locorotondo.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:bf:78:cf:75:3d:00:4e:f5:94:78:f1:00:7f:55:f4:91:65 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=locorotondo.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:bf:78:cf:75:3d:00:4e:f5:94:78:f1:00:7f:55:f4:91:65Serial Number (int): 326491374419998830071991926496422645764453
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f6:bf:b1:10:a0:02:2a:b6:72:90:35:9f:c4:f4:8d:0f:c3:07:3f:b9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e8:c3:b7:de:7d:c7:36:03:a1:87:f0:a0:78:6e:dd:81:a6:7d:ef:85
Fingerprint (sha256): 14:9c:82:95:83:86:3c:27:c6:4b:52:37:b6:ef:36:3f:0c:43:2c:83:43:cd:41:62:69:12:2e:41:e6:e2:8b:61
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate locorotondo.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for locorotondo.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
locorotondo.org
Other certificates including the domain name locorotondo.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for locorotondo.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVzCCBT+gAwIBAgISA794z3U9AE71lHjxAH9V9JFlMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMjkxNDQ0NTZaFw0y MDAyMjcxNDQ0NTZaMBoxGDAWBgNVBAMTD2xvY29yb3RvbmRvLm9yZzCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAL4Hwlimti9Bz///0P9Ri1+jzt7F9Kou UezeW/wtSZwcIvUvJVEtoc2YOxxQLc3mOONARE7OBiQgLOQJIaAzTMNGQMLgl5te nQsrxx5UwBnJzo2q/B4+HaAZdLxMTPujvSRyZu0iTFAMCfG2nmSF3QPTqinZdpJ7 HMCDYSe2XJWR1u4AN86Xg93FNeDJFq50ERu1HZ1cq7UlLiEU8mGx04Lm2+usH4WI /P3S+3YRIQOgo075BmlRiHqSm5w57MjLcFoie7xxXBwEgNDnFUIAQ4hZ6dDBOZ5R WPXLm70+4xtrEBj7YlDbd8nvHqpKvJa/WZUTTvefcMFJrY2e0OhhHRRXUF2bnBU9 i5H/AKn2hBNW3SIZ/UA8Qma9akGtidPH9zcmuOe9CYT/zVopK3HQramDCZB8foEj 3rWNPqGW6xFJfrV1E4K0K8989KSqYTagdUqu+oA+vXEr1PVP72jOvEtVSVIKJLtt lkCdLC6ctgugrQNJB5JKF713DfByPeZXVDB5a2+YOSrQTMIWgrqNC+nnoFwMH4XS TLoJjLJTEmppNCqvfiGuIZzhmyIYXr1cw0y4e5AAtoEA+mecS63kmjs+NY1Owd+7 u0grD8sPN942j+XPZeYIoO6KCxA4LAH4FoDMFWAOnKK2L+SvYMD9zIHZaZPSOz1r QpUJ/s3ss8RrAgMBAAGjggJlMIICYTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFPa/ sRCgAiq2cpA1n8T0jQ/DBz+5MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPbG9jb3JvdG9uZG8ub3Jn MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHWeQIEAgSB 9gSB8wDxAHYA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFut9Ys awAABAMARzBFAiBZRLY6wE8gEG2JBO84LXesooCugmh4LmyfJAbwBiYLUgIhAIMG AgoRLJuTsFDSnLlfOhtjhISdgahXg6lhHR/4gD1NAHcAsh4FzIuizYogTodm+Su5 iiUgZ2va+nDnsklTLe+LkF4AAAFut9YsZwAABAMASDBGAiEAgnKb3UeintVJ4yNU l+3OjsrOzzyBxDkBTsWzABBtvD8CIQDIDEldJwIeBUV1Uc7EF9oxhpZLg+KN9SYD omMae4SEZjANBgkqhkiG9w0BAQsFAAOCAQEAdtuLQMIEII3HZa9wmtMB9TKRwMpr AQAZJ5STgOgBbnfR373qiQ13w7Ddnml/JwYPBaoJtG67rAIJtYColmGXOmOCzVRo I5DCWGfYBCYRYujggdfdgrc5FMSke226xpAxff0k3IsbjZ+CcYll0SPpUP4nRR2h IOByknTrJqpjqQ1hyZV7OM4XwRl17GeKMGqQW8cqPNTWFdfnk1mOg061iNip8i6+ gxtXye6MQC7zQVTpPpOHrWCirUsJsA6bQZagEGKplTqcMnnbHoFzudQDbth75rPc Cef2OB6oqW101BwEghXAcrkCamMY4kg1yucK6tNVV2KTpWTxGBo+0ZgC2w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvgfCWKa2L0HP///Q/1GL