gigliola.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:b1:c1:ec:87:93:59:a2:3d:c5:52:3d:91:19:0e:5d:22:35 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=gigliola.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b1:c1:ec:87:93:59:a2:3d:c5:52:3d:91:19:0e:5d:22:35Serial Number (int): 321824605875331527641813304212752084836917
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 46:ea:15:6d:8a:e1:7f:98:48:8c:66:0a:5e:f2:1b:a1:65:75:9b:18
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 01:5d:58:4f:eb:4a:e6:dc:ea:3a:5b:93:94:38:1f:fe:68:55:5d:d5
Fingerprint (sha256): 1c:75:da:3f:cb:73:94:04:6b:fb:f0:72:03:e6:fc:ab:35:35:85:9f:5d:98:f1:2a:f2:bf:dc:4e:e0:8f:8f:c1
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate gigliola.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for gigliola.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
gigliola.org
Other certificates including the domain name gigliola.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for gigliola.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTzCCBTegAwIBAgISA7HB7IeTWaI9xVI9kRkOXSI1MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MjQyMjAyNDNaFw0x OTA5MjIyMjAyNDNaMBcxFTATBgNVBAMTDGdpZ2xpb2xhLm9yZzCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAK7AOGXRPUtZVlFY+3Z0eg9pkUcVBCGfBI1g uIr/iYlMBqmQpzpOGVp4WEZDF2XEEFriJbkbdf7wZvyUcnBHlRTFZKhyvWWJfkof fLyf97qutEMIHa21XSmb0iF0K5hc874mx9vNwU3JVPZ6nF8Y/tp09mUX0u8cOjHP glYCPL3ybDxZTjJsyBomFtAR68jLVhNjaPC7whuF8kRxVXpCvVwxWz6b2JctAeps /wOMJqZeOV3I9qmBPgv6LLwvSOlIDmSZiP4B6UK0bhY1Dv7SIomGqodLpkl0GBfA rR6OaIHNOnjRyzONpT644J3f1WtOXah86X0qFEuMPvAhHrtDSatRivwsltfUUpmA QM8phgKPgRgd05VKdM3iJz62gEkNMHbvRlQyHC9BLDOvRw785Kw2mKpmtNBCCwCE 0yNWJWKm+2bnva/tqADtGfqNpkGecQkIny+WVLCtfAGcrmgXMew0imAFsBCouEvB h4NBHyBzTJE/RFoB5crFZDYkul8rntTgOnKzZFvBwgSxZqEVp29lbri2wP6/8Yb8 BGqz+eF7rp0TOD69fmtwPtMR+majYIs9c6mdZhIAZrlxRhQ8JBsV0d/kQH55Xsx1 zrkXYtkxhIYvA6AJVeooaYzjhdm7Jp+qXlqt7Vx+Qp0awzOcG8wG4SM+QY9wzK59 8PvEApTHAgMBAAGjggJgMIICXDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFEbqFW2K 4X+YSIxmCl7yG6FldZsYMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMZ2lnbGlvbGEub3JnMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDv AHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFri7owdAAABAMA RjBEAiAjHqG/cCzExD/X49B30BUYdSDed2OhCXJFKAto6SYnAAIgZs8ADCHL0uj+ WrIA5tr7eZtGIy4a9933mymKA6v6LUcAdgApPFGWVMg5ZbqqUPxYB9S3b79Yeily 3KTDDPTlRUf0eAAAAWuLujCSAAAEAwBHMEUCIEY9HrvAfIcB1dOnemBw+vgFILse 5EbdegzwX4yYTzLxAiEAhHdyrweV3iDyFu7Hlyk3k7odcUsRhpw1BFNRuRbCoJsw DQYJKoZIhvcNAQELBQADggEBAB2jPO8mgmIq2PGPJbM6zxU+D6YyV21Tqjwg0T+R oU/P7Escr8COoLmoMTfRQCaapKVrQ/mYdx4w497NEjYESlsjFJm4UIdxM/N8+i4F 6BhHkE/tFW+G14+NuVcC79Qs8rzjdsnNRZoStfd9b5U70ySOsDzjQdMevx0sWo8I JO0KqB+JU7HFBG5ihenK+arN7KaCNpVZQczQ6VsDPG/06PDHUgQgL+uZ1jg31SiD 65vuycQQzbyFyB/GA+3aqC1hGkaQrPzLxeKUv5BnLipbovMbbq8LU1BE+nJ5scwa KtfU4oOh7ZbrLXu73MUViYm7pD/1H+1jsRJBu/umlZ4QqPM= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArsA4ZdE9S1lWUVj7dnR6 