roncoferraro.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:42:f9:11:71:ae:cd:1d:50:c3:25:04:54:dd:15:4d:e7:5f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=roncoferraro.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:42:f9:11:71:ae:cd:1d:50:c3:25:04:54:dd:15:4d:e7:5fSerial Number (int): 284126562357821183030249153859325591938911
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: fc:f1:67:c7:db:f7:63:8f:8c:53:6b:58:e2:4c:56:e1:e0:f6:76:94
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 19:a6:4b:49:04:6a:05:c4:f8:fc:af:22:6a:82:f2:4d:bd:3c:e3:1b
Fingerprint (sha256): 29:8e:35:95:d0:17:2d:d3:16:cf:b4:1b:7e:27:3a:db:50:ed:71:9d:1a:4c:d8:0f:81:8a:13:ae:92:2d:ae:34
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate roncoferraro.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for roncoferraro.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
roncoferraro.com
Other certificates including the domain name roncoferraro.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for roncoferraro.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgISA0L5EXGuzR1QwyUEVN0VTedfMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMTcwMzA5MDNaFw0y MDAzMTYwMzA5MDNaMBsxGTAXBgNVBAMTEHJvbmNvZmVycmFyby5jb20wggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCjKFcw/3vchxXzxErltOsy7jvyCkoU dc1SM8ueIU1Z+jlWW8I0vkWb24zraeKOldlPx7/r6p7sg2CsaZCXH0BVnG/6cSMG QiLFArFHd/S5mIu6sT6nyY0bg8Mn4E1/yT/vYkM1FRj9/tsy+8bwKWuGjtxPCJIr qZM4eGivu+fgxm+tFczQ0U34E3Zo5N2GYEDdxxo5zWyUn1nZEWJJeXi0ag24C5V1 VZz97vmmX4xkenKHSSof4OXfiiGIxqP5442/CUUGBvfdy0PSyx/UrmSa521x+ML8 QnbOha5sH7y5Dulxaizdg3/vCA3bhziKcAW3JXX1LVFXeXcu+IZOjFZLu8pz7mWE QP4H+vjViIfaZa6JZQVNsKk7U0BiI3aSbkfr5n7MV2Q88sMGNBBYu0L0b18pjilY 92LjOAaRmKQTwgSSOFShLfQ/lhdrCuxk3gTu30W/CvgrlWC1rbsdT5IQfMS9fxBu dBq0Q5GxrDgJhBMU6c8lOFqjyQPziw7nbPa7A+qCrhci+m+gpioT+44eomIcAYE/ ccwjGGjR/L3IttuIHUeR9RQKncuTEVcfy6yzwjEOMvFYwRVUVKvloQp9HhYHrt1t 2bvgj6znu3h0GyJ8AbsByzu9BsrXfwNMiZAXoU5jHwAxnG0cdmXTfWlcucnoYUwS K/kA0yUddZBnYQIDAQABo4ICZzCCAmMwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBT8 8WfH2/djj4xTa1jiTFbh4PZ2lDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHJvbmNvZmVycmFyby5j b20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEGBgorBgEEAdZ5AgQC BIH3BIH0APIAdwBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAW8S C4pWAAAEAwBIMEYCIQC0yRAer2vpkRDQINswYwIlLFxy36ljthleTKX3V1S0NAIh ANtuw+Z9TUen8IPecwp4/QxLUv+YCtdiWi4OhqsyqtloAHcAB7dcG+V9aP/xsMYd IxXHuuZXfFeUt2ruvGE6GmnTohwAAAFvEguKcgAABAMASDBGAiEAppOz/PY5U+8A sd3X0QDShLaQbZWwzvlIaWiMK47jo9ACIQDNGimzsg4rEky1FP/Ss3VPzUan0D8A 8vgJTI9O0rXjlDANBgkqhkiG9w0BAQsFAAOCAQEAGoE5/xpGqqzIYk9+ILn8/LXh tZyqho/JWAVY7Nrcmdo7rn2JLOgbU+D0r0xyIhYvQ9lt09YJS42PUxfYWu9Cm4IW A7+9bRIK2m/e9+C91KDiwXCi6UWzA1i7h7Bng6nz72RH84kpQZ6libLn9AspXa5P zfheDWuoS/bWgaBAD+TEJT1ezG29jAXrsRe8v03B7hLfejtW28QT7GeSNGY7RP5B I+c2hhe+2/hYNDwLlbjUBa81K3L36RfW2q6UXAPy3WktlQHCZsaV4WKpz8c3Op8a Sc4fX+rbbusBTy7KdvPOrM+puDcyOny2xiXBVmKS/1d6nxgixhxG0xx/lJtXlQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoyhXMP973IcV88RK5bTr