lozioni.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:23:db:b3:6e:47:b5:9f:36:f1:8d:53:ee:cf:d1:89:06:04 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=lozioni.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:23:db:b3:6e:47:b5:9f:36:f1:8d:53:ee:cf:d1:89:06:04Serial Number (int): 273538773226474625677044386402055024608772
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a6:10:4c:7a:77:c8:1b:62:64:18:d6:27:40:7b:59:f7:35:b9:97:19
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 7c:95:1f:37:7e:37:34:14:63:20:2d:a2:59:63:91:2d:e4:82:4d:75
Fingerprint (sha256): 3c:28:52:72:a7:fa:59:00:62:9d:cb:f3:48:2d:04:37:f2:d4:f0:7b:41:8f:15:0f:1f:30:b2:36:43:22:82:83
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate lozioni.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for lozioni.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
lozioni.com
Other certificates including the domain name lozioni.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for lozioni.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTzCCBTegAwIBAgISAyPbs25HtZ828Y1T7s/RiQYEMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDA0MDIyMTQyMzhaFw0y MDA3MDEyMTQyMzhaMBYxFDASBgNVBAMTC2xvemlvbmkuY29tMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAtmrhIB6k5R/LiSVozudI3R31Kca8BovVrYql +uPIvJJzFJmFlKXGdlsqAkZjMs1Cc0m9WW7Sptgy+4mM1Lmz3hAFeqIyDKzNEAY9 chRP0z9tSWF0ij72p93+nwng7DuP9pAPz3XAEf41jnFN73ZWFr8LUG7njAPo5q8n /0Z/y0F1xWBUStdq2FV2unfjReTo1DbKftHnlgAil7+d8KSx+qf0E/0BBJ7qDG0P bhvnkavvxMpTUlaP3kX57ZNZ6JFsRXR6JMNDmRspLyXLv7r/vjyaw26FKVuiH1V4 tN+KZW4UZ19KSBYDLZsjaTbV40Rs6E05a5RmP/9j6yfTU11xJXI1efbwQU6GyqTj DdDVnSdbie7KBGK+jKByJ6/tKhCkDzvOmczbwT1/o/q+kpjFKgvo2yJWjMW3pinu xMaZiXrauhSIqEXHeV4cqfP9BuppkVHRX8pp3x4WfPAJX7YPPQIsCgJEDsFIoKWl n+CqhMrrsNs6b78rZw9thlwyA14fnmEBH50WiBUfS8b3ox/+/1HvQRkrSOR6+nlh b9Oj9qTeYukTTcWDkrpOiaYAEMoAxRV5WusXcZFTRD86RLRrh+AwgSuwweppDU3o y8q/tTl1vF/ZGkbmoxjIQUihEam0aOcsWAzksUdYh5BfPUydTyyFk4u+nKVOZKIU M6zOV90CAwEAAaOCAmEwggJdMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUphBMenfI G2JkGNYnQHtZ9zW5lxkwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAWBgNVHREEDzANggtsb3ppb25pLmNvbTBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYEgfMA8QB2 AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABcT0PgJ8AAAQDAEcw RQIgRvLj5/hmdGzL21Ns1lbed88ceGi73tUkOz+mima9Of4CIQDXVeFOwzId0QbB 5Zk272jm2Y5M7RhA60hqtYwFH3mhHgB3AAe3XBvlfWj/8bDGHSMVx7rmV3xXlLdq 7rxhOhpp06IcAAABcT0PgJ4AAAQDAEgwRgIhAJjbM/yM9cQKJEGVWSl+nxZaRaFe qQFZha33OTXFrPt6AiEAzC4cgAq8YOyInYp4ZbvioykzTUtvUQpsgOHe8KmgGUQw DQYJKoZIhvcNAQELBQADggEBABm28JDg9z6YkUXPxBmentnDoYHC03UVhUUoRpnC 4Il585Vfdktzz+UzXwoDKN4NbLhdn7IteyTzx7D2SiHrDST6pAWS5jTVDzkhjNh4 iRx0KMf5Rw6p6wFjO0HenAyhbgdL4AnaHYNI4khKxeee1+3IEkVKchRrz0O7/4VV 0UJsRjYsn0vdFXnI2v+TERqNPnPJrmduj/V9NkImzMcedwtQA0E5TxGkI8HYozYW LnRPNWbz0IRl8Y7CX4AA1Xe4V/KZPnWQ2umuNe+ZJ4S7ioU3ulHpkynyA8Ugwx7J QQpQLgojD6wzjRsTHedn+H3QGJ+fI9hHkfZEG16qYnIxoSg= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAtmrhIB6k5R/LiSVozudI 