scafati.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:ff:40:d2:b8:01:6e:0a:e6:99:1c:6e:77:ab:2e:7e:b7:cb was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=scafati.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ff:40:d2:b8:01:6e:0a:e6:99:1c:6e:77:ab:2e:7e:b7:cbSerial Number (int): 348195026066267226816428916516278776018891
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 95:af:1b:e9:4b:da:4a:5d:32:a4:91:98:54:02:47:ee:92:d0:ed:25
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 3c:31:95:49:24:3b:e3:05:ce:a4:42:9f:49:b3:19:f4:c6:27:20:3c
Fingerprint (sha256): 20:97:a6:0c:e4:da:cc:8c:0b:df:91:9c:4b:2c:0c:bc:eb:a9:70:c9:e9:9b:1c:42:6e:fc:a5:da:ab:26:c6:70
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate scafati.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for scafati.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
scafati.org
Other certificates including the domain name scafati.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for scafati.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTjCCBTagAwIBAgISA/9A0rgBbgrmmRxud6sufrfLMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjcxNjA1NDlaFw0x OTEwMjUxNjA1NDlaMBYxFDASBgNVBAMTC3NjYWZhdGkub3JnMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEA0eu7dSfQxqifiza+8yB5ig1qh9kUOQmOGCql e75FnF4qXVkDBeS5qGDGHXqzIVCAnDdDQlvFmm9N9NOfSCsb1uR4paR22SR99vPn iRevHJRVFEuOEVnqR/Stexoj5SrfhQSEmCVCxa37CK/v+bgcdxpmtYz8Gvp4vwmO aoIqmq5MfjP+qMeZhKT4TjNeEFhZkE4BGiSlK9DX5ZiSXnRT+yc2B2WNfn7InRN6 gObg4I0i6RNt85FJKCsQ8XkaZTn7XUBJ0bdqyXm5AKFFAQS2ch4agiTCVeX1eWKF d3Ko0dEAMOTNiXKfvDaHJJWBNL8IUcdkAc4ai2CVAmRL/w7FAm7MHNtLysfPkEPJ mMax/yzK+wnd+dWiMh8zvGUt4bgpOTJfw5fUXUErZGiiwoa9Ux7On3JAign/60GE P9X+SgOes1mMw0xnM9SimWrbS3Er5NvTQeVRC4DDFNbIabTnAD1zLk+SRvzJhMWL kvb8X7HjPu6wbIHHLqfRzw773ce/9pnsMgR6s7IMoWAanY04jDRGYddZH9FaIgqk R7AMs0980iPtUr3i1LCzZW0rEtX/kt3Sd73ZHJKjhHt9tYKfWpX5pna6//IQ6Uhb PM7Kw9nTz2vbyV9sGhHOrizfxF4yPwZIX0IdOnYc0ptiypnSpWoeaJasH+A28Ecz 0Y/dzYUCAwEAAaOCAmAwggJcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUla8b6Uva Sl0ypJGYVAJH7pLQ7SUwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAWBgNVHREEDzANggtzY2FmYXRpLm9yZzBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABbDRlTB4AAAQDAEcw RQIhAItllzJ6SI7fFx8iowlpcZdphLeZ00GyxH5UKUTvp0IrAiAE70v12CDWblOy x3O2HkvQKGIWmKhNThF+uPyMZ6GrWwB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLc pMMM9OVFR/R4AAABbDRlS3MAAAQDAEcwRQIhAN2E12SS8x9PCsfBbKfJ6wsFX2RR kWJzvOQxHr3BdamPAiB5pn4CjjTMz0Zu8p1pUHNjS+SyF+XSI9x81sdlc9Sa4jAN BgkqhkiG9w0BAQsFAAOCAQEAUKVcLsFIsm8FGUQ0yXYpN5QM5kCy85lWlsKjnoav 2I8PZ+5tm+btfjaEE0tYdhPJCi/z0HvhIvRUQKSD/98aEk55ekqsTTaIi/AX64N/ DLJoakTrqch+U6D+KLzJvVQDegdvbTAnGSg3XRTLJngzeQKa1/PR0yNPGRWMNJou k6YRIEqO2qcuWdDaFeyzN+QN75RWePPF1fzCpnLUFAS8gDdfnr1VbEe5yfkNjgiu KnCLu50ty8irGFI2Ivl8gwBeJR5HafT44l+Sp0CpPtKd7Dlcw9PM0JUFCvAd/i76 CoRiN7oWVFMcpMVDCe6qAM6E5C9HSkpMSXIZpgyUZw/tYA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0eu7dSfQxqifiza+8yB5 