www.demenziali.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:36:c7:e1:21:53:17:1c:cf:8f:be:5a:ba:fd:09:c6:00:4f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.demenziali.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:36:c7:e1:21:53:17:1c:cf:8f:be:5a:ba:fd:09:c6:00:4fSerial Number (int): 279977790922868392956337571270072423809103
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: af:3b:8d:3b:68:09:3c:2e:94:78:d3:d9:89:cb:da:01:22:de:d2:8b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 36:00:26:76:e6:be:19:92:b4:5d:0f:dd:3d:51:4c:0d:53:6d:24:cc
Fingerprint (sha256): 18:ac:76:51:fc:35:43:5b:8e:75:66:a9:fe:44:6d:30:72:5c:2a:54:4e:e9:f8:3c:b6:76:8c:47:df:aa:7a:22
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.demenziali.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.demenziali.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.demenziali.com
Other certificates including the domain name demenziali.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.demenziali.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXTCCBUWgAwIBAgISAzbH4SFTFxzPj75auv0JxgBPMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjIyMDQwMTJaFw0x OTA2MjAyMDQwMTJaMB0xGzAZBgNVBAMTEnd3dy5kZW1lbnppYWxpLmNvbTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKB9BuyWCsrqNk5vWmavJV/xALci A4kwQVpf5e2lxVccXFmawKsCgZ/GgtFI9ai6/+2glEEzIYuB/sJ8J3UJ90cpTmd4 kUNi4+Z53y+cKPpGQDkhha74xvseqHOPnK2By8K4jpZATibUFKFJldjQZQu4xVMr Adzlm5HnCCovgUXvsHSFfywZJnZXr9aXRKp3ObPY0LQYuoDI4MZVA3p67mh2iihj YiOnt8W+ulMxJ10VHj8H/vpuAGkKXkiNm5rmlrNs4kUJOVwamPwxWBocnYsuJ6KU 1TObn0uwoIjOZId2qIIb6M7yX88onM/ND0lJPo3mzTVdO/XNXg0Ewc8GmsAO3DPO GlkaM+NlA43969gxcaly2KkI6SpzRGorugHWTcHVVIpu6Jkx5KO/itLVo8l4OEhE 1lPYMERxZuBdUKbd2zwrul2mB0GtMb1XgjD74NnQ4b/4XJh2dZvYAwe0I3FHsgf5 I5hU9pJdr9NQAAPdR9szPLAxZbgmCZwDRyOgNMtCKSlE9N+tjxSYFgDpL7pmpSTD 7rJhhfVO49T7EJglz/IkXnfm4e6BeTFnSUV//3VJLpv8Wik6VxdisxlUv70ibho5 OqFT1N89PEPdM5/VemMkJitZqYDXsXGeoN47Ocstzfz5RyzJ74lSPSLLGEDBVt2R TsKKnLEYciugFMMNAgMBAAGjggJoMIICZDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FK87jTtoCTwulHjT2YnL2gEi3tKLMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISd3d3LmRlbWVuemlh bGkuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHW eQIEAgSB9gSB8wDxAHcAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYA AAFpp1jdHQAABAMASDBGAiEA/w7zSelD+F3MSyPfyYDknxAoyVoE+zfi1ZNEp89S IL8CIQCYbDUkuZgWV3ewctnND6dExGa9aCR8p4wZMJLVnJ6NoQB2AGPy283oO8ws zwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABaadY3TIAAAQDAEcwRQIgHMQJ2nfK vPw4JWjYzPaQtVde1T6nXu1K/cKQxOn0j38CIQCRsmU0YqgVIphXATzUhYTNw/Bl SWGWRMzNnEoJU0R1lDANBgkqhkiG9w0BAQsFAAOCAQEAaJQdPzrdmdphCRbkCiBa mRumciHRDocfEu6gIjQdOsK4xjcCY7DWNtX2PPbLb9tUY+p/c13BhEBmIiImgcTx wCgkiqcs3JnphgyYfWnz0qX5a3NXlkPHOXjiUhHosuK+WeohrxVgcA5EYL6sDQTL VauptteJW46piWVhwV8eyr9J+JFbl8WbBge4SwVFmcwaZJ8UKtrrr+yjIqjnYebP uputCCMhfAyDVNJ3EWGMSee0CzeAHKz8OeESG/Nfhk9TsAuqrmB1tLp9D45iDj7P zBFy7wo1MonIPLqXtB1cV/xqiWLv/R0oHcuNdzfqqFMxiKTSxH5Ciimxhx6kOo0T