www.bagnolomella.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:45:27:82:f9:8f:4a:65:62:95:1d:ea:3d:90:c4:5a:4e:5c was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.bagnolomella.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:45:27:82:f9:8f:4a:65:62:95:1d:ea:3d:90:c4:5a:4e:5cSerial Number (int): 284868861064925358172062436102909942451804
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 83:f9:0c:35:ac:a3:b6:68:e8:f5:68:39:c9:00:18:be:cf:aa:6a:8e
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c9:50:22:c5:f4:f5:e7:e2:43:81:89:a0:13:ca:b2:b4:61:c0:6e:d6
Fingerprint (sha256): 4a:ef:d9:ee:17:24:0b:3e:6c:e1:a2:a6:bf:86:9a:89:c7:f8:c5:76:db:05:43:bc:b4:1d:61:54:17:47:34:e5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.bagnolomella.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.bagnolomella.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.bagnolomella.org
Other certificates including the domain name bagnolomella.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.bagnolomella.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISA0UngvmPSmVilR3qPZDEWk5cMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjkwMDA4MDRaFw0x OTEwMjcwMDA4MDRaMB8xHTAbBgNVBAMTFHd3dy5iYWdub2xvbWVsbGEub3JnMIIC IjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvKIie8b1IsR2P8sNwLlNCiG3 J1O96ajoTMEsUAeipXVO63L5lH+Si+CfQnQLLS3p95L+Iq8xFgLeLCRUWS9eV6ni lzVt/ZVGHlK/jCAPDsCYJpw9rGRCbYuM7zse5GS9UDxSRUFf/IytKrT/Pi31sTiV 7YamtUv9JsohED3tGs3G1kCBmj2yOHaWq+EsNIN6drxv8vbpstfvvIxvtMQlYG5A p4RAuqC9kFEHFAgz45vh3OV8ivIyOI6QJnjannAxwK4fykLzc8+QCft+E4F54GEK 3MCASj/SdDIfHRbHfOm4PQGVSWqrIWGW0M0so2GLPc/XXdA9Ty5kQpuJpCLz7xFE DrzcW1gWpQKKv0EZ4ASGcyQY6h4r7mgfmNrzXmRg6QMcVyMReFk7KwKeptV6GfT2 5RLJgSuoqXbjuzemAXmP1PgZ5QxAqGEzHZD7vFbA/879SWYoE0aZeXnAuXKNwgFw tKfFmWCT7V3Rfl1LoimVKk1we321SgdoKNkotPgCYEscjXI1+PRovyYXtc071Apo 5Er34CMgEak6qt9ZhuOJjzXpMzIhEdhdArbPJwA9szCnaTwhRbFNw3S2sJRDpYQL grptKtiTLbP4MMf/L/kAJz/MeIOuSUNELLC17znrOESbjAyvnkyIzfTXszTVlty+ NnjDahZ8udZrU7XNzCMCAwEAAaOCAmowggJmMA4GA1UdDwEB/wQEAwIFoDAdBgNV HSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4E FgQUg/kMNayjtmjo9Wg5yQAYvs+qao4wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3 pkVl7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2Nz cC5pbnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2Vy dC5pbnQteDMubGV0c2VuY3J5cHQub3JnLzAfBgNVHREEGDAWghR3d3cuYmFnbm9s b21lbGxhLm9yZzBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAo MCYGCCsGAQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisG AQQB1nkCBAIEgfYEgfMA8QB3AOJpS64m6OlACeiGG7Y7g9Q+5/50iPukjyiTAZ3d 8dv+AAABbDtFLPwAAAQDAEgwRgIhAOv1iFSKfXmMF6NNFHJinVB3n00FT1Vs7vOl EIyZmpZwAiEA94+1JGh/XRPGFNyR5b47HEXOjQzPVgpG6o2fkjCh+lcAdgApPFGW VMg5ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWw7RSz+AAAEAwBHMEUCICkR sPPZOAXBhe7owhayPjkMpy0fOezqaPh0ZKbFi6NoAiEAjCWU7D1g+dxhezKfMZg8 xN+RC+ADgefN0hB7vh8/dxwwDQYJKoZIhvcNAQELBQADggEBAGPhkmOD+30ZrnzB BcWSrUwexA6vTjXcsT5XdzJQ9CLAvCFsav9sPU5qXnu57Ha14trUk3eBtFqWYhYv xFc+/E8CNyWgZmd4M9ZK71uk5W1gmy5zICcTI8u5VwcOgyT8Wdn29LpJSw6NJuI0 p7b2HoXOFLL5TvRsx/twSp93o0MoEyE3YXO5JhbcI6FX2+s9E8OCgypFHBJMyr4p qBrSlL1KDJ6favXUNNldMG5A/IhoAtEO/5Hrwjkkg9kWobcRx5fvGIfrGsxADBCj MkVow39PYXnJI1zGClucA3dX9gw3e8ELARnYigRzl0zLWd9MkAngJZwpZCTngytH /737EcU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvKIie8b1IsR2P8sNwLlN CiG3J1O96ajoTMEsUAeipXVO63L5lH+Si+CfQnQLLS3p95L+Iq8xFgLeLCRUWS9e