www.sfratti.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:bb:61:d2:ea:4c:57:84:50:3e:b3:3b:09:84:8d:ee:aa:66 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.sfratti.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:bb:61:d2:ea:4c:57:84:50:3e:b3:3b:09:84:8d:ee:aa:66
Serial Number (int): 325099690659559934519579957488174175791718
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 1d:47:96:7f:de:9d:19:7c:54:2b:f4:57:f3:e5:82:0b:51:8e:35:db
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 4a:1c:01:0f:85:f0:63:27:14:b6:c4:86:0e:bd:79:70:2e:9c:89:f2
Fingerprint (sha256): 3c:3f:71:bd:62:a3:2c:15:05:8b:83:31:3e:ab:d8:a6:35:53:7d:4e:e3:34:81:90:e6:dc:e6:01:5e:e6:fb:f5

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.sfratti.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.sfratti.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.sfratti.com

Other certificates including the domain name sfratti.com

(limited to 100 certificates)
sfratti.com
sfratti.com
sfratti.com
sfratti.com
www.sfratti.com
www.orlandostemcell.com
www.sfratti.com
www.sfratti.com
684.me
carlentini.org
www.sfratti.com
experts0.com
sfratti.com
sfratti.com
sfratti.com
financialfreedomsteps.com
www.sfratti.com

Certificate

The complete raw certificate details for www.sfratti.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 325099690659559934519579957488174175791718
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-16 16:40:07 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-16 16:40:07 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.sfratti.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 654199875791540670083359653953611689945789749729330994293379067160336658847649124639445245861278235109210632272674008826572749451270508255894249650138757289813418394879934996185655592285507136052525038242934515483894433713964900799901177528372450762782143051800250097636018743340447850575590040251582860409327393385736661221199255617830214415408919821679917965398867616700011965444542574173713789672412637005594401716485303508988026376052347706191050492756617449659879983030557634194623294876646629316603182649016509375808541585248758086661962592077201666291611639704030531277837343232356984623256371862631097799850162080143132947019085995822184392040479871469186394013741654425186845424621609074780029450582554683177307712082047390557080780512435416245730133909437831880631209881900709639818993534359416259218018051233215500413713679436569727400569627918556132767475698877753256443297282581713776013844253330580135599415875225239282917059517261847505143388335518888439299715258825011576767713477617863309052037052990739373200190996932663270114375013669486274852545957012239069310695228661234227905861364822570614042140159234435365238581310818611773488435818848859806165887282245874653502088750078773182767409829234135566081511336543
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1d47967fde9d197c542bf457f3e5820b518e35db
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sfratti.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f00076005ea773f9df56c0e7b536487dd049e0327a919a0c84a112128418759681714558000001704f160148000004030047304502204f8a9ddc800ff974f5c8ea7f16310759fa88e74e44e83f4b4864386b1be7281a0221009b79580e205ad0ce4fcac40d60f6234ba556b5b6babf26a9ee3d3651c31921f4007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001704f1601380000040300473045022072c3530f931d2d3ca6f5938d34a7b0730d7b995a449e80beb515161a9b49a980022100b797559c7b26fe1f958f79d07e68913b1a8b0bd8230175c81edb02dc117b95b4
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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