XJMg+7v+rTR0fnxZxt00ltNHy6btsMly7ucMYp3yMwdD9FQRq9hh -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1tEtETM3PiXCyK4rxbD5 5/Ny01wXBHeH/AgbpsaNf+JuVzxkN2zm1NSGFYtsekKHlylLEAOnETkGeubSEJSD nwIxxw18J+Nv6fCebZ8J1uDv6U7bCmqKQW0jXvJvIgj61hlyC3gGNelRsBgIRL0z DbaLFLbzaZJY7QiyturSSNhBvoTNPcuYCI0RQCY5ZboUIVkcfDCWA6TOhHK9KIZr ybuCZBUH3hdKoj0E1uk0+FDi/nEj+lwfyaL/RPRo1f6RaHCZAlkAbxJzzs1xHLm1 uqupnhNmBvMaDFiQiWNFlzW/0QrTkj8GLHbrTg7tVOLi+8DjZ3oDGJbB863Q4qyO R8mZSo1IU005l1CmQHH46YQw+nylUvG1d44PEENf439B9bNbnEVIi57ba9rPQgig gSF0VXpJTZpqoirFTGIcj3owb/7qV4asZ8TGR8qNb6pl0UwsMw3INcnbmHzSfHtm BrZh643/jIu6jJ4yxG/uZigavuKRnMg6NkOeHvq5bWx0qf8hRMJvSaKj/d63gjc/ eRgW0rOrOSk70Y6vzr0yzsUbo9XHeJxoQYT8z2e4SkMJGRTCLj4XNO+qOiD1Xei1 poaJ//GBcLMD2+dkZiDqoAAPetuUaCopVcBnC0hOp6cWrpW/ilopc1+SXqkGWuIV n4TvnQPzq+f//KQewyRgt8ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 287575470539759755789031781736625000152702 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-24 04:12:06 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-22 04:12:06 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demenziali.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 876377282922952660948498709061846547703462045166459489064597509257355326671771560599436197820806927258890775913910279280872891082040092433246028406563626793566714105713325201420503513783473705532110605532261855864790198252572422802244880249801742421043422360514373262692950405172112934700384984052661801891529893387496930131503408449170714334131706796463519675154219072803730718147128361127451538067471772932097799094606332296219424616249296073646021187445651119501788596680555816686630214340402188088035302036816229621296920497035874652627786316337645586216683778288617707702812763558598331559834990711472733985776762457801891410603757315358046105644220967855526009219469922396555920797153744388623504776763099732065071464843454182194212670024531604506060674294202919102581035293658817552787328948278312601943027984961058989272412448670661480707841253599316692975721967094757566521754747337105930849766895138533305040941049087315268648882014281272776709059461965658670944663936887583374688388200452391924385465100885562102422539893235543565389949554356086844827615663908116090814273709608302456306942321037462480858089422656510759753874228869658442417698718824637336755484335538702409795700314895316041314185076475698947942367934401 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b0ac6196cdefefb62e711cdf8adae76084191e8a . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demenziali.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe00000169ae1cf36a0000040300463044022078f76e234a16e138f4277a99662c21f4ec0feb399ca338b200e86ab7f07343a8022072e0d6cf53cac064f5c4119f6b0e9055658bd30f4ea60f02654aac0d6aa1e5db007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f47800000169ae1cf3c90000040300473045022003cdd4218e30302b0fda4aa4a1c302bc796f94eafc03e6ea67b74bea34634d68022100ab88a572ceb19ff4d1b1897a22f6d7fa90baf38b75365876b25caf7bcd681e32 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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