www.demenziali.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:74:66:43:a1:89:f5:3e:d2:e4:00:6f:f3:d2:56:7c:ae:cc was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.demenziali.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:74:66:43:a1:89:f5:3e:d2:e4:00:6f:f3:d2:56:7c:ae:ccSerial Number (int): 300945544773967289183193501550993540427468
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 6e:38:06:ee:33:dc:81:dc:b4:31:a5:3f:8e:0b:b1:3c:28:9f:1d:cf
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e0:ac:e7:3a:e3:47:fb:5a:85:ba:0a:ca:6d:cc:97:44:3f:07:d4:8a
Fingerprint (sha256): 2e:07:b9:22:22:97:0e:fd:37:83:7e:a6:d2:57:54:18:1d:58:66:4e:8c:42:d5:01:d0:b1:a3:82:6c:c0:0d:9a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.demenziali.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.demenziali.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.demenziali.com
Other certificates including the domain name demenziali.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.demenziali.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgISA3RmQ6GJ9T7S5ABv89JWfK7MMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MjUyMDM2NTJaFw0x OTA5MjMyMDM2NTJaMB0xGzAZBgNVBAMTEnd3dy5kZW1lbnppYWxpLmNvbTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAN8G8Y2iYBFoaGIkpVvoIKsadQft 8127PIPODWC58hUhYR1qIOtRSH6To96YeQMh7RQCKL3XXy1MNEkp4WDQGqlo0D4Q ZLyFp+ig8exgXYIOscBjt0Tgv9heal1b2+A70OkIGWMXfwniC9MEeXJCCe+MxVNi EN/6j2qc/AJ1MHmbZZ2TdJxWL+IJB1i6BIVzXa/tWiz+yTkbIoZgQhNYWYjiiYKM JBXHCU8u8v5Kly3JwUcdEhvn89lLCYU5JPA0+yiQB1X5gwENbxo2Z/qiY2W68J1K rzdTl93UrLCRvoOMtYcirtwmwUpDXGA5WtVck9X4+okRisZ1vJnFBqdpVyB08Qj/ Ne/oEvu2esSUR6gSengcxbEmc6lKocpdSYzWqccoDXJA0Nm5czGOILVFbEq4tf9M F9cy1p4dF35s0O5gNVnsgWrdG3QWFioGuoFdj4ZSpAWRGIHifl27gXy1YnqIY0sm kPLIGRpSE+39G8+bgTA0GK9D1HBnldXWuC1a9yhZVaMMeqo2iQhmWVjO0HeV/ax3 LP+fmT8ilhA+dugTTzXrn23HE7qKm5e2snQbWJsAXfMe4Fu2DQcF5b436zX5F5Xf b34brlRmLHwqsdZtz1abIJ6DevWSu+Hb8a28fUU/OqUFbBc9tboxWFAd8C4ZiW1s gJFi/NzG7+ybqFZJAgMBAAGjggJlMIICYTAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FG44Bu4z3IHctDGlP44LsTwonx3PMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISd3d3LmRlbWVuemlh bGkuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHW eQIEAgSB8wSB8ADuAHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYA AAFrkJHz3AAABAMARjBEAiAjl7TIY+RQt13SvQ2xkSS1ZnLHUvpy5iKdc0/ILKa4 zQIgD+zZxE2A73bxynW43nqUhe+Wrzc0XvJcg2atoSO4e1sAdQBj8tvN6DvMLM8L coQnV2szpI1hd4+9daY4scdoVEvYjQAAAWuQkfXwAAAEAwBGMEQCIDYuTWusGy5f Baby747j4voqfwnuiQ4lnptPnY1MlMBmAiAGz1f+lM4QHGPMzn7owA0Dgz5X9Q93 wDDWeyJ0jaKNtTANBgkqhkiG9w0BAQsFAAOCAQEAOb2JZKifNqJ5OyNXVZi0S8rX cfJ+pOCjI4+HPeVBaVQY/T9TcLq8Seb0RnLyW0vFNankFquFDGWKLNYQwy0MmqJ6 MY0jFD7zVDUyU+BVw7CVDgJ2V7I1Nlgz7kWQLI1TITCPUbPkmQfG8fL07YOkN7Zz Wx2mCIfhYnSCfbP3Js7aIW1sbGoLfhbIFUGI9gzKrB7LajxD++LfrfXXH23kl2Rw 2aLUv60tXuWF+JceP9BzQ4p8zQDNt7R/nysUGtxIikwu65tNwv6NvCCckXv6lAYn gat574H/NN7oGE/a0DiuYEMos0n6yyeooZ2z8x1T2kkRZGMNxgusBuOBjQFBVA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA3wbxjaJgEWhoYiSlW+gg