pigac.com
Issued by R3
About this certificate
This digital certificate with serial number 04:05:0a:fd:17:8c:2b:5d:1a:11:ac:90:07:69:a4:39:ea:70 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pigac.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:05:0a:fd:17:8c:2b:5d:1a:11:ac:90:07:69:a4:39:ea:70Serial Number (int): 350165161970309521418548053996400247695984
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 01:c6:b3:3e:12:b2:a4:ed:39:b6:60:63:b6:01:7f:da:e1:ff:fc:f3
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): c5:2d:e3:b2:a7:95:18:c5:3c:28:13:a1:3d:ef:7e:8b:15:93:e5:a0
Fingerprint (sha256): 13:24:a3:7f:00:82:50:bd:05:d9:8f:31:80:b2:60:1b:74:c5:73:24:6a:7d:e4:ac:05:c7:0f:27:13:37:55:f5
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate pigac.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pigac.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pigac.com
Other certificates including the domain name pigac.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for pigac.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4TCCBMmgAwIBAgISBAUK/ReMK10aEayQB2mkOepwMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDAzMDUxMjI4NTdaFw0yNDA2MDMxMjI4NTZaMBQxEjAQBgNVBAMT CXBpZ2FjLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAMEqchir hg2MvKgcqz3lEKX6NxndGC2Z9ZgjGyoTbuwHCfrzaMutw0bvqP+6AgWZH+ILMrXq w61pMBO118wdCUT7T2qDMbvx3LnWdyQUpbMrrZOv1NFWIIo+nSgg5Zua8xHfUNKB KVRMyjgl2zNHGfXsTjSsFy63pUFBaeOZmULFHADDku2pSXtGdfGgqQmVku9OJFST QW1T9gDLwFPggaPuxlVrVQ0fgtyE9F2scdQnNfFAGpEheMNKKPOMyQgdHe9h8FKc jKJpdP7hJH69XBXCz5BZ7c9Klh0g/C6I8xxlTum53KE6EkDpfyEdIL0SJ7RYONJb 9iMWwPqvicSLD2LAxttsyM/tVAsOSj4wndMwtV+bvoLx+C4Suum9KUTCb2MxvVYR IP1Jdml2tQq3tmZNjeHYW9v8Hsu9pAhiMOjW99GqPG/o8DdznUSBRhSjjP3cI+L/ nH+ltIbcHgPvXrJzN5InfgIOnjjb5U8GXk2fnKv3WVc6cL8RNRshM3p8O5PhaYx4 br9KlL/Sfa0k7bDW6eJQ2HMI4jeqKW2FQHSvc+OZrDSkZSkOqbYTt3xTvIsAU78e Nd8GhKt8qomd25pM5sa/Je8l5EFFo4KIlZLvlPMeVi5sHPba7Jr/oT1S1/ZEevM1 giu2PKSLjdiGURtSjMNZHg4lfKdRKHGCiYF/AgMBAAGjggINMIICCTAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFAHGsz4SsqTtObZgY7YBf9rh//zzMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMBQGA1UdEQQNMAuCCXBpZ2FjLmNvbTATBgNVHSAEDDAKMAgG BmeBDAECATCCAQYGCisGAQQB1nkCBAIEgfcEgfQA8gB3ADtTd3U+LbmAToswWwb+ QDtn2E/D9Me9AA0tcm/h+tQXAAABjg7NlSkAAAQDAEgwRgIhALApJpBAGO3RZLUZ lAXD5QUOaNB/xH/ZTWShio5LPXFuAiEAxYrx8eOFn2UnqwX7OC8pkKJOtKUtldAe J89uPjlyz5EAdwB2/4g/Crb7lVHCYcz1h7o0tKTNuyncaEIKn+ZnTFo6dAAAAY4O zZVVAAAEAwBIMEYCIQDsp0xpOHNg9guZSguBNyrDRB59u/uFRszB9BZLUYYmEwIh ANqM7GdeyUb0sQn0zjAG+xha4wqjOKpwnjuxmo165vb3MA0GCSqGSIb3DQEBCwUA A4IBAQAGMlSy5tMXYI4JiJh8qiYSNF8XEUzni/6f2dV20x5mwGoBUvOCLLCqh2T0 6daUd6ywHMhyN1eywnz8yAVzS7BRQXcZRPdhpJ85wwlFo+tXh7iU7Z1RSVgPWXFO f2qMkcH5Iv+OURZtCRY/nNLHDi6goTkIMA7O5MIjXkyMhLm4cNH6FrcFwRKLYzg6 le40Qu3uQDaP48+n7QGAarWK/HjOgHjZmxVp6hszUmsU0sIK+pCkeFZllvwuLfsA SFkz+cqcQWs0pW6v4497VUwJ1YHX9BkanF7P2fZuddfgw6vVTBHmp6vkr5riRWRl CqtsrxPO77qWQ/mkDMcsTY3NZsjs -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAwSpyGKuGDYy8qByrPeUQ pfo3Gd0YLZn1mCMbKhNu7AcJ+vNoy63DRu+o/7oCBZkf4gsyterDrWkwE7XXzB0J RPtPaoMxu/HcudZ3JBSlsyutk6/U0VYgij6dKCDlm5rzEd9Q0oEpVEzKOCXbM0cZ 9exONKwXLrelQUFp45mZQsUcAMOS7alJe0Z18aCpCZWS704kVJNBbVP2AMvAU+CB