www.caivano.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:10:e1:bd:33:a3:e9:1a:67:a2:6d:73:28:b6:14:f7:6b:6d was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.caivano.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:10:e1:bd:33:a3:e9:1a:67:a2:6d:73:28:b6:14:f7:6b:6dSerial Number (int): 267081434356562846713930810076953834908525
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: c2:fc:56:2b:3d:f3:84:a9:b8:c2:7c:a8:9c:22:b6:69:6e:54:4c:df
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f2:18:29:ec:d0:f4:d3:48:a0:c0:0f:7b:46:90:c0:d1:f0:68:91:65
Fingerprint (sha256): 2d:80:1d:e4:67:8e:3b:fd:af:ca:b8:22:1e:8f:a4:7b:d6:35:a9:a9:ed:fe:54:72:01:ea:45:3e:e7:91:8d:bb
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.caivano.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.caivano.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.caivano.org
Other certificates including the domain name caivano.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.caivano.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWDCCBUCgAwIBAgISAxDhvTOj6Rpnom1zKLYU92ttMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjgwMTI1MzlaFw0x OTA4MjYwMTI1MzlaMBoxGDAWBgNVBAMTD3d3dy5jYWl2YW5vLm9yZzCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAOiUvxhdR13IYCRu4d8bSkK0PHldRy/w Pjr+VJKs0Z7C8Qr2Ukh0T7pi/8Op8P+aa/v3FbnIfpzbPgmTB1gxlgJC0fDbv5m2 9k2OhrCBjTZh5KbfVLkNSXrqcC2bYN9u77jNwNsh/417aeVLLVVbAekFvbSnsaR7 kpI6dOHKkOLnPNnR8E4jWRO9aIqQRONIJUC7r/fGt1TvQkKTaY/obBCCBNUeag4p LPrMmDIwe8JS5RTefjjHZL/Md1LJcnJPukiPTL20aFGFAZFzifL8nEx89Twkz09x mpOePn5z616sWkQ1cddBcXQzt/YuFg4AQQONvqb47SsOzPPUPkcDYSo7oPlo11QT 7J1GzC/0cWAS2xQl/guGe11jkSF4bllKvkmgcDXZbvmuMco4Z+U10xr3LgvKGc/3 B+YOdda3UkftesIKS1RbiXJX8NtxVXYFMQC2bHZobwtSjY89Gch6vQ82hfeylili fpA20NYL+9SqHQ8ZffUtWXMrYYUpp42xFE0T+MDrJiQekh+ABkgGCREs1MJnE4kz uaGV9ZjSsxstAUPx2oFCBkXX3xoEOaguHHDGMxawWN2abyw3yp9jaR+izzVmxL22 cLx5j0m/jKWrxlQ/lX7AhgO4XTH9AZ9J3OPuUZGGIW/pcYrtTrPFKJw4KmapHmMJ pSMJ8kTfEeyLAgMBAAGjggJmMIICYjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFML8 Vis984SpuMJ8qJwitmluVEzfMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPd3d3LmNhaXZhbm8ub3Jn MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBgYKKwYBBAHWeQIEAgSB 9wSB9ADyAHcA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFq/EHq zwAABAMASDBGAiEA0DYydw3SygWXYKjmIhQwNIUL6I3jElqyC6552fFmdAICIQDP iw/bR+OyHEofOUWnMvkEhR2MQBrpiMq9UWW45pIfHAB3AGPy283oO8wszwtyhCdX azOkjWF3j711pjixx2hUS9iNAAABavxB6PoAAAQDAEgwRgIhAOg6DRS96BVFmCtC j3wwLTx4bk2PY5Ck1KI6FtXJTemjAiEAt6H2qT1BabtXVpxEFClDIV5l3oFE18qF 3vaav8iMLIAwDQYJKoZIhvcNAQELBQADggEBAD4FeNatZnDPdJiueXDcpKQS79lP DkczF3cFj3AbnNN/lKus70BZG76iWXeuB3LGPoqqquGmw2azBj0Yuw+qRzuVflN9 TjB1zFCZT/nqp792Fta/czfhs5xFYjuMXw7QPIsFdoD/FBOnWQdGWc02ehphDiCu w6KZ/3EvZfC7Zn71h/R6ZeD2W5lHY+wVRh753uEYRc4wb4cXTrfYq3nBArNqA4Z5 331otyS2bYi9HitRw+Hv72kdF1VewtNeZpKv0oS1Fhe99+D0qi0iuzes9cu+h7/A 16LvU6RQEcommqTPmP8GYElL9yuKG5eOPVNR01ugoJpBdxZkkZ4TyMxnn8U= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6JS/GF1HXchgJG7h3xtK QrQ8eV1HL/A+Ov5UkqzRnsLxCvZSSHRPumL/w6nw/5pr+/cVuch+nNs+CZMHWDGW AkLR8Nu/mbb2TY6GsIGNNmHkpt9UuQ1JeupwLZtg327vuM3A2yH/jXtp5UstVVsB 6QW9tKexpHuSkjp04cqQ4uc82dHwTiNZE71oipBE40glQLuv98a3VO9CQpNpj+hs