qxp1B+3zXbs8g84NYLnyFSFhHWog61FIfpOj3ph5AyHtFAIovddfLUw0SSnhYNAa qWjQPhBkvIWn6KDx7GBdgg6xwGO3ROC/2F5qXVvb4DvQ6QgZYxd/CeIL0wR5ckIJ 74zFU2IQ3/qPapz8AnUweZtlnZN0nFYv4gkHWLoEhXNdr+1aLP7JORsihmBCE1hZ iOKJgowkFccJTy7y/kqXLcnBRx0SG+fz2UsJhTkk8DT7KJAHVfmDAQ1vGjZn+qJj ZbrwnUqvN1OX3dSssJG+g4y1hyKu3CbBSkNcYDla1VyT1fj6iRGKxnW8mcUGp2lX IHTxCP817+gS+7Z6xJRHqBJ6eBzFsSZzqUqhyl1JjNapxygNckDQ2blzMY4gtUVs Sri1/0wX1zLWnh0XfmzQ7mA1WeyBat0bdBYWKga6gV2PhlKkBZEYgeJ+XbuBfLVi eohjSyaQ8sgZGlIT7f0bz5uBMDQYr0PUcGeV1da4LVr3KFlVowx6qjaJCGZZWM7Q d5X9rHcs/5+ZPyKWED526BNPNeufbccTuoqbl7aydBtYmwBd8x7gW7YNBwXlvjfr NfkXld9vfhuuVGYsfCqx1m3PVpsgnoN69ZK74dvxrbx9RT86pQVsFz21ujFYUB3w LhmJbWyAkWL83Mbv7JuoVkkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 300945544773967289183193501550993540427468 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-25 20:36:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-23 20:36:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.demenziali.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 909871280620152454141333223015642564131734828587115886538447269424436594095007818691555938829141259781361434558568179267989746771237645292932346819599796459690140455822879639758601801290625902480478058255477104443920982854493983046508846211685888333840223321150811576221884897596822054330440912113855529594349882889908551698928986012039377941324017016489544440742289700064933427866411162919142803272376385043796046526989319000812827578370706411125249798058801874036889918321362748727728899611113640052566129428068104579023963916095985438073773406869779984766055606255960519574044314114720780013093493036793391940925511319870858780589060937960223267885669547247728773245249901947771723906438559716994176019816842216581130362962112459044397162676013753308474106675868566510733913604210084432333378907326280424624465998931134670709064895410063853521940335505280872182319952358340216772998817769783900990898952338937193030722115534571952801258338227970854088022578439561878096694700346497971054576360270757315249890817485018933525749517417604851722141545464839072025191301035384417503315527372379656086100415300010872893575608273597920950373816483663504900566145897249811129272815043900405014604075770650624741224077525830620295180342857 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6e3806ee33dc81dcb431a53f8e0bb13c289f1dcf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.demenziali.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b9091f3dc000004030046304402202397b4c863e450b75dd2bd0db19124b56672c752fa72e6229d734fc82ca6b8cd02200fecd9c44d80ef76f1ca75b8de7a9485ef96af37345ef25c8366ada123b87b5b00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016b9091f5f000000403004630440220362e4d6bac1b2e5f05a6f2ef8ee3e2fa2a7f09ee890e259e9b4f9d8d4c94c066022006cf57fe94ce101c63ccce7ee8c00d03833e57f50f77c030d67b22748da28db5 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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