rilegatrice.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:bd:00:55:3b:9e:65:64:e3:da:5a:07:46:45:a6:a2:c6:06 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=rilegatrice.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:bd:00:55:3b:9e:65:64:e3:da:5a:07:46:45:a6:a2:c6:06Serial Number (int): 325650667697782681242079231122447964227078
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5a:fd:f1:e4:e2:54:b2:e4:b1:0f:f4:9b:cb:af:32:8c:3b:d0:0b:3f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ca:17:a0:c8:c8:72:de:3c:cf:ed:65:d1:9d:02:c0:00:94:6c:49:f3
Fingerprint (sha256): 22:8a:7e:35:0d:99:00:78:1a:cc:ee:0b:03:67:42:02:5a:2c:e7:bc:9b:20:91:dd:40:94:37:36:72:1e:61:c8
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate rilegatrice.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rilegatrice.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rilegatrice.com
Other certificates including the domain name rilegatrice.com
(limited to 100 certificates)
www.rilegatrice.com
rilegatrice.com
kikai.bible
rilegatrice.com
rilegatrice.com
rilegatrice.com
rilegatrice.com
volkermord.world
www.rilegatrice.com
www.rilegatrice.com
rilegatrice.com
rilegatrice.com
generatorcable.com
69490.com
oregonsportsmedicine.org
rilegatrice.com
woodside.bible
rilegatrice.com
newworldsound.com
www.rilegatrice.com
rilegatrice.com
www.rilegatrice.com
rilegatrice.com
kikai.bible
rilegatrice.com
rilegatrice.com
rilegatrice.com
rilegatrice.com
volkermord.world
www.rilegatrice.com
www.rilegatrice.com
rilegatrice.com
rilegatrice.com
generatorcable.com
69490.com
oregonsportsmedicine.org
rilegatrice.com
woodside.bible
rilegatrice.com
newworldsound.com
www.rilegatrice.com
rilegatrice.com
www.rilegatrice.com
Certificate
The complete raw certificate details for rilegatrice.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVjCCBT6gAwIBAgISA70AVTueZWTj2loHRkWmosYGMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDQwMTIzMjBaFw0y MDA1MDQwMTIzMjBaMBoxGDAWBgNVBAMTD3JpbGVnYXRyaWNlLmNvbTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAKyEQKN+wBwxjVIzh3lPcSQUrpEbz1EQ 2JVndklRvd/sjlag0MOeNgsGTpAGtlnhXAYirfhYj/0XjMWgzxo9bu0b+HcCtw0U hKIJdp0oDGNbINFHoeqlV48lG+ksU2G8YrHyfm93pdwPa89wgsd15x3Fgl/V2mqb ONvBECtw2NlC8swEu4PTT98KrWSJJ3/dyzAUZpelJe6JMycR+KX3Ai/5jaPon7l3 +xjXm7vR5k0xwSaLv5VJUHLHSBXBwnkEd+K0Nroy8Tgld4Fmmf59shDlvomHKR0S IINoHi3vkNmf6eWQLrZgj3LBQVAHCiEx8cjv6OvsB7Ms27FKK9uBLHnX6vB6WRyC FRjPmalQbEefPq+9y46yzY7eQnreLNWvcV4xwT0OzVe19lA8h5A2+clrCxLjIjXr s4OY+3XZIjpk4ZYtNmGugKP2klp2CcCiYGy22ldu2hYMnEyYkjFCinLwypcznR2p hT5zqEqB485T3ByYgcXSGqvauJZ5jQHMfl79ZXEzUOVDuUCuy30Xao4oLM+cNFla XERR2g5VxJKfYsTFtM1BZgTksgwKWwyYEfopg46kKqYU/nUXnU8cbIsG+S9D25vJ uUJLhND/GuAyT7DiaKsCeMt1mk2C0c/W04QnDJ64VqeFLj0xLvj648jj+nD1XCWq 2ZgiP0zX5svJAgMBAAGjggJkMIICYDAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFr9 8eTiVLLksQ/0m8uvMow70As/MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPcmlsZWdhdHJpY2UuY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB 9QSB8gDwAHYA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMAAAFwDgJb ZgAABAMARzBFAiBDmssrc1fGzDTBe6ENJThC1abWlbzNzTG0LLZ1BwlZmgIhANQJ mK/tLJzx/j9/pTksA48hDX0SgAglXrlsz1iHHE8sAHYAsh4FzIuizYogTodm+Su5 iiUgZ2va+nDnsklTLe+LkF4AAAFwDgJbVAAABAMARzBFAiEA/FXLEQVBZhlLDRmk KfbYhEU1jEaRgkmbN1ieQxM49IcCICL/dg3apY2BteEQXFeuUrOHqa1114YFC7dL UkQ2tW1GMA0GCSqGSIb3DQEBCwUAA4IBAQBkobZJx6u9yLBxHk3IOj07baSAmdbF