X6PO3sX0qi5R7N5b/C1JnBwi9S8lUS2hzZg7HFAtzeY440BETs4GJCAs5AkhoDNM w0ZAwuCXm16dCyvHHlTAGcnOjar8Hj4doBl0vExM+6O9JHJm7SJMUAwJ8baeZIXd A9OqKdl2knscwINhJ7ZclZHW7gA3zpeD3cU14MkWrnQRG7UdnVyrtSUuIRTyYbHT gubb66wfhYj8/dL7dhEhA6CjTvkGaVGIepKbnDnsyMtwWiJ7vHFcHASA0OcVQgBD iFnp0ME5nlFY9cubvT7jG2sQGPtiUNt3ye8eqkq8lr9ZlRNO959wwUmtjZ7Q6GEd FFdQXZucFT2Lkf8AqfaEE1bdIhn9QDxCZr1qQa2J08f3Nya4570JhP/NWikrcdCt qYMJkHx+gSPetY0+oZbrEUl+tXUTgrQrz3z0pKphNqB1Sq76gD69cSvU9U/vaM68 S1VJUgoku22WQJ0sLpy2C6CtA0kHkkoXvXcN8HI95ldUMHlrb5g5KtBMwhaCuo0L 6eegXAwfhdJMugmMslMSamk0Kq9+Ia4hnOGbIhhevVzDTLh7kAC2gQD6Z5xLreSa Oz41jU7B37u7SCsPyw833jaP5c9l5gig7ooLEDgsAfgWgMwVYA6corYv5K9gwP3M gdlpk9I7PWtClQn+zeyzxGsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 326491374419998830071991926496422645764453 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-29 14:44:56 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-27 14:44:56 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'locorotondo.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 775256023831334631751848514012501591903675562367291922104498922010528031225189981061825276294377781785231044381550380384021360702623758085089649165801767920398013877251413264764970180327016137655376388177184800470305550162041585652549986547866825162858171994816337127317679543195127073463760975213607999587608683076515043255279277849902485711675171298079825455837247954657056313823845798490718463676936987235169348425767489717689784076276951970612676206710835428972740317444720329456695909498187061411181487600093853604963516057864824870638074041847788036674034152992401153101155780703478285493620386711155794541668227040649494607871847499824883886684571681898309346028490178849369840102526222033055768208117436725141379251962158749060476817898095709097355558427682927692368284916483887246468332992021987144877508041357954535741165723813767985877321433069730519635380855218782911050057365312832869199968625739637688807366775053681306809808878950468942033283097340416318683858763025169430978886698258415690833581462973559024331246810547124629736331668078534929696595083492774753961042203404201361296590539746800837682130745466124070797820270209623653117261617028406387772763583870779800845344634860424068954861208719687220871564608619 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f6bfb110a0022ab67290359fc4f48d0fc3073fb9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'locorotondo.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016eb7d62c6b000004030047304502205944b63ac04f20106d8904ef382d77aca280ae8268782e6c9f2406f006260b520221008306020a112c9b93b050d29cb95f3a1b6384849d81a85783a9611d1ff8803d4d007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016eb7d62c67000004030048304602210082729bdd47a29ed549e3235497edce8ecacecf3c81c439014ec5b300106dbc3f022100c80c495d27021e05457551cec417da3186964b83e28df52603a2631a7b848466 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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