bernalda.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:e6:a4:4a:41:21:28:73:03:ec:67:52:3d:0b:8f:67:e3:de was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bernalda.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:e6:a4:4a:41:21:28:73:03:ec:67:52:3d:0b:8f:67:e3:deSerial Number (int): 339820181129356516362567980144039626793950
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 2c:85:01:fe:c7:1b:4d:92:07:dd:6f:fc:c2:62:97:95:92:b1:68:22
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): d4:c8:bb:5a:be:55:7a:71:69:84:5f:ed:b9:a9:48:01:38:bd:00:4f
Fingerprint (sha256): 15:1d:fb:21:88:37:a2:bf:67:9b:7b:9a:fe:14:fc:1a:46:b4:44:d8:bf:ef:d3:11:61:1a:13:b1:12:df:bf:91
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate bernalda.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bernalda.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bernalda.org
Other certificates including the domain name bernalda.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for bernalda.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTjCCBTagAwIBAgISA+akSkEhKHMD7GdSPQuPZ+PeMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjkwOTAyMTFaFw0x OTEyMjgwOTAyMTFaMBcxFTATBgNVBAMTDGJlcm5hbGRhLm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBANf0PkqoTd8nfhNtsmKv51kxR6rHNJh3B2uk kKkRQOR7vB9pKPqnZQkIqbS+NyDxZZ+VMihXCJvpmS0L45wpeo7KSqKSJQNj/aB8 VHAp4hvxSzSR+mZ2JYj3CgNMm7+IqrD/JnStI2lRZD4+Da1NaJq9IREanVPzuKLI WozXQGG/ZY1OHq7Fu1at8EzTI5usoP4IoOTciJ8umkJmtq0Z7kk397Bq5hmllMcf 8kENH8/aXjvM9j689gb1pc1ZfiRQg79czLGeE+h2C1R0VkWLnWAbrNiaWPo3KICA patwv2xeWvqckobn5gVFcAnTKZzoeWuiF8HvDtxvC7jFl8Yp7RlgDdtlBqXwa8o2 No87vGwe71qBthBmFLcUs/glzFWnxd1QWXEKnemvXly+wnJ41KhXXI2tAdp5Cwtw kwZP4Sne4GlAMTyUvpsAGXEnYdxSgWhdE70Fs7gKu3Y6i1/RiR06WAHU3BJj9ij0 htLISm/75IM3yR8FU2GiL6lELbkblKp2AlYnyTloaUGGAzI2qfX1jFV61/h9UaJO GMQ3efWFcfjR/GZuQy7AQI0NE7ulSw15VQHOUVPC/uirYBJyN7QBTuW5irYwPG8n Wlb9Dd24ADKuqiLLsP71SiKaQHR5XOiFMxObhZcazs729xS8gXOsLih0hnLmz0lg IHRMiZBTAgMBAAGjggJfMIICWzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFCyFAf7H G02SB91v/MJil5WSsWgiMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMYmVybmFsZGEub3JnMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIEAgSB8wSB8ADu AHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFtfHhx7AAABAMA RjBEAiAhXqqBwZ5uUrruh7CSHC0Smin7dhlQGga2Ij4LU7uAYwIgHM/TDwEGdhia KeDFFsfYCHq0ht5lDw4iGRSS/U5nu0EAdQApPFGWVMg5ZbqqUPxYB9S3b79Yeily 3KTDDPTlRUf0eAAAAW18eHQLAAAEAwBGMEQCIE0SHkehOiiCP1TMS8mYpR8U/AZl IbqhK8oXHEgbt4/3AiBs3PPaxiG7loVnSv0nqbTHYNgRHmRpnRRTG1QDxm3sbzAN BgkqhkiG9w0BAQsFAAOCAQEAWTM8GwGbwjiMW3lrtR0L7wkoffNhY912TKdJuHiI YXc2sTN2CVakYIGVhMSPX6x/w5h5Gq7NpdDmbqzvBvzIIqU+5tbez4jT67WgtmnN NvUWfrIEoEERSWbnQn2uaFTyCnOUe3NORY/gIzq9x0PnH0RzvrVwitAnhF/HYnw1 jVjczXFlGJLZoxHbyFnVOBh37DWRvsBE8AKKBy6o16InhI36KrfxC1PXTGnb5VK5 Df/82zUHVJD/3uJuXqQSvc9yyjwGMAWfRcaHAfwQFy6txJaluCbYBV+DKHjKhJ74 +WKvmqxnen2MA70BHFTqJ0KZwfgBkwrZDNKPKSvtx/I76w== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1/Q+SqhN3yd+E22yYq/n