bottegai.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:39:c7:b5:f5:75:09:5a:c4:cd:cc:4e:fb:37:ce:91:a5:74 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=bottegai.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:39:c7:b5:f5:75:09:5a:c4:cd:cc:4e:fb:37:ce:91:a5:74Serial Number (int): 368110699796890015073037046204348215960948
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 77:19:6c:70:f6:c4:91:fc:22:dc:e0:6f:66:36:ea:10:ae:63:e3:2b
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 5c:d6:ad:64:d3:c8:a2:9c:5d:c8:9a:6e:5b:0c:15:48:5d:8b:f9:c7
Fingerprint (sha256): 31:2f:d9:3d:a8:83:87:d6:a8:b6:e4:62:5d:ae:2d:28:31:42:08:86:e9:0e:0b:0e:7a:da:1e:65:af:50:1f:e5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate bottegai.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for bottegai.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
bottegai.com
Other certificates including the domain name bottegai.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for bottegai.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISBDnHtfV1CVrEzcxO+zfOkaV0MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTExMDgyMjMwMzRaFw0y MDAyMDYyMjMwMzRaMBcxFTATBgNVBAMTDGJvdHRlZ2FpLmNvbTCCAiIwDQYJKoZI hvcNAQEBBQADggIPADCCAgoCggIBAOh2Jo1jF4OSoX87Gqb5gPa1+G0SCoEbV2Fu HWdwxOh2poId/xc+o/K5Dv9jlITBqTeqTy0stQAfKwwa9uXct1R4x/AfZzSGKsgj 6iWW7wfPLEZABPZuuTPUFk21CLzDAy6uXJ1RdyzEnH8J5kpf2OD7hjXCvnWxcJqC FIxEVRugH5DBq25g8vBqABJAb+bsI/g6gGUEY2INyaMtgL/kFGRjsNjUAhUlXrjB g6LqOoTIgH4rOzHeYOzbK2wXSFo1bgi/xhqP573w7n6bw17/BNaycbAe8VNXpAe+ N+hvo4Zv8yVZC/WqzCr3l21dv0MeCtO0ErIGe/AhM1prP7y0Jvx/wWLhRt44gMCj 4UzPNuJFe5lR889PXPSGQR1+/S2Ph34wof4iqdwje4vUjqlVHFq/+wDcmk2Ojrf7 HjOYmIfTzFNn4Tns5j5HPN94ISbHjmoxMPIu+JxcEtTTeenJ7DyR/pHYc46XPoWW U3wiy91xn814g8DL23QA1YNiUo1wtz8gNi6JomNRyGIrjAlwK0eVHcsh5WCwTVsl oyPlCKR7zFI9mYc8GitEu3dbpJxFl5ny3bkUxd6bXkLib3P9oNy+Gqox/xx47yAs MtqYfm2zy/gBckpk16vs4QClvXtkojPmtZZq8I90lnNXlYO7Z+0jG/Fc27Y6+3JH CFkNj9dhAgMBAAGjggJjMIICXzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYI KwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHcZbHD2 xJH8Itzgb2Y26hCuY+MrMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyh MG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgz LmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgz LmxldHNlbmNyeXB0Lm9yZy8wFwYDVR0RBBAwDoIMYm90dGVnYWkuY29tMEwGA1Ud IARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0 dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBgYKKwYBBAHWeQIEAgSB9wSB9ADy AHcAXqdz+d9WwOe1Nkh90EngMnqRmgyEoRIShBh1loFxRVgAAAFuTVrrAgAABAMA SDBGAiEAjLj9M3m3zce/m3XCErcP7GmTxpLX9O1sGdCPwxYpQJUCIQDJRvJiOxbG L9j6ZWWfYPOirQbMsWWv+3ocXHzEmZZa3gB3ALIeBcyLos2KIE6HZvkruYolIGdr 2vpw57JJUy3vi5BeAAABbk1a6u4AAAQDAEgwRgIhANRQF4SQXN60gJ8OQL5ItClY LGEfNr+x9ME2buxJ5rJxAiEA8ZIjX+fC+N7Ww6ffIyV21NV+JUfnAhosCTqM3O3L fK8wDQYJKoZIhvcNAQELBQADggEBAGbd4l8wcy7hpAAb1nj/F0oqwNN2w3aQpYG8 kgzMzsFPhz8oWxWImDxLIWKr8stLMRsD5EUH4RNj7aIziT7kRZsMlqEQrUOv/UYJ z23UYGLe4rYARQixZOt1GEswjhjnWJK63N02JYXHPgoeFCzYVFq5MBhRR/OhOxmj LTTt8lM2hYvPOlm9pInDNiq7r4W/75XAXE4ptg9W5O+/i+1TwL8aNc3JzJmqvBm5 OOPnWLBQXgrfzJCwGM0JQi84p/skiUh26MyLvpnAz2Fx+3bt4/V66DUjpYvpa+q4 