www.gonnascozzese.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:9e:fa:75:e5:4e:cb:dd:10:6d:87:59:49:63:c0:8b:e7:a0 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.gonnascozzese.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9e:fa:75:e5:4e:cb:dd:10:6d:87:59:49:63:c0:8b:e7:a0Serial Number (int): 315434390917382383329666701350283174995872
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: fc:ba:d8:8e:ea:68:f3:5d:1e:85:5e:40:0b:8e:b7:26:4f:75:a4:c7
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ab:63:38:94:74:bf:80:a2:20:8a:40:4f:3f:06:dd:93:45:e7:80:9c
Fingerprint (sha256): 4d:44:29:41:9f:a5:e8:a6:3f:35:a9:ef:56:e9:b0:41:5f:89:e1:c7:8b:26:56:b0:50:d3:51:bf:1b:14:00:6c
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.gonnascozzese.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.gonnascozzese.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.gonnascozzese.com
Other certificates including the domain name gonnascozzese.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.gonnascozzese.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISA576deVOy90QbYdZSWPAi+egMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MDMwNTA4MzRaFw0x OTExMDEwNTA4MzRaMCAxHjAcBgNVBAMTFXd3dy5nb25uYXNjb3p6ZXNlLmNvbTCC AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAL9vO0/tJaX1ZaRiZSpbCPvO eJeKeJ/6q0YAFV6KlLA93nGugSGqsT53bg5VdnARvsZukOFao/bbAQoLFJ75yDA2 QvAAFH3Pbj1YyI30ypgC/XiCqlACwXWBDIxksfpfq6dfjJ3YS1mqVljcx/2uTzlu tfBmbAb6NFPmnTCI0Xnt5j/lTH7QChbCLCNauMgP0yzsyJGEVVPqN0w3I7ZQvX/F zHx9x5rQ4/uxLas2zazYNUUi7R+4evwIme3CmqLuFNhuqWJZHRBP17VNMc3IPpLD bVKIJf+m+tSdhmPOcfcQvY7TUWa9+H3cv9Gxv8tB7zzobQvRRyXQ8bddy605Chz0 XKuHlKEJNxWXUpqTUl+U3/eGQ0r0/UQwhmej8u2Px1bNUoBdsZHznyeG4mW0MsfT m7Mgwt388zKxx+cpAdrAuhVWwudWbvk0Rmyut5S+xHVFE5vk+urUfH0Ri+RYTJha DxANybzAOGGrE3kfZloyMhBw1Hpb6xncieRf65tZsUb0QkLf5T3+pvEyg7d8DoGQ CnQgxIUoQh1gkR0FCShmNYmgDloaLOtKC9ccNWj2z3OwfWJzgpKCeD13ejKUQKyK u6BxfwMrG3/XWuvpNceb3MR4blcbtchSlzW6rrXKBj9P7rdFGN9l/SvW9PDd5Rm8 x17LwFMwRys+OdfTxWZBAgMBAAGjggJpMIICZTAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFPy62I7qaPNdHoVeQAuOtyZPdaTHMB8GA1UdIwQYMBaAFKhKamMEfd265tE5 t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29j c3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2Nl cnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wIAYDVR0RBBkwF4IVd3d3Lmdvbm5h c2Nvenplc2UuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYK KwYBBAHWeQIEAgSB9ASB8QDvAHUAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV5 5hB7zFYAAAFsVhgU4gAABAMARjBEAiAh/yZT6j2VmK6nMNZp0vYFKuyII1OypOVf IGCGVbK4nwIgboDFLE9xA5U5zvtACozrqFX5chL08p5Yad0CxToIsf8AdgApPFGW VMg5ZbqqUPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWxWGBTOAAAEAwBHMEUCIQC/ 5Ea69bqnvUqePoMoUZF/1ofMfsls1rS5dS+p3ii7kQIgZJmbY8uX8FD9eDMF35OF 2BQRFVogmd7VWCxt6Jn15OwwDQYJKoZIhvcNAQELBQADggEBADGK+sdJR4fIdYbV tonQKvbM2bBUXNR+UbBAZ/ohlpJF9N6EdCoGMPkPyuMiB8F66W7yofayh4JKlu4d bRmKonanVwYCPRApz+7y8vKaAUMpZp84u9mdBxUVCnl32CZJcTk2MTyx1/g32UJM lxF+8D/AHAqEd8u6sl+UDdYmprTISudQ9v8LujJ994fyQjlDyU1cOp8lEZ8it2Xj 63HYExLr/jANmh2H01PoqD+Y8GYK4241HUeU4OKwNnFboC/l2M+DfzYLmJWy7yzU