Mu478gpKFHXNUjPLniFNWfo5VlvCNL5Fm9uM62nijpXZT8e/6+qe7INgrGmQlx9A VZxv+nEjBkIixQKxR3f0uZiLurE+p8mNG4PDJ+BNf8k/72JDNRUY/f7bMvvG8Clr ho7cTwiSK6mTOHhor7vn4MZvrRXM0NFN+BN2aOTdhmBA3ccaOc1slJ9Z2RFiSXl4 tGoNuAuVdVWc/e75pl+MZHpyh0kqH+Dl34ohiMaj+eONvwlFBgb33ctD0ssf1K5k mudtcfjC/EJ2zoWubB+8uQ7pcWos3YN/7wgN24c4inAFtyV19S1RV3l3LviGToxW S7vKc+5lhED+B/r41YiH2mWuiWUFTbCpO1NAYiN2km5H6+Z+zFdkPPLDBjQQWLtC 9G9fKY4pWPdi4zgGkZikE8IEkjhUoS30P5YXawrsZN4E7t9Fvwr4K5Vgta27HU+S EHzEvX8QbnQatEORsaw4CYQTFOnPJThao8kD84sO52z2uwPqgq4XIvpvoKYqE/uO HqJiHAGBP3HMIxho0fy9yLbbiB1HkfUUCp3LkxFXH8uss8IxDjLxWMEVVFSr5aEK fR4WB67dbdm74I+s57t4dBsifAG7Acs7vQbK138DTImQF6FOYx8AMZxtHHZl031p XLnJ6GFMEiv5ANMlHXWQZ2ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 284126562357821183030249153859325591938911 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-17 03:09:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-16 03:09:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'roncoferraro.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 665624855174800300201178200934140045451020139302108137569449498548524794746356650515207651002746633559009915801258858819000129863885089674560035530019405005866578452865008171180161120016429735377499011585699370157372006180472315482824826984959880338722238503896849333094404168415404857070423129868898489762946288328579354245942154048798500892546880943066597256334258199272838818713510585825519960941424358120579279784725967877766751495403337486231015396866556672509741919864692513043026794592639862470228116952940382693885833197356275973482273371971315549697805514078519930340302751921145806229700538299332804329853731855677017081218353990830696404435444309063509569116231642773175135877292383892034466864439311950207838363256859429813987012611534424414649151371999880583048510495221656638359673784314496580637126054733422590985823581683541220553461792805598929672722433446463679115860419711726826438411044785912800138860905927563587089012408443303822688581442809661781495154250961199542598991420813445649602388605355912721373459844281238737897716480930254802089019856086122319753271991875814271513015731685956699155755753435341726489062612624982682351299188255503212602267258896422970385223385687855761262492903622598616407105103713 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fcf167c7dbf7638f8c536b58e24c56e1e0f67694 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'roncoferraro.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016f120b8a560000040300483046022100b4c9101eaf6be99110d020db306302252c5c72dfa963b6195e4ca5f75754b434022100db6ec3e67d4d47a7f083de730a78fd0c4b52ff980ad7625a2e0e86ab32aad96800770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000016f120b8a720000040300483046022100a693b3fcf63953ef00b1ddd7d100d284b6906d95b0cef94869688c2b8ee3a3d0022100cd1a29b3b20e2b124cb514ffd2b3754fcd46a7d03f00f2f8094c8f4ed2b5e394 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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