o+7GVWtVDR+C3IT0Xaxx1Cc18UAakSF4w0oo84zJCB0d72HwUpyMoml0/uEkfr1c FcLPkFntz0qWHSD8LojzHGVO6bncoToSQOl/IR0gvRIntFg40lv2IxbA+q+JxIsP YsDG22zIz+1UCw5KPjCd0zC1X5u+gvH4LhK66b0pRMJvYzG9VhEg/Ul2aXa1Cre2 Zk2N4dhb2/wey72kCGIw6Nb30ao8b+jwN3OdRIFGFKOM/dwj4v+cf6W0htweA+9e snM3kid+Ag6eONvlTwZeTZ+cq/dZVzpwvxE1GyEzenw7k+FpjHhuv0qUv9J9rSTt sNbp4lDYcwjiN6opbYVAdK9z45msNKRlKQ6pthO3fFO8iwBTvx413waEq3yqiZ3b mkzmxr8l7yXkQUWjgoiVku+U8x5WLmwc9trsmv+hPVLX9kR68zWCK7Y8pIuN2IZR G1KMw1keDiV8p1EocYKJgX8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 350165161970309521418548053996400247695984 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-03-05 12:28:57 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-06-03 12:28:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pigac.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 788047724280520590863659304502963794812704888552401454006297861963015338779255483425325439672206492627785211969320188796891572885762410732566533970090741413873489417488300974329016640907572931894783868439497855252444688709546277534452121048266087184768572791439934728858313756980058719645438302059796158859103582958192770771606853373195890596777709369645495776665995895177857956997235891867874142400114777778980549824228817859210592831159699541845994382456734661275485719551110621894568366122938130896299855795410216471228050598008874751517762878715322152739991460812536396456368171393782337384011553547117949794521373522838648724239447612189718040113763626138976607232182969097163075288980654318765295697846332936433392873980805563084561937987173135880223969048774708616190619703308980479888959393396657697447849090505454769215990240487678777925801575557040646673778803330373288293212763321320842179071457798609724822904033327466854184303197007304479773344407547834507327813627336531297273161855803975444589134423683024017140597913074208132516178701239828565036950888823688749210125584826894688950362348037942135353705244348870160717781408751448411759203812506100978206526396241811260961987020381515756145454112305467107963302412671 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 01c6b33e12b2a4ed39b66063b6017fdae1fffcf3 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pigac.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e0ecd95290000040300483046022100b02926904018edd164b5199405c3e5050e68d07fc47fd94d64a18a8e4b3d716e022100c58af1f1e3859f6527ab05fb382f2990a24eb4a52d95d01e27cf6e3e3972cf9100770076ff883f0ab6fb9551c261ccf587ba34b4a4cdbb29dc68420a9fe6674c5a3a740000018e0ecd95550000040300483046022100eca74c69387360f60b994a0b81372ac3441e7dbbfb8546ccc1f4164b51862613022100da8cec675ec946f4b109f4ce3006fb185ae30aa338aa709e3bb19a8d7ae6f6f7 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00063254b2e6d317608e0988987caa2612345f17114ce78bfe9fd9d576d31e66c06a0152f3822cb0aa8764f4e9d69477acb01cc8723757b2c27cfcc805734bb05141771944f761a49f39c30945a3eb5787b894ed9d5149580f59714e7f6a8c91c1f922ff8e51166d09163f9cd2c70e2ea0a13908300ecee4c2235e4c8c84b9b870d1fa16b705c1128b63383a95ee3442edee40368fe3cfa7ed01806ab58afc78ce8078d99b1569ea1b33526b14d2c20afa90a478566596fc2e2dfb00485933f9ca9c416b34a56eafe38f7b554c09d581d7f4191a9c5ecfd9f66e75d7e0c3abd54c11e6a7abe4af9ae24564650aab6caf13ceefba9643f9a40cc72c4d8dcd66c8ec