santachiara.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:bb:4c:c7:53:a9:f7:b8:cf:ad:05:7a:73:d2:d6:12:00:50 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=santachiara.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:bb:4c:c7:53:a9:f7:b8:cf:ad:05:7a:73:d2:d6:12:00:50Serial Number (int): 325071716701156957433059060001398445965392
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 7c:0d:49:09:14:7b:37:23:c2:4c:cc:76:c9:27:54:38:84:7e:96:82
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): bc:11:30:b4:ad:37:7a:5e:44:eb:31:d8:0c:ab:13:0d:43:dc:cc:5e
Fingerprint (sha256): 4a:71:29:15:86:04:be:25:63:48:b5:df:ea:97:b8:be:0d:16:84:bf:3b:56:3b:ce:41:10:81:24:ed:5a:94:13
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate santachiara.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for santachiara.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
santachiara.com
Other certificates including the domain name santachiara.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for santachiara.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVDCCBTygAwIBAgISA7tMx1Op97jPrQV6c9LWEgBQMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjgxNDAxMjNaFw0x OTA4MjYxNDAxMjNaMBoxGDAWBgNVBAMTD3NhbnRhY2hpYXJhLmNvbTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBAOipiW0hq5EmIvYv856LF9oBCbGZFz3L RXFwuN90t4r8k6QBSXvRLV/wI1rZgx+WBGq4KIOOqFmdD88R6bY51R0+FKHqnYie hIyrT/sS5om4slDWOkXXvWlFtClMgG3v85XumD8Xw3det3nVcEcA1/ie0+aTMCnA 1g17dci7vVfgYSN55ZAWO7rN5i5SrJYZQvU/S9jm6MhPW8Bfkvl14nYzckoPbNQd xO2jboQj9BLlR251nhEWSfvLPgWf4LZ9JA59aC/q3Yw21JvBe8Aw/LxmlGaq6Hxb yufpIdbzf5HF4fgxYFWToCH3+mkA6V63eE1+iVAexIhSy8bdCU+IxhvSNJdcGmj+ dj0Gje3/dk01jQVVQ2vxrXxosKKoz9tuCIYrZmL7k4y6dgi6QblkVaQpe4gjmfD/ vm6/QE6oz+I1Uv84Q0U2609ur49N5toXI9BDSlUGf1RpOwNCxOXNvkdIGs6y2WAl K3r8JaJd4qj1SdDKRSVkDPOpowOjCj3wjEwEhimjEGtXthGpseOFc2V1zuX5nA6n ntiQU8Fpxek0CAFlkAcPFFu8BOHEPZ1n3+kiQlVtO12GPhNL5ah0/miqs2C0L64V vl/I/Sl394LDasfnIeiFk5ZN4m+Yf5BQo3QxfmSy/d9/fxzDblW/kz6f2L2jEmcl gIw4bYgW29yVAgMBAAGjggJiMIICXjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHwN SQkUezcjwkzMdsknVDiEfpaCMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPc2FudGFjaGlhcmEuY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAgYKKwYBBAHWeQIEAgSB 8wSB8ADuAHUA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFq/vXO SQAABAMARjBEAiBUQ2jjTlCpVaWQjC1veyoAQ5L2B+q6Np6PhB8k4qkkBAIgMql4 hddkYHKRGu+A4P0ia1mlKfkuuoIN8UrWakFt0OkAdQBj8tvN6DvMLM8LcoQnV2sz pI1hd4+9daY4scdoVEvYjQAAAWr+9c4YAAAEAwBGMEQCIHtbl7x8m8GkMHK9dCjD MLu4mOQPj5Twu6lR/QZpEEyWAiAJC3MG7KtznSR/233jA8wBggf6g4twuPTnCJ9A Xf038jANBgkqhkiG9w0BAQsFAAOCAQEAMc6Kz8qrn4E4Hr0qMLzOumsS9NhSqak9 71F7p550ANVVLCAAT+6NetsI2nlV+aDKnbGWyqYpefWW0+mtvIOGA9oGyuJj3REy 0J+rpfJqA6yYiGXcDu0YSKwLO08+r4CyVH6mXAbP0P6u9dZCeWgqA/NfD9gEXaUu E+OkwiN2nFxTb2XUs9Uz3kDc6ZTHBIuJHutqYVR03a6GcisggcuFnC7a0a56Rp0t 1uLGVqy5o9l91jfyd6tuTpMA5gySZdYfILGzZ8xwP1hr3WgaYLEPpfI9rzDmDFr4 bYJvjCtbmp6480a/WMFzAvEkf0BhwJbu7lxA6OxYMmhqILpglTfIOQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA6KmJbSGrkSYi9i/znosX 