taggia.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:ef:c7:e4:ed:7c:46:28:a6:46:66:72:4f:39:da:fe:1f:a2 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=taggia.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:ef:c7:e4:ed:7c:46:28:a6:46:66:72:4f:39:da:fe:1f:a2Serial Number (int): 342930048521007058217171829610395060805538
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 57:04:19:9c:c6:b8:70:b5:ce:8e:23:66:ae:b2:6f:d4:77:a8:c7:5f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 20:df:73:39:98:ee:89:e6:0f:bb:81:e3:0c:75:d9:f4:dc:5d:38:ff
Fingerprint (sha256): 45:9c:ab:62:a8:46:9a:f4:5c:2a:09:d1:f1:77:3f:25:ce:4a:6d:6e:7e:8f:81:21:dd:6c:4d:73:b7:97:b2:12
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate taggia.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for taggia.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
taggia.org
Other certificates including the domain name taggia.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for taggia.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTTCCBTWgAwIBAgISA+/H5O18RiimRmZyTzna/h+iMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjgyMzU3NTJaFw0x OTEwMjYyMzU3NTJaMBUxEzARBgNVBAMTCnRhZ2dpYS5vcmcwggIiMA0GCSqGSIb3 DQEBAQUAA4ICDwAwggIKAoICAQCgvJ3eDzpm6oai0J6RSsS7ktAeVd3eRDn2X9u1 9GOk1nBpY9ZTMYvmwRD+BDUG3T3goGMtzn/nU1McnRKx3QyItXVpmVBCTIeOGf2v CXOdhILy8+frQahR9WgTkgSktlxO9PwKROYqPeTLBQLyNhjVsfqGvZGogItL2VAr DyOYGGkZIrdALnYenzhz1MD1i+cIwIRS4CI0a5nB28t+jLRtX4Vu8BBzjW9jaMp2 beyyVV8670aYKvUlrj27boQZCZ12B8EDIIcW9YOTCSb4Wj1XDUkv39Vg4q/Oo0X3 J4orQW8qFIDD4Zl1bMDarlUs5sToCdbZaU6dnEJojNycOBTdy8OJJv1utZEfeN11 QzuVHYEtP3Vzr/kgr1Qub4CcOV99lTOaWYOMrRXK2H4KVO2RNUIb2jX+XIjy9hyC 3ISh6ETReYtNJifd0D8pVNg9Glf8qZHFlQ1krp3RIO9wI66Q+yp4zFfVVzQdGFrh 9tR8QfAiiq5FYMqqswYpYproaRQBEqEfr6RI6WxuuK5R1M0a7dB5Hk12stN+fJDg 9zoYcYBYQgXqAn9USCDrueavwXKrQsrkkGEB8VB+Hnji4QsPIw7pesMzVV06AsvQ SIWjidjVMKNG9JcaGr+V/8jVrdPvHnHsJ9VDVcv7Gem9DQXWkaXXmC2T2Qd/hBBP 06sYZwIDAQABo4ICYDCCAlwwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsG AQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBRXBBmcxrhw tc6OI2ausm/Ud6jHXzAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86jsoTBv BggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14My5s ZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14My5s ZXRzZW5jcnlwdC5vcmcvMBUGA1UdEQQOMAyCCnRhZ2dpYS5vcmcwTAYDVR0gBEUw QzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDov L2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgB0 ftqDMa0zEJEhnM4lT0Jwwr/9XkIgCMY3NXnmEHvMVgAAAWw7O9XJAAAEAwBHMEUC IER3VRVK1qg2JPFl2hoeAu9uDBZqX4cD4AJg5RZBQgLaAiEAsRx5u5x7YFcZ6R+8 gXF2WCi4w0q32MVgF5syh2JNACQAdwApPFGWVMg5ZbqqUPxYB9S3b79Yeily3KTD DPTlRUf0eAAAAWw7O9eqAAAEAwBIMEYCIQC5Uhu/iE8Vkgl/FBd+XXW0NoalP1Gc Py55Y4fO1sEFtAIhAPURs13f93/ebx/q2RxWgpXXPjxt9jTc426YZypNHlAYMA0G CSqGSIb3DQEBCwUAA4IBAQCKJCgfxFM57Ib1qljrQC23oCFTmQorYzBsjxm7p/O7 3TT8mWENpZ4cB3zrOyuJM5iwzkmW7n8uR94XinGeciRIuBiYtdNfj3gh5DSCxU96 LoJf9+ReKZffhoYjmJz5Pv10MwHmwbs1FFyAkX3SZ+Cke6aavjcVPekj2Asrrfla Wg8Iqo6D5Kqs8YP8mjrdpFpcspsmsIQeg84+/UBSD0bFeaqOV8DIpIP0Pqld3qDX mWQLWTU1blkgtDpaXtreFIS65XYvqoGNuuKpNWnifVDaa7cxav8jCtHbdyLwEFPG