canalemonterano.com
Issued by R3
About this certificate
This digital certificate with serial number 03:89:b9:b1:40:05:d9:93:7e:8d:31:de:b6:e7:a8:f1:36:8e was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=canalemonterano.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:89:b9:b1:40:05:d9:93:7e:8d:31:de:b6:e7:a8:f1:36:8eSerial Number (int): 308202369577751171538459179247373248444046
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 3b:a3:fc:83:2a:18:f0:b8:c7:05:1c:54:b6:75:87:18:83:ed:69:9f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 72:c9:e8:6c:da:40:ef:d9:0a:62:18:91:f7:1c:40:0c:1f:7b:49:d7
Fingerprint (sha256): 16:3f:70:7d:62:3c:56:48:f9:21:2f:b8:a3:de:e6:e5:3b:40:b0:81:39:71:79:c0:55:11:ec:76:c7:05:2e:bc
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate canalemonterano.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for canalemonterano.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
canalemonterano.com
Other certificates including the domain name canalemonterano.com
(limited to 100 certificates)
www.englishsnacks.com
canalemonterano.com
icycannabis.com
www.duckingcharacter.com
redcarpetgroup.com
kevinkelleher.com
www.roccazzo.com
housestoo.com
curestaminali.com
www.canalemonterano.com
gyfco.com
premierleaguecup.com
stemcelltennessee.com
gigliola.org
www.louisianasfinest.com
www.bzue.com
www.jamiedouglas.com
canalemonterano.com
daddysho.com
domainsarcade.com
gamerpcshop.com
canalemonterano.com
icycannabis.com
www.duckingcharacter.com
redcarpetgroup.com
kevinkelleher.com
www.roccazzo.com
housestoo.com
curestaminali.com
www.canalemonterano.com
gyfco.com
premierleaguecup.com
stemcelltennessee.com
gigliola.org
www.louisianasfinest.com
www.bzue.com
www.jamiedouglas.com
canalemonterano.com
daddysho.com
domainsarcade.com
gamerpcshop.com
Certificate
The complete raw certificate details for canalemonterano.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF8zCCBNugAwIBAgISA4m5sUAF2ZN+jTHetueo8TaOMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA0MDIwMDI1NDdaFw0yNDA3MDEwMDI1NDZaMB4xHDAaBgNVBAMT E2NhbmFsZW1vbnRlcmFuby5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIK AoICAQDSQCeyL9nsVNux6yJ+7jSdQUbL+RN8wpfcg11j9CoOqxWf+CPQQy+SIZG9 YRgAO4yau/AgYWCZn5nk2jI2UM53uFm2MpxUoYOTRhOaagZjvTYcRzn9CQPPnJ/k Tbg+d02nDmETi7N9ao7kgUoUCzaaOz2A9a/hnKjCPddvHQ583r92WWKgBiAlqqkZ C4y16wdX5mccAMMzONp+J5iDDhqR2GLedvQnpwKVmynduiVzT2tMILw/Ftk1om8Y PSVer3FFNmKri8wOOPCRRTJoklZkJ0rOrrKM6BhIji3orpEc5g2/NrL0Kb5erM3q Q+0qXn+VGRfSDeGLAlOZGaKjIqdQ5+p/PvTKDDOPDNSUDl760UFk7pVYdbwuYo6f 832s/l0b1a/zx6WnmhDqcQCEuBi+doz+MOnfF2fFcSZE8kRi/n3EdYgpsp6hEuwX zuOudJGU00sYiLRA9B60SQW4a5KSWRRDubI96xSHLFVSryIbzEHRUnql2RcRj/FY dULKCqNMInDlstGlOnHeDR7PltEllGNd9C2a8fcSJ6bdhyXvl1aXBpvTNhAeBE2x 2E4kAQYdxKt+SIdBnnF+NN1QgkLQBklIsXNQiIBoWD4MdXu67yWpWM54tt0RF8zP I1Zb6b/4VUQ0LiLDaaRQ9tdWCDW/jgm4QZTVCWlfJqLFXuBfewIDAQABo4ICFTCC AhEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcD AjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQ7o/yDKhjwuMcFHFS2dYcYg+1pnzAf BgNVHSMEGDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcw IQYIKwYBBQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYW aHR0cDovL3IzLmkubGVuY3Iub3JnLzAeBgNVHREEFzAVghNjYW5hbGVtb250ZXJh bm8uY29tMBMGA1UdIAQMMAowCAYGZ4EMAQIBMIIBBAYKKwYBBAHWeQIEAgSB9QSB 8gDwAHcASLDja9qmRzQP5WoC+p0w6xxSActW3SyB2bu/qznYhHMAAAGOnGmQEAAA BAMASDBGAiEA1gA28WQQSFHygXqX9ldk4+TzLjifQGSniu0IhgyBWJkCIQCqZrwN hpBObkG28+eQit8+WmZE9jQ5jsK5dENlHGjJRgB1ADtTd3U+LbmAToswWwb+QDtn 2E/D9Me9AA0tcm/h+tQXAAABjpxpkB0AAAQDAEYwRAIgdoDCTc4j1wJbUh9lA8av 