canalemonterano.com

Issued by R3

About this certificate

This digital certificate with serial number 03:89:b9:b1:40:05:d9:93:7e:8d:31:de:b6:e7:a8:f1:36:8e was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=canalemonterano.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:89:b9:b1:40:05:d9:93:7e:8d:31:de:b6:e7:a8:f1:36:8e
Serial Number (int): 308202369577751171538459179247373248444046
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 3b:a3:fc:83:2a:18:f0:b8:c7:05:1c:54:b6:75:87:18:83:ed:69:9f
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): 72:c9:e8:6c:da:40:ef:d9:0a:62:18:91:f7:1c:40:0c:1f:7b:49:d7
Fingerprint (sha256): 16:3f:70:7d:62:3c:56:48:f9:21:2f:b8:a3:de:e6:e5:3b:40:b0:81:39:71:79:c0:55:11:ec:76:c7:05:2e:bc

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate canalemonterano.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for canalemonterano.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

canalemonterano.com

Other certificates including the domain name canalemonterano.com

(limited to 100 certificates)
www.englishsnacks.com
canalemonterano.com
icycannabis.com
www.duckingcharacter.com
redcarpetgroup.com
kevinkelleher.com
www.roccazzo.com
housestoo.com
curestaminali.com
www.canalemonterano.com
gyfco.com
premierleaguecup.com
stemcelltennessee.com
gigliola.org
www.louisianasfinest.com
www.bzue.com
www.jamiedouglas.com
canalemonterano.com
daddysho.com
domainsarcade.com
gamerpcshop.com

Certificate

The complete raw certificate details for canalemonterano.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0kAnsi/Z7FTbsesifu40
nUFGy/kTfMKX3INdY/QqDqsVn/gj0EMvkiGRvWEYADuMmrvwIGFgmZ+Z5NoyNlDO
d7hZtjKcVKGDk0YTmmoGY702HEc5/QkDz5yf5E24PndNpw5hE4uzfWqO5IFKFAs2
mjs9gPWv4Zyowj3Xbx0OfN6/dllioAYgJaqpGQuMtesHV+ZnHADDMzjafieYgw4a
kdhi3nb0J6cClZsp3bolc09rTCC8PxbZNaJvGD0lXq9xRTZiq4vMDjjwkUUyaJJW
ZCdKzq6yjOgYSI4t6K6RHOYNvzay9Cm+XqzN6kPtKl5/lRkX0g3hiwJTmRmioyKn
UOfqfz70ygwzjwzUlA5e+tFBZO6VWHW8LmKOn/N9rP5dG9Wv88elp5oQ6nEAhLgY
vnaM/jDp3xdnxXEmRPJEYv59xHWIKbKeoRLsF87jrnSRlNNLGIi0QPQetEkFuGuS
klkUQ7myPesUhyxVUq8iG8xB0VJ6pdkXEY/xWHVCygqjTCJw5bLRpTpx3g0ez5bR
JZRjXfQtmvH3Eiem3Ycl75dWlwab0zYQHgRNsdhOJAEGHcSrfkiHQZ5xfjTdUIJC
0AZJSLFzUIiAaFg+DHV7uu8lqVjOeLbdERfMzyNWW+m/+FVENC4iw2mkUPbXVgg1
v44JuEGU1QlpXyaixV7gX3sCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 308202369577751171538459179247373248444046
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-04-02 00:25:47 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-07-01 00:25:46 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'canalemonterano.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 857747636396887984124650824760318202169622498485985310400445678714839719007899536769998304263150973756542978789447237363439108354930427982318880181837184913063466221419406038967977272127084961902539475234513248509780649120962579329335362289577009835146852062491407070650096891126759690152126019590535955251016000103193573856989957245483172343481037956574974976465542342167639658168958861587875528123408065305039902218212904642078930533844903229501766434158502843909791667875956292530449809487400684455528953363949520450018558574658435512720623545248129143038271454309792303798820373870816603520603129341884891923577461208039650866402808000135346977172609989074224671350332593162617536741018949933074822792352409560101903287495061100458642846578754459928392068339485731052549202233100383884340578332479602539036330933276905933836925316556803727873128027002305778733723949943639978740811472154208617072473286774884463748572877755288205772694136713061511892617643682831528229577264971784088584087228272880837874594873779250951638940755652291905844922421520500100746410693741801329246272225446691433270600160356776640746830238587727103329849108040929515670804601299208266943763892516127120228287334210632727729074980122588025975740587899
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							3ba3fc832a18f0b8c7051c54b675871883ed699f
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (23 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'canalemonterano.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f000770048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018e9c6990100000040300483046022100d60036f164104851f2817a97f65764e3e4f32e389f4064a78aed08860c815899022100aa66bc0d86904e6e41b6f3e7908adf3e5a6644f634398ec2b97443651c68c9460075003b5377753e2db9804e8b305b06fe403b67d84fc3f4c7bd000d2d726fe1fad4170000018e9c69901d000004030046304402207680c24dce23d7025b521f6503c6aff40c6954fd4e0d5dc419c2129bff9869af0220677fd9bbdc34f307939018c3e9a9e6fafbed21b510e76b505c391929f86b8b4a
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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