EIIE1R5qDiks+syYMjB7wlLlFN5+OMdkv8x3Uslyck+6SI9MvbRoUYUBkXOJ8vyc THz1PCTPT3Gak54+fnPrXqxaRDVx10FxdDO39i4WDgBBA42+pvjtKw7M89Q+RwNh Kjug+WjXVBPsnUbML/RxYBLbFCX+C4Z7XWORIXhuWUq+SaBwNdlu+a4xyjhn5TXT GvcuC8oZz/cH5g511rdSR+16wgpLVFuJclfw23FVdgUxALZsdmhvC1KNjz0ZyHq9 DzaF97KWKWJ+kDbQ1gv71KodDxl99S1ZcythhSmnjbEUTRP4wOsmJB6SH4AGSAYJ ESzUwmcTiTO5oZX1mNKzGy0BQ/HagUIGRdffGgQ5qC4ccMYzFrBY3ZpvLDfKn2Np H6LPNWbEvbZwvHmPSb+MpavGVD+VfsCGA7hdMf0Bn0nc4+5RkYYhb+lxiu1Os8Uo nDgqZqkeYwmlIwnyRN8R7IsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 267081434356562846713930810076953834908525 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-28 01:25:39 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-26 01:25:39 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.caivano.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 948847863763875841495161406383013969587758690681446770509741815496426502486235409205395703447497729358490496999882626691866929684198915465263282110274574443242088665738416965253630138911782964134754769912724923116563768582823586126790324660884738354660165456902135606859194469581703672631570067298970040511286632834529620447405346074662919968342804277840843078264542282255900170729846263392601208380783898923000369957585092212181518603299034927466546794408813957065441702347281099234650577525285380796968523653610867155801333766893898164356399939505826813608740184748364467449775795553710981099424335289663353933419102255272168068168182228434881999665275142288096701220097464296049642160196537710256690254917168894622359331293873355645844084729548414142760153657470740562449420792845263833044484895672758184979071980421520820885760596963561075161286092351076898707072445210079325786155352897608305730773890397929939246173297764279022128665049207485179633404318070860570504919269435643071077277048927971403521237548179845000292710007236502409577483166160574768368076792968433697609861873881232384374854515676506781401438048026127183556159228911397297909505672143708883880315324144698264955484568943267828933130407128660805603306892427 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) c2fc562b3df384a9b8c27ca89c22b6696e544cdf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.caivano.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016afc41eacf0000040300483046022100d03632770dd2ca059760a8e622143034850be88de3125ab20bae79d9f1667402022100cf8b0fdb47e3b21c4a1f3945a732f904851d8c401ae988cabd5165b8e6921f1c00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016afc41e8fa0000040300483046022100e83a0d14bde81545982b428f7c302d3c786e4d8f6390a4d4a23a16d5c94de9a3022100b7a1f6a93d4169bb57569c44142943215e65de8144d7ca85def69abfc88c2c80 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 003e0578d6ad6670cf7498ae7970dca4a412efd94f0e47331777058f701b9cd37f94abacef40591bbea25977ae0772c63e8aaaaae1a6c366b3063d18bb0faa473b957e537d4e3075cc50994ff9eaa7bf7616d6bf7337e1b39c45623b8c5f0ed03c8b057680ff1413a759074659cd367a1a610e20aec3a299ff712f65f0bb667ef587f47a65e0f65b994763ec15461ef9dee11845ce306f87174eb7d8ab79c102b36a038679df7d68b724b66d88bd1e2b51c3e1efef691d17555ec2d35e6692afd284b51617bdf7e0f4aa2d22bb37acf5cbbe87bfc0d7a2ef53a45011ca269aa4cf98ff0660494bf72b8a1b978e3d5351d35ba0a09a41771664919e13c8cc679fc5