www.agrigento.co
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:00:9e:47:3c:0a:43:41:7b:eb:9c:ed:75:56:72:01:2e:99 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.agrigento.co
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:00:9e:47:3c:0a:43:41:7b:eb:9c:ed:75:56:72:01:2e:99Serial Number (int): 348659531621209631772452569147707393912473
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 2c:08:d5:66:4b:08:98:a0:32:64:e4:a2:d1:fb:ed:bf:b1:3b:f7:16
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): cb:2b:e5:b8:04:33:15:4d:25:98:af:cd:8e:97:17:46:8f:3b:3f:7f
Fingerprint (sha256): 23:29:13:ff:6d:d4:21:6c:b8:42:2b:4d:ed:11:e2:b6:ef:7c:2a:e1:fb:d1:c1:c2:3a:ff:80:52:db:fa:a2:b6
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.agrigento.co
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.agrigento.co
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.agrigento.co
Other certificates including the domain name agrigento.co
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.agrigento.co in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISBACeRzwKQ0F765ztdVZyAS6ZMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjUyMzI5MThaFw0x OTEyMjQyMzI5MThaMBsxGTAXBgNVBAMTEHd3dy5hZ3JpZ2VudG8uY28wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCrBWi5ox1kxht5kYbSoUhHqpLvGc6u B0grQKZyFnUlh0kYJRt+mbe7P/f+7FN+Rg6mNSIVYtW8bYH1Q00Ib+C855nJRsp7 WNH1K11IP+TbnL9VRLRPVGuiiY4B4W9E2q01iOeV5lAfNvTGc7Cz4ydyjnGGehWz g9aeCGqvEj639+FgzofjZ1xgiSt8RG+tThWT03YQuCDch3/HpARgpfNy/PQLPtEu 5J1TXSbtYwR1P2r8W29jebzB51qVMrUTlLirToBLg8lH7sxrdYY4vaJ4p6lCWgBH JlnxO9+1D/gR0H7XRvyCtA5m2SUCRR1wxzx4cADKBnZdkpmkvVH3/f3vSU1atFNO d57KavLx/CEFjxS0XyBKMM4hziLZSJT1mVMhKsiNgO3nk405M0YC+45mGZh0Tuab Pun72mVQuesldNtMa1Eln8G8t8eM6bSbnoj2VSZeDu7/++eaN96QWitJsQF5ExZA rW1+sEvM+7vu2WdBRI4YYKqrLU0cZWLf8FI8jDuC2nhNWFegIqIFPMF/j4laB9aY 8WzuBsvBDp7+CbIiyg/Z2C5lg84TZPhJZHREOWMhWRsHMTe/fRgYwxM2lec1D6ep QRSextw5VzfW+Pccb5PnbNrwPcCbhLnEaDmAu/oIEmb3CJMN++3dmHScwDIqEJh4 aUlPMEr7EZcm0wIDAQABo4ICZTCCAmEwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQs CNVmSwiYoDJk5KLR++2/sTv3FjAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5hZ3JpZ2VudG8u Y28wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQC BIH1BIHyAPAAdQB0ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAW1q +OJPAAAEAwBGMEQCIGb8jKGR/UxxA26cEAQ3NZWig7RHjsyqF+jK8rAcZmvBAiAV I7ERatlceOdPjUsAb+P/6JFkB5Rggl3Tw0nYw5gbvAB3AGPy283oO8wszwtyhCdX azOkjWF3j711pjixx2hUS9iNAAABbWr44kcAAAQDAEgwRgIhAKb8HYK83gu1q3dM Z6luJx0v/JF5mtAmcJEwgXivEaxpAiEAp17zw1AIRGb02KG09BUnq1fmf5MIWZgn zhbbdsGKj6UwDQYJKoZIhvcNAQELBQADggEBAAc+SHMshsXHxCr+U8YK4+5KhchA b4pzS8x0HjdMm9kyvS3LM7sPG1LZKYucNOLhaAQ3u3ouGdJWLhUddnyIUo2+G/pn R8lECQEsaFFgOHqqjmlRXkaq+m8rOSQV1nFJyRRaobeBufT5qZfQBWLDKfv0e0GU BPx4CsUqzvfPjvEZUjogPZ+mfnTUPqVyd1DTX/NrBBM8mF2LG5TtUgkKDbetfrE2 dp6BH1hjQ1+Nit7nUosZpt5c5OCznYyG0gKBxRmHdaiI3IuadTAuxLAcCTDjcJoF 5wusRW0BeHpTdJqZeGEAcfjIDkD0BnFHjrzI1Ngl2qPP8BSsvRHhwsxKm/I= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqwVouaMdZMYbeZGG0qFI R6qS7xnOrgdIK0CmchZ1JYdJGCUbfpm3uz/3/uxTfkYOpjUiFWLVvG2B9UNNCG/g vOeZyUbKe1jR9StdSD/k25y/VUS0T1RroomOAeFvRNqtNYjnleZQHzb0xnOws+Mn co5xhnoVs4PWnghqrxI+t/fhYM6H42dcYIkrfERvrU4Vk9N2ELgg3Id/x6QEYKXz