mmasomalia.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a6:69:3b:bc:89:75:5d:cb:1f:8a:a2:91:89:e9:3c:50:a2 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=mmasomalia.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a6:69:3b:bc:89:75:5d:cb:1f:8a:a2:91:89:e9:3c:50:a2Serial Number (int): 317963609813212181482717676663605124944034
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f7:7d:f0:e6:43:34:2a:d8:88:25:df:58:eb:a1:82:16:3e:d6:85:10
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): de:17:80:00:27:8b:51:2e:93:5d:fc:2e:9f:00:6e:fe:20:c0:73:1f
Fingerprint (sha256): 29:fc:e7:97:7e:7d:b5:c0:97:c2:2b:95:9e:8e:47:cc:65:4b:ec:04:4b:e4:3a:58:a5:f3:11:0e:c9:2a:a3:13
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate mmasomalia.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mmasomalia.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mmasomalia.com
Other certificates including the domain name mmasomalia.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for mmasomalia.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgISA6ZpO7yJdV3LH4qikYnpPFCiMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDcxMzUzNDdaFw0y MDA1MDcxMzUzNDdaMBkxFzAVBgNVBAMTDm1tYXNvbWFsaWEuY29tMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1Wj7D3Vc+sJoQjXkTL75pB3QE6UI2P5u +68JGooJ8e/XRPc2xywtRCiWIwvd4RctGtqaj00SsanZznS3btgAbZUF21CDsaDi U6Coo2rY88lL/2TXF/cwKSq3LZKUf6t6s1VsUrVxU28OePQiBYrBW3NOVKKmASB7 GWKrNgnousB+b1mz67wRuHfzHZQSVcUHI09jgT34sSxNJF6ZuEOekumeC1AwsVbY W0DqD5ZCUuXdQUIBVF2sSExNdafgEpXY1gATkwVeBFcbA+dwtHxRxo9PIwfqsgl2 N07ss5vPKHi2V9+OYV0am3KjhIIXuk6BNdOKM0Ny1fzYhrGF320lw3GZXVOGZ5vM /8BrSlgPJTcGoO+G1W//u04Cn9DWXQTMbotuuTMPqcZO7C3GMd0d+Axr6XUHjtZa eHJlngZWlmRy3nIYfJONskQ+AKBEAsCnD2Pw03lXCVW8/UsHGRWD5eFCSdW8CN6e W/qKIeJjX0uHQ7jyJF4tdwrguFQLnAtOB76cirnlJcXIFXQh5w57BjbG20jHnthC KzwMoA+9YQxNLt2AN4cR2WRB80OPaHG2tb30JKOQCJiNOPe4Oz7ufbSkErdGClWh FqqLNdT96S++4/vKJn+b3DViyCA1Ryffn88v6nq2hW1pnpOipyUhKDDZZp8MukoF NIv1zXCgULMCAwEAAaOCAmIwggJeMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU933w 5kM0KtiIJd9Y66GCFj7WhRAwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg5tbWFzb21hbGlhLmNvbTBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkCBAIEgfQE gfEA7wB1AF6nc/nfVsDntTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAABcCAkgMMA AAQDAEYwRAIgIvJLGmFWSXgMfe3Iub9HZSigA+QzivC9szk56GGCXhQCIGMm626K ngaT94XW0oRCuXCY0Qf2rEJ/g21Z9QFil3ipAHYAB7dcG+V9aP/xsMYdIxXHuuZX fFeUt2ruvGE6GmnTohwAAAFwICSA6wAABAMARzBFAiEA4TojpSHdbeG117wofO6e 8bGSNz1+qLuUjpyD+HTjp8MCIEVNI3lnc355HCYOllrpoQn8xExZtgVIiopeQ9Ol ASq+MA0GCSqGSIb3DQEBCwUAA4IBAQAjtucFjjvPQ4CExcQI6BBXQ1P4n72PR230 j+wWMd6l7Q4LOmhl+fPdtCiurvCjdimkykWtPSC9pYEF9HX04ksltyo71Z9Sct3a tIvJZCVb/ZXqeYo9Z55TEbIXzmvwSUN77XCuFjkz3OrPqodOy6LBB7mEAqt/W+Qm fMn6HlxEygUXwKDJ0FSRQA/rqG0MMooYLGcseRFBgSsYmIqW9eZeMvv5/reQaP8+ kV/9dkoFgloNaG6UArEPCUFYsHjEd9m7eeisrKmK312AAqDAYCzDXqBfOylLzAnz 5neyTSUT0aGT+pQ5f8W5hjq/4nOM1UGHDknqrZuvXRdFz2lN+z5+ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA1Wj7D3Vc+sJoQjXkTL75 