2gEJsZkXPctFcXC433S3ivyTpAFJe9EtX/AjWtmDH5YEargog46oWZ0PzxHptjnV HT4UoeqdiJ6EjKtP+xLmibiyUNY6Rde9aUW0KUyAbe/zle6YPxfDd163edVwRwDX +J7T5pMwKcDWDXt1yLu9V+BhI3nlkBY7us3mLlKslhlC9T9L2OboyE9bwF+S+XXi djNySg9s1B3E7aNuhCP0EuVHbnWeERZJ+8s+BZ/gtn0kDn1oL+rdjDbUm8F7wDD8 vGaUZqrofFvK5+kh1vN/kcXh+DFgVZOgIff6aQDpXrd4TX6JUB7EiFLLxt0JT4jG G9I0l1waaP52PQaN7f92TTWNBVVDa/GtfGiwoqjP224IhitmYvuTjLp2CLpBuWRV pCl7iCOZ8P++br9ATqjP4jVS/zhDRTbrT26vj03m2hcj0ENKVQZ/VGk7A0LE5c2+ R0gazrLZYCUrevwlol3iqPVJ0MpFJWQM86mjA6MKPfCMTASGKaMQa1e2Eamx44Vz ZXXO5fmcDqee2JBTwWnF6TQIAWWQBw8UW7wE4cQ9nWff6SJCVW07XYY+E0vlqHT+ aKqzYLQvrhW+X8j9KXf3gsNqx+ch6IWTlk3ib5h/kFCjdDF+ZLL9339/HMNuVb+T Pp/YvaMSZyWAjDhtiBbb3JUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 325071716701156957433059060001398445965392 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-28 14:01:23 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-26 14:01:23 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'santachiara.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 949179181155670614492690434143213316303569232757336606745793467094939471101118496562106619073015191979339891514340707434224761147218662667719214891056104191017306693573224239251808639590342452573828117041174370192026794500889447246811808991888294298211739371279461198695104046706553831371465484439860873379197069998060482465553703760641416903066482750995588525184095469737268829593350478718002406875170747427484863306667036361335502467430771080857360840522383907143583265163748312438211535778881430514498344286936367946552815711994708716823791282208939826524096041381087543265100809613959025931382278975819274043508095392568425709643007217620120532798654318714721434480141521825089677374120460999877225294150123817045464294773008512758904948547331937360895339083915217505220791108583961385336158613774997239559693864280600372474787839044179972931098089485555455874738583189740799815723935084430712703516255730855703704437608963124893798978218911285823353958429245202736901674594379909020749441418973876948839651038703199767041559882018538586326393450071419884579934136256988518814191189806148825675777297261878067289209989016286845804034552459949830688235043344846010827680792750079614641125288556016559702198430259481496729023143061 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7c0d4909147b3723c24ccc76c9275438847e9682 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'santachiara.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes) 00ee007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016afef5ce4900000403004630440220544368e34e50a955a5908c2d6f7b2a004392f607eaba369e8f841f24e2a92404022032a97885d7646072911aef80e0fd226b59a529f92eba820df14ad66a416dd0e900750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016afef5ce18000004030046304402207b5b97bc7c9bc1a43072bd7428c330bbb898e40f8f94f0bba951fd0669104c960220090b7306ecab739d247fdb7de303cc018207fa838b70b8f4e7089f405dfd37f2 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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