O8ehge6WkP2AY8LNQZ3JQcRxC/rV93/BG1C45ksQdiPcwuHGrgHFMOhuYTMWcVK6 smUiCj5oR2nkfhC6C5Ao1/4KPbSdVUeObaGaFNHw7dKu1BYE+eZdWBOmbhNc5rda hhS3rHXPdpX/ujBTrlQdpka1Al22DKh6EP6a74ZrIhfOU7dr6rE2/ob/bSlEoemu a/KMqYmyMMcL8DPQniut/8ot/vLku9Rwx3OA9NSseOBGQP0K4yghvmSfhpk9sLom ez3r+t8c00PHj2rdBKr0Uj/Vx81+9OCP1AFZi60CbPFCVYyxgfS18Hqw -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEArIRAo37AHDGNUjOHeU9x JBSukRvPURDYlWd2SVG93+yOVqDQw542CwZOkAa2WeFcBiKt+FiP/ReMxaDPGj1u 7Rv4dwK3DRSEogl2nSgMY1sg0Ueh6qVXjyUb6SxTYbxisfJ+b3el3A9rz3CCx3Xn HcWCX9Xaaps428EQK3DY2ULyzAS7g9NP3wqtZIknf93LMBRml6Ul7okzJxH4pfcC L/mNo+ifuXf7GNebu9HmTTHBJou/lUlQcsdIFcHCeQR34rQ2ujLxOCV3gWaZ/n2y EOW+iYcpHRIgg2geLe+Q2Z/p5ZAutmCPcsFBUAcKITHxyO/o6+wHsyzbsUor24Es edfq8HpZHIIVGM+ZqVBsR58+r73LjrLNjt5Cet4s1a9xXjHBPQ7NV7X2UDyHkDb5 yWsLEuMiNeuzg5j7ddkiOmThli02Ya6Ao/aSWnYJwKJgbLbaV27aFgycTJiSMUKK cvDKlzOdHamFPnOoSoHjzlPcHJiBxdIaq9q4lnmNAcx+Xv1lcTNQ5UO5QK7LfRdq jigsz5w0WVpcRFHaDlXEkp9ixMW0zUFmBOSyDApbDJgR+imDjqQqphT+dRedTxxs iwb5L0Pbm8m5QkuE0P8a4DJPsOJoqwJ4y3WaTYLRz9bThCcMnrhWp4UuPTEu+Prj yOP6cPVcJarZmCI/TNfmy8kCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 325650667697782681242079231122447964227078 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-04 01:23:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-04 01:23:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rilegatrice.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 703806369955855721946093674436245621506441856168339921607438980892657858420748520442024191859711512013064928776303715032931593239313881968274829980504166755864370870049153301503320663509398309287614682876972364989608703412795829305036231085860039982494399070521329530058180608403293883482892317283392726635498841211797955612481395791742298097327912751123105103941891558749601193819448917147002929083417784239786200252680910781254352413128361689800979672415940716372123892277046787645164428217837575809048095447833536465488539602566795557005152022422793549768735992568834406883430959536364716568946075779565691441501858401616693226980740439484360363119366480669625274848203099060765137602204838259296400845093586932353487419941410707858258296885569373108005752094794157642735627532639916149128290131970944748924844342259284865096898850990966198170753442051614907008991249019554059909728422916294878953025541457938566343164299631216041883061095153782428300690108873834587815846515204163918638765723144719181818471376565063709978500770882496392145698009966345613615113951226865954547423103237243511792696300389089414238871273831144088311662956722639397344290337591011065675408363656877095729250416508536575156822302034850153445403839433 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5afdf1e4e254b2e4b10ff49bcbaf328c3bd00b3f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rilegatrice.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb273000001700e025b6600000403004730450220439acb2b7357c6cc34c17ba10d253842d5a6d695bccdcd31b42cb6750709599a022100d40998afed2c9cf1fe3f7fa5392c038f210d7d128008255eb96ccf58871c4f2c007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001700e025b540000040300473045022100fc55cb11054166194b0d19a429f6d88445358c469182499b37589e431338f487022022ff760ddaa58d81b5e1105c57ae52b387a9ad75d786050bb74b524436b56d46 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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