D2mRRxUEIZ8EjWC4iv+JiUwGqZCnOk4ZWnhYRkMXZcQQWuIluRt1/vBm/JRycEeV FMVkqHK9ZYl+Sh98vJ/3uq60QwgdrbVdKZvSIXQrmFzzvibH283BTclU9nqcXxj+ 2nT2ZRfS7xw6Mc+CVgI8vfJsPFlOMmzIGiYW0BHryMtWE2No8LvCG4XyRHFVekK9 XDFbPpvYly0B6mz/A4wmpl45Xcj2qYE+C/osvC9I6UgOZJmI/gHpQrRuFjUO/tIi iYaqh0umSXQYF8CtHo5ogc06eNHLM42lPrjgnd/Va05dqHzpfSoUS4w+8CEeu0NJ q1GK/CyW19RSmYBAzymGAo+BGB3TlUp0zeInPraASQ0wdu9GVDIcL0EsM69HDvzk rDaYqma00EILAITTI1YlYqb7Zue9r+2oAO0Z+o2mQZ5xCQifL5ZUsK18AZyuaBcx 7DSKYAWwEKi4S8GHg0EfIHNMkT9EWgHlysVkNiS6Xyue1OA6crNkW8HCBLFmoRWn b2VuuLbA/r/xhvwEarP54XuunRM4Pr1+a3A+0xH6ZqNgiz1zqZ1mEgBmuXFGFDwk GxXR3+RAfnlezHXOuRdi2TGEhi8DoAlV6ihpjOOF2bsmn6peWq3tXH5CnRrDM5wb zAbhIz5Bj3DMrn3w+8QClMcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 321824605875331527641813304212752084836917 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-24 22:02:43 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-22 22:02:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'gigliola.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 712921311668989831088235372877924089321201849380211557021105317167871409414494822288929224966408522322812383259518639021461692305623798242195144905889930497827119638198312735676218356606059324720653891584853707660842739223104496422035275593394078407871776732185707116705807392778971034851393537432854362774418720825507613507661811642608738385508839650822266547387343280167220659807634773520483137560545300904435418184106344973099145304438738325802807936073155803456546414189146927801551159513053638565761113181790942348563743440761399761780026340974446539884250817850621809660292997352219348947170962893846880151023680976171590939712305644454748025701883570422410519998688607627085987525795644928192436118905794235099930791374411015432976712908609620989515985991008349252397922226947228821082045603361034121381925735603185693096572718876096069265516426208727095872527309188518290313123190267903227442054592231672878967041002964961566222637921896381056662863256372764724903210351898408692867793340317497935665292781823451935786510543887418399475774030542071772822412201693602509666394188618736316952004295957557842569725137990787940777138544645060669982431014955087845333323731787374718542368913729988548179102339043481950492928677063 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 46ea156d8ae17f98488c660a5ef21ba165759b18 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'gigliola.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b8bba307400000403004630440220231ea1bf702cc4c43fd7e3d077d015187520de7763a1097245280b68e9262700022066cf000c21cbd2e8fe5ab200e6dafb799b46232e1af7ddf79b298a03abfa2d47007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016b8bba309200000403004730450220463d1ebbc07c8701d5d3a77a6070faf80520bb1ee446dd7a0cf05f8c984f32f1022100847772af0795de20f216eec797293793ba1d714b11869c35045351b916c2a09b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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