www.demenziali.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:36:c7:e1:21:53:17:1c:cf:8f:be:5a:ba:fd:09:c6:00:4f was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.demenziali.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:36:c7:e1:21:53:17:1c:cf:8f:be:5a:ba:fd:09:c6:00:4f
Serial Number (int): 279977790922868392956337571270072423809103
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: af:3b:8d:3b:68:09:3c:2e:94:78:d3:d9:89:cb:da:01:22:de:d2:8b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 36:00:26:76:e6:be:19:92:b4:5d:0f:dd:3d:51:4c:0d:53:6d:24:cc
Fingerprint (sha256): 18:ac:76:51:fc:35:43:5b:8e:75:66:a9:fe:44:6d:30:72:5c:2a:54:4e:e9:f8:3c:b6:76:8c:47:df:aa:7a:22

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.demenziali.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.demenziali.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.demenziali.com

Other certificates including the domain name demenziali.com

(limited to 100 certificates)
demenziali.com
www.demenziali.com
www.demenziali.com
demenziali.com
jovanny.org
demenziali.com
demenziali.com
demenziali.com
www.demenziali.com
www.demenziali.com
www.demenziali.com
demenziali.com
www.demenziali.com
www.demenziali.com

Certificate

The complete raw certificate details for www.demenziali.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGXTCCBUWgAwIBAgISAzbH4SFTFxzPj75auv0JxgBPMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTAzMjIyMDQwMTJaFw0x
OTA2MjAyMDQwMTJaMB0xGzAZBgNVBAMTEnd3dy5kZW1lbnppYWxpLmNvbTCCAiIw
DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKB9BuyWCsrqNk5vWmavJV/xALci
A4kwQVpf5e2lxVccXFmawKsCgZ/GgtFI9ai6/+2glEEzIYuB/sJ8J3UJ90cpTmd4
kUNi4+Z53y+cKPpGQDkhha74xvseqHOPnK2By8K4jpZATibUFKFJldjQZQu4xVMr
Adzlm5HnCCovgUXvsHSFfywZJnZXr9aXRKp3ObPY0LQYuoDI4MZVA3p67mh2iihj
YiOnt8W+ulMxJ10VHj8H/vpuAGkKXkiNm5rmlrNs4kUJOVwamPwxWBocnYsuJ6KU
1TObn0uwoIjOZId2qIIb6M7yX88onM/ND0lJPo3mzTVdO/XNXg0Ewc8GmsAO3DPO
GlkaM+NlA43969gxcaly2KkI6SpzRGorugHWTcHVVIpu6Jkx5KO/itLVo8l4OEhE
1lPYMERxZuBdUKbd2zwrul2mB0GtMb1XgjD74NnQ4b/4XJh2dZvYAwe0I3FHsgf5
I5hU9pJdr9NQAAPdR9szPLAxZbgmCZwDRyOgNMtCKSlE9N+tjxSYFgDpL7pmpSTD
7rJhhfVO49T7EJglz/IkXnfm4e6BeTFnSUV//3VJLpv8Wik6VxdisxlUv70ibho5
OqFT1N89PEPdM5/VemMkJitZqYDXsXGeoN47Ocstzfz5RyzJ74lSPSLLGEDBVt2R
TsKKnLEYciugFMMNAgMBAAGjggJoMIICZDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l
BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE
FK87jTtoCTwulHjT2YnL2gEi3tKLMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF
Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au
aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu
aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISd3d3LmRlbWVuemlh
bGkuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI
KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBQYKKwYBBAHW
eQIEAgSB9gSB8wDxAHcAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYA
AAFpp1jdHQAABAMASDBGAiEA/w7zSelD+F3MSyPfyYDknxAoyVoE+zfi1ZNEp89S
IL8CIQCYbDUkuZgWV3ewctnND6dExGa9aCR8p4wZMJLVnJ6NoQB2AGPy283oO8ws
zwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABaadY3TIAAAQDAEcwRQIgHMQJ2nfK
vPw4JWjYzPaQtVde1T6nXu1K/cKQxOn0j38CIQCRsmU0YqgVIphXATzUhYTNw/Bl
SWGWRMzNnEoJU0R1lDANBgkqhkiG9w0BAQsFAAOCAQEAaJQdPzrdmdphCRbkCiBa
mRumciHRDocfEu6gIjQdOsK4xjcCY7DWNtX2PPbLb9tUY+p/c13BhEBmIiImgcTx
wCgkiqcs3JnphgyYfWnz0qX5a3NXlkPHOXjiUhHosuK+WeohrxVgcA5EYL6sDQTL
VauptteJW46piWVhwV8eyr9J+JFbl8WbBge4SwVFmcwaZJ8UKtrrr+yjIqjnYebP
uputCCMhfAyDVNJ3EWGMSee0CzeAHKz8OeESG/Nfhk9TsAuqrmB1tLp9D45iDj7P
zBFy7wo1MonIPLqXtB1cV/xqiWLv/R0oHcuNdzfqqFMxiKTSxH5Ciimxhx6kOo0T
eA==
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 279977790922868392956337571270072423809103
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-03-22 20:40:12 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-20 20:40:12 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.demenziali.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 654735495620511515902542265165388609878511058931778848269926749399687957533870854779643490470587185100150579675700551541674429135160254056152041689805063955696027697888885243984332222989178740230552288951520136120980461562302307632440513665271495426652807036703138009805422377520685410410336456151014389642920930074803445493661702455010705750989089830340381322600045708267543097043676069983198610638611087058704328216903383781355781024004127659387342499938770734292133939665152475324722487090671239681260233656678274260711654403962417497184425897985714552254804252317314888184168567016407857638908239605302051127236636870612085299943244527570554282555062109273727917265322951177562461547619945659946661709318936620703886547825323438894936920280122575420112129062926290174539150020217450824564932149703024575202012004256778075959511287182543877787626558645235029913426545639677691337408032455520074377847060898976141660467990338371288096978356566779189319760220032555084988984226456582072701412765278729563774411480508585210497926928663057832063069830357108718066736704977494052175566260951057127088836695025105121165592052464738070894300433100351284763404021193816620302265581850180478577150400072465454046940574433944594906074104589
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							af3b8d3b68093c2e9478d3d989cbda0122ded28b
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.demenziali.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc5600000169a758dd1d0000040300483046022100ff0ef349e943f85dcc4b23dfc980e49f1028c95a04fb37e2d59344a7cf5220bf022100986c3524b998165777b072d9cd0fa744c466bd68247ca78c193092d59c9e8da100760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d00000169a758dd32000004030047304502201cc409da77cabcfc382568d8ccf690b5575ed53ea75eed4afdc290c4e9f48f7f02210091b2653462a815229857013cd48584cdc3f06549619644cccd9c4a0953447594
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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