dy3hxes1qv0m77kQFkisfSqu1mdm1+daPPz97X9FkKK/ -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoLyd3g86ZuqGotCekUrE u5LQHlXd3kQ59l/btfRjpNZwaWPWUzGL5sEQ/gQ1Bt094KBjLc5/51NTHJ0Ssd0M iLV1aZlQQkyHjhn9rwlznYSC8vPn60GoUfVoE5IEpLZcTvT8CkTmKj3kywUC8jYY 1bH6hr2RqICLS9lQKw8jmBhpGSK3QC52Hp84c9TA9YvnCMCEUuAiNGuZwdvLfoy0 bV+FbvAQc41vY2jKdm3sslVfOu9GmCr1Ja49u26EGQmddgfBAyCHFvWDkwkm+Fo9 Vw1JL9/VYOKvzqNF9yeKK0FvKhSAw+GZdWzA2q5VLObE6AnW2WlOnZxCaIzcnDgU 3cvDiSb9brWRH3jddUM7lR2BLT91c6/5IK9ULm+AnDlffZUzmlmDjK0Vyth+ClTt kTVCG9o1/lyI8vYcgtyEoehE0XmLTSYn3dA/KVTYPRpX/KmRxZUNZK6d0SDvcCOu kPsqeMxX1Vc0HRha4fbUfEHwIoquRWDKqrMGKWKa6GkUARKhH6+kSOlsbriuUdTN Gu3QeR5NdrLTfnyQ4Pc6GHGAWEIF6gJ/VEgg67nmr8Fyq0LK5JBhAfFQfh544uEL DyMO6XrDM1VdOgLL0EiFo4nY1TCjRvSXGhq/lf/I1a3T7x5x7CfVQ1XL+xnpvQ0F 1pGl15gtk9kHf4QQT9OrGGcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 342930048521007058217171829610395060805538 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-28 23:57:52 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-26 23:57:52 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'taggia.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 655748866810171150740754287222532561164410795806669651539012235709010958279963002365170384594745258737596843890737649374521804806953786349965229155367603554234565846524123509547407219881582374734205432386382006034264122550691515672435979224815116583731626376791744480214424923813099161606047920768036207100816059464460715171783868187539362477105371860469155340380870279603567934940341546392826792052382540964158431380773419710356145870392003480455865316470191772325698780735261017423407947778686055884446960413405689191609867373639196140101001812549026511427047415680636133081027454454391280351621130218243577550257234484668939171908548858990456308598587045118075691930109698822370661664398904706006007659181851831158525309467958626150696690953028389876468611039010979748143660468460984933178344328517502262822134066823939505521274452274948022786446332498890892939722391190050263949799295962322774825316781454080068035148289405643123118268793089734451554721836929928424042236504500620277793960767064799768840863619979093896268536129511629183680414938395017832646803628329336797477346540491192309665011354223810875689502955787928911959551615672854212990572929982410716479241410604679377138392935691609121901126965227832643242919925863 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5704199cc6b870b5ce8e2366aeb26fd477a8c75f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (14 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'taggia.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016c3b3bd5c900000403004730450220447755154ad6a83624f165da1a1e02ef6e0c166a5f8703e00260e516414202da022100b11c79bb9c7b605719e91fbc8171765828b8c34ab7d8c560179b3287624d0024007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c3b3bd7aa0000040300483046022100b9521bbf884f1592097f14177e5d75b43686a53f519c3f2e796387ced6c105b4022100f511b35ddff77fde6f1fead91c568295d73e3c6df634dce36e98672a4d1e5018 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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