eA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoH0G7JYKyuo2Tm9aZq8l X/EAtyIDiTBBWl/l7aXFVxxcWZrAqwKBn8aC0Uj1qLr/7aCUQTMhi4H+wnwndQn3 RylOZ3iRQ2Lj5nnfL5wo+kZAOSGFrvjG+x6oc4+crYHLwriOlkBOJtQUoUmV2NBl C7jFUysB3OWbkecIKi+BRe+wdIV/LBkmdlev1pdEqnc5s9jQtBi6gMjgxlUDenru aHaKKGNiI6e3xb66UzEnXRUePwf++m4AaQpeSI2bmuaWs2ziRQk5XBqY/DFYGhyd iy4nopTVM5ufS7CgiM5kh3aoghvozvJfzyicz80PSUk+jebNNV079c1eDQTBzwaa wA7cM84aWRoz42UDjf3r2DFxqXLYqQjpKnNEaiu6AdZNwdVUim7omTHko7+K0tWj yXg4SETWU9gwRHFm4F1Qpt3bPCu6XaYHQa0xvVeCMPvg2dDhv/hcmHZ1m9gDB7Qj cUeyB/kjmFT2kl2v01AAA91H2zM8sDFluCYJnANHI6A0y0IpKUT0362PFJgWAOkv umalJMPusmGF9U7j1PsQmCXP8iRed+bh7oF5MWdJRX//dUkum/xaKTpXF2KzGVS/ vSJuGjk6oVPU3z08Q90zn9V6YyQmK1mpgNexcZ6g3js5yy3N/PlHLMnviVI9IssY QMFW3ZFOwoqcsRhyK6AUww0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 279977790922868392956337571270072423809103 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-22 20:40:12 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-20 20:40:12 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.demenziali.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 654735495620511515902542265165388609878511058931778848269926749399687957533870854779643490470587185100150579675700551541674429135160254056152041689805063955696027697888885243984332222989178740230552288951520136120980461562302307632440513665271495426652807036703138009805422377520685410410336456151014389642920930074803445493661702455010705750989089830340381322600045708267543097043676069983198610638611087058704328216903383781355781024004127659387342499938770734292133939665152475324722487090671239681260233656678274260711654403962417497184425897985714552254804252317314888184168567016407857638908239605302051127236636870612085299943244527570554282555062109273727917265322951177562461547619945659946661709318936620703886547825323438894936920280122575420112129062926290174539150020217450824564932149703024575202012004256778075959511287182543877787626558645235029913426545639677691337408032455520074377847060898976141660467990338371288096978356566779189319760220032555084988984226456582072701412765278729563774411480508585210497926928663057832063069830357108718066736704977494052175566260951057127088836695025105121165592052464738070894300433100351284763404021193816620302265581850180478577150400072465454046940574433944594906074104589 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) af3b8d3b68093c2e9478d3d989cbda0122ded28b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.demenziali.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169a758dd1d0000040300483046022100ff0ef349e943f85dcc4b23dfc980e49f1028c95a04fb37e2d59344a7cf5220bf022100986c3524b998165777b072d9cd0fa744c466bd68247ca78c193092d59c9e8da100760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169a758dd32000004030047304502201cc409da77cabcfc382568d8ccf690b5575ed53ea75eed4afdc290c4e9f48f7f02210091b2653462a815229857013cd48584cdc3f06549619644cccd9c4a0953447594 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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