iB5dVm3efyn77IDo3/fwaNmMzas/dsOvtbHRB4OAuYXQ6wBJKw6x3rvqfCmuEr52 MJGj9K8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAv287T+0lpfVlpGJlKlsI +854l4p4n/qrRgAVXoqUsD3eca6BIaqxPnduDlV2cBG+xm6Q4Vqj9tsBCgsUnvnI MDZC8AAUfc9uPVjIjfTKmAL9eIKqUALBdYEMjGSx+l+rp1+MndhLWapWWNzH/a5P OW618GZsBvo0U+adMIjRee3mP+VMftAKFsIsI1q4yA/TLOzIkYRVU+o3TDcjtlC9 f8XMfH3HmtDj+7EtqzbNrNg1RSLtH7h6/AiZ7cKaou4U2G6pYlkdEE/XtU0xzcg+ ksNtUogl/6b61J2GY85x9xC9jtNRZr34fdy/0bG/y0HvPOhtC9FHJdDxt13LrTkK HPRcq4eUoQk3FZdSmpNSX5Tf94ZDSvT9RDCGZ6Py7Y/HVs1SgF2xkfOfJ4biZbQy x9ObsyDC3fzzMrHH5ykB2sC6FVbC51Zu+TRGbK63lL7EdUUTm+T66tR8fRGL5FhM mFoPEA3JvMA4YasTeR9mWjIyEHDUelvrGdyJ5F/rm1mxRvRCQt/lPf6m8TKDt3wO gZAKdCDEhShCHWCRHQUJKGY1iaAOWhos60oL1xw1aPbPc7B9YnOCkoJ4PXd6MpRA rIq7oHF/Aysbf9da6+k1x5vcxHhuVxu1yFKXNbqutcoGP0/ut0UY32X9K9b08N3l GbzHXsvAUzBHKz4519PFZkECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 315434390917382383329666701350283174995872 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-03 05:08:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-01 05:08:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.gonnascozzese.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 780984617372582183417989436965590495183493069086857323477464527356527218436776068783683584033426773583024187804498827059130222415832737556151882506052414291631010716128039830010634884379990724829522484306873150569426968883425651889621608636439875467062341319208243594077511016286303827121597796162415888381689732111452988874976607673299313127501606648398500593971370405335708116332889222994237715222992192059170262776740939663584839028695087557429159657258384429578004701143615783681924982619043408309630029350446471079070426578979015123178465591187768063584388057410122266469575349898268098108480114726886416970465242263894534295298604324803922764594176182596015707436119396456286103053065789792016097549231818227760417536344531685594081883723836868764111735660974594179740428724739727179178566840096573852443043576704788785980625982404479522013576706219936111635616646503360815645290406615633337213315197049137436495311005118724609392168633650410179548743026330811556889077679837151908329644777675806604941648582211734354221726447246208336837581874688272963975113439494795698465107417653628045182787460222114394181876609668925989382989482542097598777811308431457554263353668899674863438501267983508708228478813849158473793923278401 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) fcbad88eea68f35d1e855e400b8eb7264f75a4c7 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.gonnascozzese.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016c561814e20000040300463044022021ff2653ea3d9598aea730d669d2f6052aec882353b2a4e55f20608655b2b89f02206e80c52c4f71039539cefb400a8ceba855f97212f4f29e5869dd02c53a08b1ff007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c561814ce0000040300473045022100bfe446baf5baa7bd4a9e3e832851917fd687cc7ec96cd6b4b9752fa9de28bb91022064999b63cb97f050fd783305df9385d81411155a2099ded5582c6de899f5e4ec . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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