WTFHqsc0mHcHa6SQqRFA5Hu8H2ko+qdlCQiptL43IPFln5UyKFcIm+mZLQvjnCl6 jspKopIlA2P9oHxUcCniG/FLNJH6ZnYliPcKA0ybv4iqsP8mdK0jaVFkPj4NrU1o mr0hERqdU/O4oshajNdAYb9ljU4ersW7Vq3wTNMjm6yg/gig5NyIny6aQma2rRnu STf3sGrmGaWUxx/yQQ0fz9peO8z2Prz2BvWlzVl+JFCDv1zMsZ4T6HYLVHRWRYud YBus2JpY+jcogIClq3C/bF5a+pyShufmBUVwCdMpnOh5a6IXwe8O3G8LuMWXxint GWAN22UGpfBryjY2jzu8bB7vWoG2EGYUtxSz+CXMVafF3VBZcQqd6a9eXL7CcnjU qFdcja0B2nkLC3CTBk/hKd7gaUAxPJS+mwAZcSdh3FKBaF0TvQWzuAq7djqLX9GJ HTpYAdTcEmP2KPSG0shKb/vkgzfJHwVTYaIvqUQtuRuUqnYCVifJOWhpQYYDMjap 9fWMVXrX+H1Rok4YxDd59YVx+NH8Zm5DLsBAjQ0Tu6VLDXlVAc5RU8L+6KtgEnI3 tAFO5bmKtjA8bydaVv0N3bgAMq6qIsuw/vVKIppAdHlc6IUzE5uFlxrOzvb3FLyB c6wuKHSGcubPSWAgdEyJkFMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 339820181129356516362567980144039626793950 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-29 09:02:11 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-28 09:02:11 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bernalda.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 881015763057343468016318666736747050484277364862514250918656314359149374338469660079207468696511372692811161808307093140435196671125709058743947437600007004851738629002403725885194738398914221146553152238114020826456866751071210783776760845781878145251555393737069651029399901913435930348888844197184146804346750104114968120486726562211973332984999466156543394783886913999864352608575968720104676379638864103220901109310663640085262035418493741853122456990851330500808659357212713158554712875760134264533241084482089719924199350342693159193188469111665653806332767353395341878011386706811042060364538358096241955285528276130691040753108101625066484064066786265949715908682368042857193988106691586751518905883307627210460748565151404683817697484634242101635098879379014705634266318508826311142945005141555101001624345995207327400551958695828941291479657424224485706856443606609481653468119422062622057972611393143927884569318076910721461840871316283507954452252010681302636145646306733294388750746618089946815055661098905819425152110133406128944436852181262089511289744371364865684153307104017582750862135944250300621024793148142741301402769750853217112533637915787208955663874605758837122275342681019759986379488702768022522419581011 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2c8501fec71b4d9207dd6ffcc262979592b16822 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bernalda.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d7c7871ec00000403004630440220215eaa81c19e6e52baee87b0921c2d129a29fb7619501a06b6223e0b53bb806302201ccfd30f010676189a29e0c516c7d8087ab486de650f0e22191492fd4e67bb41007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d7c78740b000004030046304402204d121e47a13a28823f54cc4bc998a51f14fc066521baa12bca171c481bb78ff702206cdcf3dac621bb9685674afd27a9b4c760d8111e64699d14531b5403c66dec6f . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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