maurizio.me
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:4a:38:9d:8f:43:87:ed:66:41:a3:eb:68:91:e7:e8:4a:28 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=maurizio.me
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:4a:38:9d:8f:43:87:ed:66:41:a3:eb:68:91:e7:e8:4a:28Serial Number (int): 286593007811535859178263654702383362492968
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f9:73:5f:ee:ff:ad:dd:69:a4:d7:2e:db:22:c0:26:fc:81:ad:31:32
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 67:5e:98:d2:e8:3f:6d:6d:5f:18:14:00:2a:f7:99:17:88:e8:0b:e3
Fingerprint (sha256): 4b:59:01:1e:35:2a:a7:5e:63:ab:07:45:1e:53:ff:20:12:2f:84:76:08:89:6b:e5:7f:bf:aa:8c:19:7e:9d:77
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate maurizio.me
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for maurizio.me
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
maurizio.me
Other certificates including the domain name maurizio.me
(limited to 100 certificates)
Certificate
The complete raw certificate details for maurizio.me in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGTjCCBTagAwIBAgISA0o4nY9Dh+1mQaPraJHn6EooMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjcwOTI2NDFaFw0x OTEwMjUwOTI2NDFaMBYxFDASBgNVBAMTC21hdXJpemlvLm1lMIICIjANBgkqhkiG 9w0BAQEFAAOCAg8AMIICCgKCAgEAzQSDUOU7J5BRIvJVp8MDJmLMlnVHWVItWwhg a9ZWxwTq7n+I/q0TSNqS8IDPGpRYEOAVALKF++u8dDKvV6qeIkLNujXtdvp3UK+6 TfFmPtFap9Kz8XS1F1q1+pwnsi3u+Rhex9XYu4a6PGtXakcOpxko63uXomilPvt9 9uhqLRshXGlxaR2h3j/tMqfTAFX7uHbraGH068tXLZxe0B/Cb7AbTGAJkOVGPFVq A1yAWdyLNFG8uSzRLX00nbdKgyK0VFahE6wOzKDW1lWezMOzHlTXao/FH32Y/yfK O8MCQCi7ve57ozXvA84Imz5zwkyPs61aES2nSd4MBAfWiHBPD05+jBbgGdJBcgq6 kBAyOaOTYriILpAk37N0NfN2HEuWTInd4sq5VSh9ms4/iuCkAy77novOGqYiF6TI d0ZVnWM62ATBNVXv7Gc/l22EcrYksLKuIkIrkXSWSm8TcJov5Hp6YNMRIoXQeOT7 3O6QxXZDYdIu9NcKKRUhkHwTDFX80gi6W3pNi+vKoy61xnlIJB9w3Xi7/zED02cr UuJYe17Wm33OpQRw+jkbWayDemp3umDb7F98GKHXVUHVXJCxMCPunKBBsx4ebfQO cMB6qiOddha3VaXKNp1HQOfayvWoO7RCdw+L8oNXGdV3Ti4zkq3u3V/qB6ivipX7 rg9R8HUCAwEAAaOCAmAwggJcMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAUBggr BgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU+XNf7v+t 3Wmk1y7bIsAm/IGtMTIwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo7KEw bwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQteDMu bGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQteDMu bGV0c2VuY3J5cHQub3JnLzAWBgNVHREEDzANggttYXVyaXppby5tZTBMBgNVHSAE RTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIBFhpodHRw Oi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkCBAIEgfUEgfIA8AB2 AG9Tdqwx8DEZ2JkApFEV/3cVHBHZAsEAKQaNsgiaN9kTAAABbDL34xEAAAQDAEcw RQIhAMSCSFonsaXvATdqOIGdApVlh6KyMYvzKtsUYJGRPPTwAiB96hgjRT9FHGYJ iCG51R4l3mVvLRiD1snGpZGqRRdM9AB2ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLc pMMM9OVFR/R4AAABbDL34koAAAQDAEcwRQIhAN7651LRHT7L1RVAEhKf2cTIDI9J nFlbmUfP3jsyexepAiBf4VzAOP0ZiVHVGspymsBqQxKVtrmz5C2IHahXGztINzAN BgkqhkiG9w0BAQsFAAOCAQEAi6ORzz0FhYWRqCt22JFeTeDLDRcPNvY8qzMnjT/1 aIBX09WYanX0EIzb+cxtbmBcfDont0IYGon+UNmq8qbqYyxRTscw3VYoA3SEN1Is Jg1cDvYs1zmOLd6+irrdTBB+YUeGhsxjX7O4TnU1/ir67cSgm7gtek8Bxma4vRga AVJ4iuK0/FyUR4vVTFmnr08oCbP7bNppgM2kZZm6KUU3KEtv9afIlFcEih3EuwxK