V6nilzVt/ZVGHlK/jCAPDsCYJpw9rGRCbYuM7zse5GS9UDxSRUFf/IytKrT/Pi31 sTiV7YamtUv9JsohED3tGs3G1kCBmj2yOHaWq+EsNIN6drxv8vbpstfvvIxvtMQl YG5Ap4RAuqC9kFEHFAgz45vh3OV8ivIyOI6QJnjannAxwK4fykLzc8+QCft+E4F5 4GEK3MCASj/SdDIfHRbHfOm4PQGVSWqrIWGW0M0so2GLPc/XXdA9Ty5kQpuJpCLz 7xFEDrzcW1gWpQKKv0EZ4ASGcyQY6h4r7mgfmNrzXmRg6QMcVyMReFk7KwKeptV6 GfT25RLJgSuoqXbjuzemAXmP1PgZ5QxAqGEzHZD7vFbA/879SWYoE0aZeXnAuXKN wgFwtKfFmWCT7V3Rfl1LoimVKk1we321SgdoKNkotPgCYEscjXI1+PRovyYXtc07 1Apo5Er34CMgEak6qt9ZhuOJjzXpMzIhEdhdArbPJwA9szCnaTwhRbFNw3S2sJRD pYQLgrptKtiTLbP4MMf/L/kAJz/MeIOuSUNELLC17znrOESbjAyvnkyIzfTXszTV lty+NnjDahZ8udZrU7XNzCMCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 284868861064925358172062436102909942451804 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-29 00:08:04 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-27 00:08:04 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.bagnolomella.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 769556881162508033276934732960192384262899901989903257919986043618224080186291852358642505640449958822614602055134391646072057048838479761229146835914430612530885332143751423675144207635457950028312744958864910224671554951673737261455923819532483226828664346033567770734214059865526604750203264957050825334283625215967291557298313224554904528903516186361208699218841831790713416855579303595429310049542549065131051266614515393886648043997244314797170997263564798848266550879250684153277453343192859144706634883777836394367762017647852549335965930568240788755915268001825099850233842368574822841178841780439390853418545016999488839368958136641557095489340621307450830005202100877991181808521450555892217756845565149903419342611798114986042093084797779911755996719226506284707615457906170152311089990005034092930851828012816754639874560701165816310784430974474235509923882396562576645002498887250431297081954909546052663839715218934265062799510200950183463388491533842978241697008793576653725877924749230104454627085323430857720815736101779099274869817461774480998042577150130217817495805339558408170785069877370141920431866955180855787774601541009871657578030385403664579234148039603134266011748083885504732274607233702731106313161763 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 83f90c35aca3b668e8f56839c90018becfaa6a8e . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.bagnolomella.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c3b452cfc0000040300483046022100ebf588548a7d798c17a34d1472629d50779f4d054f556ceef3a5108c999a9670022100f78fb524687f5d13c614dc91e5be3b1c45ce8d0ccf560a46ea8d9f9230a1fa57007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c3b452cfe000004030047304502202911b0f3d93805c185eee8c216b23e390ca72d1f39ecea68f87464a6c58ba3680221008c2594ec3d60f9dc617b329f31983cc4df910be00381e7cdd2107bbe1f3f771c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0063e1926383fb7d19ae7cc105c592ad4c1ec40eaf4e35dcb13e57773250f422c0bc216c6aff6c3d4e6a5e7bb9ec76b5e2dad4937781b45a9662162fc4573efc4f023725a066677833d64aef5ba4e56d609b2e7320271323cbb957070e8324fc59d9f6f4ba494b0e8d26e234a7b6f61e85ce14b2f94ef46cc7fb704a9f77a343281321376173b92616dc23a157dbeb3d13c382832a451c124ccabe29a81ad294bd4a0c9e9f6af5d434d95d306e40fc886802d10eff91ebc2392483d916a1b711c797ef1887eb1acc400c10a3324568c37f4f6179c9235cc60a5b9c037757f60c377bc10b0119d88a0473974ccb59df4c9009e0259c296424e7832b47ffbdfb11c5