cvz0Cz7RLuSdU10m7WMEdT9q/FtvY3m8wedalTK1E5S4q06AS4PJR+7Ma3WGOL2i eKepQloARyZZ8TvftQ/4EdB+10b8grQOZtklAkUdcMc8eHAAygZ2XZKZpL1R9/39 70lNWrRTTneeymry8fwhBY8UtF8gSjDOIc4i2UiU9ZlTISrIjYDt55ONOTNGAvuO ZhmYdE7mmz7p+9plULnrJXTbTGtRJZ/BvLfHjOm0m56I9lUmXg7u//vnmjfekFor SbEBeRMWQK1tfrBLzPu77tlnQUSOGGCqqy1NHGVi3/BSPIw7gtp4TVhXoCKiBTzB f4+JWgfWmPFs7gbLwQ6e/gmyIsoP2dguZYPOE2T4SWR0RDljIVkbBzE3v30YGMMT NpXnNQ+nqUEUnsbcOVc31vj3HG+T52za8D3Am4S5xGg5gLv6CBJm9wiTDfvt3Zh0 nMAyKhCYeGlJTzBK+xGXJtMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 348659531621209631772452569147707393912473 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-25 23:29:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-24 23:29:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.agrigento.co' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 697705335364785077776243660412939688388897278459960631537149020512449195425870106361797543329775926155702383268720506242923810790379255982314836811801234387772137057754352772855580393026591999434954695628349026976570454868794856583679928055374776668766324309680140979035215646673682419033406782506346043260374710061494635099477536542544194928928190877275270768073825306291637261436564650464900476748267601031779348176939289689076774129734450270906813246205297562015939498762335547901177964826154386416982361283175801496510453822628271783039465028812324660613891359993200237268010913203178064676472848818394800450393935224548450680122097267380198448897024172828372524493960104672272672367235997271078903662993745040402763683430914011458584328193126510953614908597398707908928710342763066992028564941176672164150423851348400938522767152750421170715641399105795746304175955789168545775208532083474854614381249763054928715257554793952699095585402419840840691961410660668249405765836948140511390373337335543135233993409436888233598337746191095348454971615856883679575925541105303109263096889898309560955746739464480804413709509047839480892651439313057510485639589221746736091574088350404152421832451920932310982824654946072904261432714963 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 2c08d5664b0898a03264e4a2d1fbedbfb13bf716 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.agrigento.co' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d6af8e24f0000040300463044022066fc8ca191fd4c71036e9c1004373595a283b4478eccaa17e8caf2b01c666bc102201523b1116ad95c78e74f8d4b006fe3ffe89164079460825dd3c349d8c3981bbc00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d6af8e2470000040300483046022100a6fc1d82bcde0bb5ab774c67a96e271d2ffc91799ad0267091308178af11ac69022100a75ef3c350084466f4d8a1b4f41527ab57e67f9308599827ce16db76c18a8fa5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 00073e48732c86c5c7c42afe53c60ae3ee4a85c8406f8a734bcc741e374c9bd932bd2dcb33bb0f1b52d9298b9c34e2e1680437bb7a2e19d2562e151d767c88528dbe1bfa6747c94409012c685160387aaa8e69515e46aafa6f2b392415d67149c9145aa1b781b9f4f9a997d00562c329fbf47b419404fc780ac52acef7cf8ef119523a203d9fa67e74d43ea5727750d35ff36b04133c985d8b1b94ed52090a0db7ad7eb136769e811f5863435f8d8adee7528b19a6de5ce4e0b39d8c86d20281c5198775a888dc8b9a75302ec4b01c0930e3709a05e70bac456d01787a53749a9978610071f8c80e40f40671478ebcc8d4d825daa3cff014acbd11e1c2cc4a9bf2