pB3QE6UI2P5u+68JGooJ8e/XRPc2xywtRCiWIwvd4RctGtqaj00SsanZznS3btgA bZUF21CDsaDiU6Coo2rY88lL/2TXF/cwKSq3LZKUf6t6s1VsUrVxU28OePQiBYrB W3NOVKKmASB7GWKrNgnousB+b1mz67wRuHfzHZQSVcUHI09jgT34sSxNJF6ZuEOe kumeC1AwsVbYW0DqD5ZCUuXdQUIBVF2sSExNdafgEpXY1gATkwVeBFcbA+dwtHxR xo9PIwfqsgl2N07ss5vPKHi2V9+OYV0am3KjhIIXuk6BNdOKM0Ny1fzYhrGF320l w3GZXVOGZ5vM/8BrSlgPJTcGoO+G1W//u04Cn9DWXQTMbotuuTMPqcZO7C3GMd0d +Axr6XUHjtZaeHJlngZWlmRy3nIYfJONskQ+AKBEAsCnD2Pw03lXCVW8/UsHGRWD 5eFCSdW8CN6eW/qKIeJjX0uHQ7jyJF4tdwrguFQLnAtOB76cirnlJcXIFXQh5w57 BjbG20jHnthCKzwMoA+9YQxNLt2AN4cR2WRB80OPaHG2tb30JKOQCJiNOPe4Oz7u fbSkErdGClWhFqqLNdT96S++4/vKJn+b3DViyCA1Ryffn88v6nq2hW1pnpOipyUh KDDZZp8MukoFNIv1zXCgULMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 317963609813212181482717676663605124944034 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-07 13:53:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-07 13:53:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mmasomalia.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 870637170507384871715888091943619188451858629985477549419079593059463359204667785492880807568278959902860188053588673264462750739613036526257505969065594292495121145337633223739667010054789345335096450859825421008361154760705858886925122531071749990827650841925456899606907856580716301880531805481858788989622096359813055467056929301311454954986847747841235964169570442006688873444954547396445366173403540349252902264854196993008586430673295543532460351167650052063154500775980641335565637317255111571369258581582181634681068980067695597584731887554446827521561181582774991272025977090021125740729946787810805129578686346199626227701591486781898127946544703233610267612628473413402391629111466420701596547730885452934331671523845523864595397152241198592413565867156392667772170443805698549787231426787449728012010780350860450304997783973662173527922889148286237788489526193347385318244534308638865568858362517885293814791851606207129596038267528551747204558542010445567527766508718573596411909567620733381211951707710060239742271247612985881918787634272671956890198202934888960624048018240688031986367664182299688152985041227521103406345021616936132742686325213424098383416194624189487368923071696617624213292937278860821582609141939 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f77df0e643342ad88825df58eba182163ed68510 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mmasomalia.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075005ea773f9df56c0e7b536487dd049e0327a919a0c84a11212841875968171455800000170202480c30000040300463044022022f24b1a615649780c7dedc8b9bf476528a003e4338af0bdb33939e861825e1402206326eb6e8a9e0693f785d6d28442b97098d107f6ac427f836d59f501629778a900760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c00000170202480eb0000040300473045022100e13a23a521dd6de1b5d7bc287cee9ef1b192373d7ea8bb948e9c83f874e3a7c30220454d237967737e791c260e965ae9a109fcc44c59b605488a8a5e43d3a5012abe . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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