igani.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:91:93:f8:7b:a6:57:03:d3:8a:58:c7:0f:e8:29:2b:be:2d was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=igani.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:91:93:f8:7b:a6:57:03:d3:8a:58:c7:0f:e8:29:2b:be:2dSerial Number (int): 310874487711733302460756385504014577155629
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 50:a5:7e:cf:5c:6c:ce:e4:11:40:dd:8f:03:27:d0:c1:09:2b:63:e1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 1a:93:d2:86:4f:ae:6d:f8:73:d7:b0:cd:86:cb:07:5f:d0:17:f1:e6
Fingerprint (sha256): 2b:2e:d6:ff:f7:48:f2:19:4e:60:3d:06:1e:b5:09:d5:e7:da:01:1a:64:19:32:51:03:2c:48:3d:f2:56:37:89
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate igani.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for igani.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
igani.com
Other certificates including the domain name igani.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for igani.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSTCCBTGgAwIBAgISA5GT+HumVwPTiljHD+gpK74tMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MTcxMTQ5MDdaFw0x OTA4MTUxMTQ5MDdaMBQxEjAQBgNVBAMTCWlnYW5pLmNvbTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBAN4P9iuDoCcwyUeR9cLBpP9iZoDH7NrW7bJrp1Il CV36FjLX8KnsUhwV6TjzSh/saWyULm+fWgD1FcbnhmFX6ml0egr/mmVYkq5mdhQA svA/XmRbDoGwsAo7oYmUi51uniKYYjLU0FmUYCNujlF7GTjX3V3QDMIvWbIgGnlG GkF3UrX9ostA43CAvji2gJht8jmUg5VvQhh5p3EjB3e9B6K0pUAgAqyiEck3rfKT QV3HK35jR0yrrg3o+VvcWeMQu2FUY7tDpJVlzt231qeYmJCnn3V00iCY48qru1l2 WP2kjNPM/PXDsRLo4T//J6Vkxvp0NoGIISKg2CJqkUMNVXIAzdmdIKNlSFDWBHut 1Ej65WTUmaCyDVemBSZB7HDOnDA6cvXsnL0e7dAsHjP6ZHZ4pv3YABeDhTrjNBY1 o3RJdAextv5/JW/pzJYvC7vlrcEs4nzUMvQFqTz46js4PHU4dPkA9N34XJBOSZYR IT5in9uQkC8qxvH+6I2oIaSLbE/CBJUwS+nEJUdIArnCyEzPuKDQ9FpSyxPBNbCB 2m7vOhaERf2h/MVBoO967R0rb0vfxeTw+GoMLiqF316hG6UNMk2sVCGkyuj+vHqe BrVUG5YF9s6TqUi0ERMMrW8Yu5qnd3IUwahj2o2tncSr+dP8PsMz/voacwe085do OIt9AgMBAAGjggJdMIICWTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFFClfs9cbM7k EUDdjwMn0MEJK2PhMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wFAYDVR0RBA0wC4IJaWdhbmkuY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAY/Lb zeg7zCzPC3KEJ1drM6SNYXePvXWmOLHHaFRL2I0AAAFqxdbDVQAABAMARzBFAiEA h/F9TjS000wtGoL+Fj7SEWMjhP5KNfL4Cqh3BBdfa2wCIAQ2bj5TlF6Eqq9d974a BTswy/9MYqNm3TQtBL2ze/zAAHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV5 5hB7zFYAAAFqxdbFMQAABAMARjBEAiBL//EZkYWAut2ogoMtSayKwbMSB2D87FvJ Rvhw9MaClQIgVu+a0WTa+MTRe2zVBZY0iCBqBrIzb51j9PjPm9dXNiMwDQYJKoZI hvcNAQELBQADggEBAF81TsleJ0pyiKpG3BByz5VuUuoYPmJvWVmoltalXMmmXN2p V4PbDGNQt+9tjdfQ8Y0pOoDWwV/CZLl+rZoNjsB2C98WCscbDWGz3Uzu5YvEugDv Qjt+aKrmq5rPp9hwB+SWxujR69BjADz1MQGUr9o7GuGHWaSsP10922ccZkAd+3lJ LptE6Xb8t+Xq2DFmeDVP/Mwl+xaTUQpkn3Zr9bbKHtnH1ZNQaNONMOjHchArYO5H Rcii8CCmD7mLhtLf38rgayEfq5U89FnPQ1y2NJrXQ3opyOuiaiJfvKIKakmUmeZQ mRDQFI0OjbTiZ78KoeD8/TXRFJrykvEZjx5lh4Q= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3g/2K4OgJzDJR5H1wsGk /2JmgMfs2tbtsmunUiUJXfoWMtfwqexSHBXpOPNKH+xpbJQub59aAPUVxueGYVfq aXR6Cv+aZViSrmZ2FACy8D9eZFsOgbCwCjuhiZSLnW6eIphiMtTQWZRgI26OUXsZ ONfdXdAMwi9ZsiAaeUYaQXdStf2iy0DjcIC+OLaAmG3yOZSDlW9CGHmncSMHd70H orSlQCACrKIRyTet8pNBXccrfmNHTKuuDej5W9xZ4xC7YVRju0OklWXO3bfWp5iY kKefdXTSIJjjyqu7WXZY/aSM08z89cOxEujhP/8npWTG+nQ2gYghIqDYImqRQw1V cgDN2Z0go2VIUNYEe63USPrlZNSZoLINV6YFJkHscM6cMDpy9eycvR7t0CweM/pk dnim/dgAF4OFOuM0FjWjdEl0B7G2/n8lb+nMli8Lu+WtwSzifNQy9AWpPPjqOzg8 dTh0+QD03fhckE5JlhEhPmKf25CQLyrG8f7ojaghpItsT8IElTBL6cQlR0gCucLI TM+4oND0WlLLE8E1sIHabu86FoRF/aH8xUGg73rtHStvS9/F5PD4agwuKoXfXqEb pQ0yTaxUIaTK6P68ep4GtVQblgX2zpOpSLQREwytbxi7mqd3chTBqGPaja2dxKv5 0/w+wzP++hpzB7Tzl2g4i30CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 310874487711733302460756385504014577155629 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-17 11:49:07 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-15 11:49:07 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'igani.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 905935348931589933747515877806365426233829023332287061807741466456079407130163300260759106618394773215806075242969968880559816599280167469706772810804677797133962197998297667821614531235905476175187045074720810387738784890007181752053990608489268555586303652942151046078723560274526300497880571371838957476207855507468798671127463235561516904102824062802224718701138361449388458005315437956957605697364781090680666149789937804663529240113969263314455034014212836040825190510545023082856683458353790110116319685315567846772428891999048144818858100939259171410265147693119005965352776260553846905403825076804187400239509296397301373969949930201458037626699497611109105512439357518325088619859025337941162347659814658454906182206811195086520671573516913795793736436796212307000024808503909256183250231104380818797543674931824911025097178927202775625089892841700826399095388897590937822859326260860936517409240892681833969679902400176994945627090345365994954065326602090939676642504868451458882376010153566194831615992010132400257729528603857510831187748012599886101038859460642183587056316435248624738072158329479877511263425775273220860731749575201814726620292985161329750761196379554133506317834842705514340910577042021558185641937789 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 50a57ecf5c6ccee41140dd8f0327d0c1092b63e1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'igani.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016ac5d6c355000004030047304502210087f17d4e34b4d34c2d1a82fe163ed211632384fe4a35f2f80aa87704175f6b6c022004366e3e53945e84aaaf5df7be1a053b30cbff4c62a366dd342d04bdb37bfcc0007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016ac5d6c531000004030046304402204bfff119918580badda882832d49ac8ac1b3120760fcec5bc946f870f4c68295022056ef9ad164daf8c4d17b6cd505963488206a06b2336f9d63f4f8cf9bd7573623 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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