RNtF/kpfCgmf1/moRpTWmtPQozMJqK4HKNpiXCpKFYywctacbD0= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6HYmjWMXg5KhfzsapvmA 9rX4bRIKgRtXYW4dZ3DE6Hamgh3/Fz6j8rkO/2OUhMGpN6pPLSy1AB8rDBr25dy3 VHjH8B9nNIYqyCPqJZbvB88sRkAE9m65M9QWTbUIvMMDLq5cnVF3LMScfwnmSl/Y 4PuGNcK+dbFwmoIUjERVG6AfkMGrbmDy8GoAEkBv5uwj+DqAZQRjYg3Joy2Av+QU ZGOw2NQCFSVeuMGDouo6hMiAfis7Md5g7NsrbBdIWjVuCL/GGo/nvfDufpvDXv8E 1rJxsB7xU1ekB7436G+jhm/zJVkL9arMKveXbV2/Qx4K07QSsgZ78CEzWms/vLQm /H/BYuFG3jiAwKPhTM824kV7mVHzz09c9IZBHX79LY+HfjCh/iKp3CN7i9SOqVUc Wr/7ANyaTY6Ot/seM5iYh9PMU2fhOezmPkc833ghJseOajEw8i74nFwS1NN56cns PJH+kdhzjpc+hZZTfCLL3XGfzXiDwMvbdADVg2JSjXC3PyA2LomiY1HIYiuMCXAr R5UdyyHlYLBNWyWjI+UIpHvMUj2ZhzwaK0S7d1uknEWXmfLduRTF3pteQuJvc/2g 3L4aqjH/HHjvICwy2ph+bbPL+AFySmTXq+zhAKW9e2SiM+a1lmrwj3SWc1eVg7tn 7SMb8Vzbtjr7ckcIWQ2P12ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 368110699796890015073037046204348215960948 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-08 22:30:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-06 22:30:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'bottegai.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 948360284615039977505820082268488233822124961348777092901003055246465894783323593566966875051439545030686886142783413563992422029350065817257195744825983484743368074023664180953890368820330634779385229861572911521720456383590211651274580032568758519829843937857078634072557956929328747179197604949082040379798675688298234657344772184876526636273660464189223695893310263071764016747717150266139519779939395420678509070142667195115568312669157315383664195339074904858340118789350444795030148151264045957090231378644403657399324924352137297609303666593455814157458186342565862811127178007113308618452794847415132201612565584499173717076328376277273425657572258205421434537982968715610564898794626679372770894040544238800328368703864706212410362064865690607558726480823310205229209162313806156083961885922621229224427389874717540844983432007618998373437044191728274889332588241168882537589196514355437233636724101586975129960155117245140930195352318291564259936453132252151999690068525030946757905164789249959925355145324324834396115428174495824895670484262996390883616554893144509420645900188460253514846741403161926708607231136879806935940111402074732784950753217591770896408427768960908220763997481358665340266063095277843437914675041 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 77196c70f6c491fc22dce06f6636ea10ae63e32b . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (16 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'bottegai.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f20077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016e4d5aeb0200000403004830460221008cb8fd3379b7cdc7bf9b75c212b70fec6993c692d7f4ed6c19d08fc316294095022100c946f2623b16c62fd8fa65659f60f3a2ad06ccb165affb7a1c5c7cc499965ade007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016e4d5aeaee0000040300483046022100d4501784905cdeb4809f0e40be48b429582c611f36bfb1f4c1366eec49e6b271022100f192235fe7c2f8ded6c3a7df232576d4d57e2547e7021a2c093a8cdcedcb7caf . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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