3R31Kca8BovVrYql+uPIvJJzFJmFlKXGdlsqAkZjMs1Cc0m9WW7Sptgy+4mM1Lmz 3hAFeqIyDKzNEAY9chRP0z9tSWF0ij72p93+nwng7DuP9pAPz3XAEf41jnFN73ZW Fr8LUG7njAPo5q8n/0Z/y0F1xWBUStdq2FV2unfjReTo1DbKftHnlgAil7+d8KSx +qf0E/0BBJ7qDG0PbhvnkavvxMpTUlaP3kX57ZNZ6JFsRXR6JMNDmRspLyXLv7r/ vjyaw26FKVuiH1V4tN+KZW4UZ19KSBYDLZsjaTbV40Rs6E05a5RmP/9j6yfTU11x JXI1efbwQU6GyqTjDdDVnSdbie7KBGK+jKByJ6/tKhCkDzvOmczbwT1/o/q+kpjF Kgvo2yJWjMW3pinuxMaZiXrauhSIqEXHeV4cqfP9BuppkVHRX8pp3x4WfPAJX7YP PQIsCgJEDsFIoKWln+CqhMrrsNs6b78rZw9thlwyA14fnmEBH50WiBUfS8b3ox/+ /1HvQRkrSOR6+nlhb9Oj9qTeYukTTcWDkrpOiaYAEMoAxRV5WusXcZFTRD86RLRr h+AwgSuwweppDU3oy8q/tTl1vF/ZGkbmoxjIQUihEam0aOcsWAzksUdYh5BfPUyd TyyFk4u+nKVOZKIUM6zOV90CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 273538773226474625677044386402055024608772 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-02 21:42:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-07-01 21:42:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'lozioni.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 744198462158352942734363546766783112165219002972763168394850803846161596925252015867774968711675134158089700093128122862500288788196970054911312603504264512882542354405973245577947416118747964657160748570086968975414881219544872858751719624014533456982763869259342762762197210848185176600134589724036584977031197427613330745570060422660293436190145619286632958958644772239910498405060729234202689757059289684269680214653054865846610282493341247683563872822843414529992336411280492686378292495101006219376415276325008927774093971106625826673410964340392899548777629552455761606579195622187404078049082272785113489018220373217287437547076598519999056532304985891561970666506668495990394141635927617148014160758691781601416876243629712621635262952951837765521655425425441032982727292437319019346680840531730672689964814959612050862839908235214752501197439818106596184269880858268564698010304723577576490065263212501957544833198915270338204884864301039790514643064424735320883049859603701622916411633391918650423648216749418844998253302579261361897065755146653027809566244758764653249692024852852021343107360984018711858478297434190425650096964544347301893421400333133639445842915617331461686703656945558778664902493365314439429506357213 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a6104c7a77c81b626418d627407b59f735b99719 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'lozioni.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d913000001713d0f809f0000040300473045022046f2e3e7f866746ccbdb536cd656de77cf1c7868bbded5243b3fa68a66bd39fe022100d755e14ec3321dd106c1e59936ef68e6d98e4ced1840eb486ab58c051f79a11e00770007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c000001713d0f809e000004030048304602210098db33fc8cf5c40a24419559297e9f165a45a15ea9015985adf73935c5acfb7a022100cc2e1c800abc60ec889d8a7865bbe2a329334d4b6f510a6c80e1def0a9a01944 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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