ZjAQ5/44Snn6mwnEzEf7FVf1QY0vQZhIxv86iFX6usuhF3e+Lg1ZXo5TfqzUsA9Y tdZ+X1rkbtKfiHBvlPieus/9YEmgp/71ZsuNA9cD/rz1MA== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzQSDUOU7J5BRIvJVp8MD JmLMlnVHWVItWwhga9ZWxwTq7n+I/q0TSNqS8IDPGpRYEOAVALKF++u8dDKvV6qe IkLNujXtdvp3UK+6TfFmPtFap9Kz8XS1F1q1+pwnsi3u+Rhex9XYu4a6PGtXakcO pxko63uXomilPvt99uhqLRshXGlxaR2h3j/tMqfTAFX7uHbraGH068tXLZxe0B/C b7AbTGAJkOVGPFVqA1yAWdyLNFG8uSzRLX00nbdKgyK0VFahE6wOzKDW1lWezMOz HlTXao/FH32Y/yfKO8MCQCi7ve57ozXvA84Imz5zwkyPs61aES2nSd4MBAfWiHBP D05+jBbgGdJBcgq6kBAyOaOTYriILpAk37N0NfN2HEuWTInd4sq5VSh9ms4/iuCk Ay77novOGqYiF6TId0ZVnWM62ATBNVXv7Gc/l22EcrYksLKuIkIrkXSWSm8TcJov 5Hp6YNMRIoXQeOT73O6QxXZDYdIu9NcKKRUhkHwTDFX80gi6W3pNi+vKoy61xnlI JB9w3Xi7/zED02crUuJYe17Wm33OpQRw+jkbWayDemp3umDb7F98GKHXVUHVXJCx MCPunKBBsx4ebfQOcMB6qiOddha3VaXKNp1HQOfayvWoO7RCdw+L8oNXGdV3Ti4z kq3u3V/qB6ivipX7rg9R8HUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 286593007811535859178263654702383362492968 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-27 09:26:41 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-25 09:26:41 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'maurizio.me' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 836398952859791725003339487080029269693152096097191207895442163842525011501518430414171949291871112334198849072928482683210396500416821985901138121152897659032268034572500776296382866825796780668249363679472400006652209705184689506354965953916235188317219927398603125176031815957831809649291970290724888437285093375986929556887481628761912777502291341256818874631143702367369826274084201279730581530655321143307791610441914960605463364659675563691867890340041662822624954290484399465212673592841190352435616479155080613865637912146964769817685679419796411140574989734637489574419168717789072031467902492751326750964861518611110228389442795226997651264096998709040936823020344086211355010710930202509220734870885703986919577718414887384666702932527270493863448247172394569884711502605008701272183640172969024338966353267005586942998758287484046235807244765578709713613230520861627069631233642546515307555252678108911684730287669783007374841951664220340578845323879934769772856254117641698222803864786101279904720760322782084606930842475727345148218728610613653515791057464689987364405639376052156895212668561287944363016102103626691635579353804370867719904632743410599131589527591852246850427524447248251502024971948149412497661751413 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f9735feeffaddd69a4d72edb22c026fc81ad3132 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'maurizio.me' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016c32f7e3110000040300473045022100c482485a27b1a5ef01376a38819d02956587a2b2318bf32adb146091913cf4f002207dea1823453f451c66098821b9d51e25de656f2d1883d6c9c6a591aa45174cf4007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c32f7e24a0000040300473045022100defae752d11d3ecbd5154012129fd9c4c80c8f499c595b9947cfde3b327b17a902205fe15cc038fd198951d51aca729ac06a431295b6b9b3e42d881da8571b3b4837 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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