9AxpVP1ODV3EGcISm/+Yaa8CIGd/2bvcNPMHk5AYw+mp5vr77SG1EOdrUFw5GSn4 a4tKMA0GCSqGSIb3DQEBCwUAA4IBAQCK+DnxfGGthiT2guYNJBhZtnRpRPKlUdj4 nNWP6bF3LHWiotIfeN0dRaFWHzy6+LD9fBDgrC4o4wx6DBhGoUElkjRjcgKE09KE SC77rWHmHV+I87IRs9R5e23SXNS5uQ6cXdJBD8ub57an6QNoNlVN6U8qZR5gwBKA GcALRi9HXrrbIl8YemuE/9HnmrYj8S7TcYsUVnSjJcth/fUm9wwBfa45tJWW2FVd 5yj2n1TzkSf0OYrzwSbe+Ylju944zIJSb+GCu+jbYxPayezeLVrFzPrnTuK+MVND PPMBlT6NWrLDMMclq4GRZZn5OB6eEMvMwgyXAYVngxi8X2T3a3Yh -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0kAnsi/Z7FTbsesifu40 nUFGy/kTfMKX3INdY/QqDqsVn/gj0EMvkiGRvWEYADuMmrvwIGFgmZ+Z5NoyNlDO d7hZtjKcVKGDk0YTmmoGY702HEc5/QkDz5yf5E24PndNpw5hE4uzfWqO5IFKFAs2 mjs9gPWv4Zyowj3Xbx0OfN6/dllioAYgJaqpGQuMtesHV+ZnHADDMzjafieYgw4a kdhi3nb0J6cClZsp3bolc09rTCC8PxbZNaJvGD0lXq9xRTZiq4vMDjjwkUUyaJJW ZCdKzq6yjOgYSI4t6K6RHOYNvzay9Cm+XqzN6kPtKl5/lRkX0g3hiwJTmRmioyKn UOfqfz70ygwzjwzUlA5e+tFBZO6VWHW8LmKOn/N9rP5dG9Wv88elp5oQ6nEAhLgY vnaM/jDp3xdnxXEmRPJEYv59xHWIKbKeoRLsF87jrnSRlNNLGIi0QPQetEkFuGuS klkUQ7myPesUhyxVUq8iG8xB0VJ6pdkXEY/xWHVCygqjTCJw5bLRpTpx3g0ez5bR JZRjXfQtmvH3Eiem3Ycl75dWlwab0zYQHgRNsdhOJAEGHcSrfkiHQZ5xfjTdUIJC 0AZJSLFzUIiAaFg+DHV7uu8lqVjOeLbdERfMzyNWW+m/+FVENC4iw2mkUPbXVgg1 v44JuEGU1QlpXyaixV7gX3sCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 308202369577751171538459179247373248444046 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 00:25:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-01 00:25:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'canalemonterano.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 857747636396887984124650824760318202169622498485985310400445678714839719007899536769998304263150973756542978789447237363439108354930427982318880181837184913063466221419406038967977272127084961902539475234513248509780649120962579329335362289577009835146852062491407070650096891126759690152126019590535955251016000103193573856989957245483172343481037956574974976465542342167639658168958861587875528123408065305039902218212904642078930533844903229501766434158502843909791667875956292530449809487400684455528953363949520450018558574658435512720623545248129143038271454309792303798820373870816603520603129341884891923577461208039650866402808000135346977172609989074224671350332593162617536741018949933074822792352409560101903287495061100458642846578754459928392068339485731052549202233100383884340578332479602539036330933276905933836925316556803727873128027002305778733723949943639978740811472154208617072473286774884463748572877755288205772694136713061511892617643682831528229577264971784088584087228272880837874594873779250951638940755652291905844922421520500100746410693741801329246272225446691433270600160356776640746830238587727103329849108040929515670804601299208266943763892516127120228287334210632727729074980122588025975740587899 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3ba3fc832a18f0b8c7051c54b675871883ed699f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canalemonterano.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e9c6990100000040300483046022100d60036f164104851f2817a97f65764e3e4f32e389f4064a78aed08860c815899022100aa66bc0d86904e6e41b6f3e7908adf3e5a6644f634398ec2b97443651c68c9460075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e9c69901d000004030046304402207680c24dce23d7025b521f6503c6aff40c6954fd4e0d5dc419c2129bff9869af0220677fd9bbdc34f307939018c3e9a9e6fafbed21b510e76b505c391929f86b8b4a . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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