ig1qh9kUOQmOGCqle75FnF4qXVkDBeS5qGDGHXqzIVCAnDdDQlvFmm9N9NOfSCsb 1uR4paR22SR99vPniRevHJRVFEuOEVnqR/Stexoj5SrfhQSEmCVCxa37CK/v+bgc dxpmtYz8Gvp4vwmOaoIqmq5MfjP+qMeZhKT4TjNeEFhZkE4BGiSlK9DX5ZiSXnRT +yc2B2WNfn7InRN6gObg4I0i6RNt85FJKCsQ8XkaZTn7XUBJ0bdqyXm5AKFFAQS2 ch4agiTCVeX1eWKFd3Ko0dEAMOTNiXKfvDaHJJWBNL8IUcdkAc4ai2CVAmRL/w7F Am7MHNtLysfPkEPJmMax/yzK+wnd+dWiMh8zvGUt4bgpOTJfw5fUXUErZGiiwoa9 Ux7On3JAign/60GEP9X+SgOes1mMw0xnM9SimWrbS3Er5NvTQeVRC4DDFNbIabTn AD1zLk+SRvzJhMWLkvb8X7HjPu6wbIHHLqfRzw773ce/9pnsMgR6s7IMoWAanY04 jDRGYddZH9FaIgqkR7AMs0980iPtUr3i1LCzZW0rEtX/kt3Sd73ZHJKjhHt9tYKf WpX5pna6//IQ6UhbPM7Kw9nTz2vbyV9sGhHOrizfxF4yPwZIX0IdOnYc0ptiypnS pWoeaJasH+A28Ecz0Y/dzYUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 348195026066267226816428916516278776018891 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-27 16:05:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-25 16:05:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'scafati.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 856402265300071474584871986764933693903052015572899122342711134967581854377946434635661827583470519553086576538875461466074569443098965235316896381624363725233254965268051055905407337849895342241279235781908890036565358635726762766088199256546328183158342721722602194712679854999280134027428498856143804127685489285701802545936239739600983548760228141580513863198405328196085401112916453911317415914627592299888010282956641944595143406787694838233168993227538034955799539856093497444119394873164368469904313180651263848253379291265004953931364026259935896294750835871152278968517460898093628183425661468254159405527042281049649550072845906546783161975616305057675455418750045895549177095770909496743927675430714094483239127555600221170262012360116299382399011163395358005178514481660202851535784714015245562671955630646247281666545070139839392162904593673784806101099700708320885798488910437791852783154932083182477141162742515724651813657014502594042283644062947249484272947402041756822595308365770145099765773156109082335205857494843622079654268686924819459084627413757599505015324269646283552731571913491081020012809155343265497087456279818066688995137407693174061405983220705251243778065198619185961432851563178960624362467478917 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 95af1be94bda4a5d32a49198540247ee92d0ed25 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'scafati.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016c34654c1e00000403004730450221008b6597327a488edf171f22a3096971976984b799d341b2c47e542944efa7422b022004ef4bf5d820d66e53b2c773b61e4bd028621698a84d4e117eb8fc8c67a1ab5b007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c34654b730000040300473045022100dd84d76492f31f4f0ac7c16ca7c9eb0b055f6451916273bce4311ebdc175a98f022079a67e028e34cccf466ef29d695073634be4b217e5d223dc7cd6c76573d49ae2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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