alpignano.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:31:19:da:69:f2:6b:73:42:0e:e6:74:c5:50:c9:53:f7:e1 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=alpignano.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:31:19:da:69:f2:6b:73:42:0e:e6:74:c5:50:c9:53:f7:e1Serial Number (int): 278045058543875986085171221314374376617953
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 9c:86:32:40:7e:e8:77:2d:80:a9:39:1d:d9:82:b2:86:4f:a3:28:5c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 10:08:5a:d2:88:37:8b:20:30:c4:f5:68:d0:1a:82:e1:4e:5f:5b:f7
Fingerprint (sha256): 4d:46:ba:cd:f2:34:b3:15:a3:1d:62:38:25:a1:68:e7:f2:b8:1c:58:c3:64:8e:a5:2e:b4:66:02:14:39:01:14
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate alpignano.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for alpignano.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
alpignano.org
Other certificates including the domain name alpignano.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for alpignano.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUTCCBTmgAwIBAgISAzEZ2mnya3NCDuZ0xVDJU/fhMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDIxOTMzMDlaFw0y MDA1MDIxOTMzMDlaMBgxFjAUBgNVBAMTDWFscGlnbmFuby5vcmcwggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDKJgnS73SC3pR0oZg3iWCAwl192DaI1rH0 UrrlJMJ81Rr6qeHwIH+3Y9lABLoPMUkqsWhd6v+d5kz6/0BF2YdQwqQZSMMTHeqc 5YqPNbl8y7H4FKLjKQdt80LhYBE3TSW+DXEU65nZxIOpeBHCPYemCGzrtma6wb1K WWLF86sUuzJD4OngHxmSoy2IxfLCFV80Q+gQ8yYMjmo3Aa0dq8HSyvRRx15Vkqaa EXaPLQy0LiGd/wPKGNITOYYFQVe0xK5qU4trnFzmnnnhRvO/jzomkgA2tTu17LvH zeTT5mjQo3tzdNAGMXJ22V/paBW4NetyXrsET4M7jE1Ye6a2h3h+lGpX2V7zA/+q 5rAvc0gIt5JtKqkO9ijZknLW2W1nD5XjchdTjfX5AM+amzLYtARTkO0QBFn+FIFP +5g12ejDTa6VUCCZvfGFDCXQX84e6iw/2lhAqsr205j/1AscdPxWDXPUJz7YLB88 r02/lCbXP6woyhvKasgPc0XQJSc4ood3bqvIShgilCUTtT1uCiK9RzT5ql1fcz/q HGXeaPSZYVSg+Kt3ZcC+FkyXbP4Q4nCzQtMnvQrPz7ukv7c2YTfs8mvrBGJ/TJgH lbp6Rf4xycir8sXKaHHZV8DvPhrM/DWZ85BwFgkzBRA91oMJf5tYITeaIYZjSXwd IPIntC1ZbwIDAQABo4ICYTCCAl0wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBSchjJA fuh3LYCpOR3ZgrKGT6MoXDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDWFscGlnbmFuby5vcmcwTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEDBgorBgEEAdZ5AgQCBIH0BIHx AO8AdQDwlaRZ8gDRgkAQLS+TiI6tS/4dR+OZ4dA0prCoqo6ycwAAAXAHm2T+AAAE AwBGMEQCIBFmpUc6IFkQ+737+lyA45t6SdITCpqVfUWFV9IfpRyRAiBIi8PcJkpK DsCQiqu+w+UZfLubVSGJnl6dgS2yeOzSQQB2ALIeBcyLos2KIE6HZvkruYolIGdr 2vpw57JJUy3vi5BeAAABcAebZPIAAAQDAEcwRQIgSqflMXCTfjWmmHqRS2Pl914f ONZ1cGHK0RkeezzweqICIQDa1RNISbObm83xz/j277m+MqHRNYWShwH7CioQO4kM 5jANBgkqhkiG9w0BAQsFAAOCAQEAM91k/A8q2OYWsCzF3E7YB9duO3gUVwpNCjj2 8pCibDzIpbh0mW96DxkqIl+xAyQqFXfGIfFQmsX6h3VRzgTN7WsQe3KWr34pxvZt mPxN9OlX2g2lWSFtUnemeaSIE33IaFpFF/EbrRgQUIt4nbobB+kB951vycF5+cKt d14kmuRGaz5sdkqyslIPUgw642xAOUGLF7dHr1fyIzAIot2JIyzusyCqSAwwJYu6 YMICfs9IOfdXT8RzzqOMVjFP/1/5v19+MYNjmaCua3SaLpvPtw0OF4uSQe6nGw8u gc5gWcQDmYEM3BLFL2xLBVjNo/6XqQk8PQHdd7+eOvfdNlj5mQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyiYJ0u90gt6UdKGYN4lg gMJdfdg2iNax9FK65STCfNUa+qnh8CB/t2PZQAS6DzFJKrFoXer/neZM+v9ARdmH UMKkGUjDEx3qnOWKjzW5fMux+BSi4ykHbfNC4WARN00lvg1xFOuZ2cSDqXgRwj2H pghs67ZmusG9SllixfOrFLsyQ+Dp4B8ZkqMtiMXywhVfNEPoEPMmDI5qNwGtHavB 0sr0UcdeVZKmmhF2jy0MtC4hnf8DyhjSEzmGBUFXtMSualOLa5xc5p554Ubzv486 JpIANrU7tey7x83k0+Zo0KN7c3TQBjFydtlf6WgVuDXrcl67BE+DO4xNWHumtod4 fpRqV9le8wP/quawL3NICLeSbSqpDvYo2ZJy1tltZw+V43IXU431+QDPmpsy2LQE U5DtEARZ/hSBT/uYNdnow02ulVAgmb3xhQwl0F/OHuosP9pYQKrK9tOY/9QLHHT8 Vg1z1Cc+2CwfPK9Nv5Qm1z+sKMobymrID3NF0CUnOKKHd26ryEoYIpQlE7U9bgoi vUc0+apdX3M/6hxl3mj0mWFUoPird2XAvhZMl2z+EOJws0LTJ70Kz8+7pL+3NmE3 7PJr6wRif0yYB5W6ekX+McnIq/LFymhx2VfA7z4azPw1mfOQcBYJMwUQPdaDCX+b WCE3miGGY0l8HSDyJ7QtWW8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 278045058543875986085171221314374376617953 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-02 19:33:09 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-02 19:33:09 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'alpignano.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 824694285452521710874283673916350742740794900346997057876963151832972567096231025407722478154246506454868015178565456430260713198601206568090132277937539079468018743867465352767295971943433223647472018866229690824405255758309426094106893652364044512877397774353890408850608073124641507625703148548664169678688260289050815369409678209743093505423117390536912295650618507607154663001519926382235234004142796092556647227452030049356798427253710913065263557760206364324318229990722012955147748374919467276495206621401704877802358838148678210239750350801529331991573196205434335582689701569455377655550136839933106116115125338087640381409455406973598251995981010192468184493354664686420902024940122112103094147878716656196367154125975283200533585861066702788595910694338235298149674610532407922021767867573284020389629462477235648781826359765582574719517333766436204182407614912409879601440047553747695777902735352950511942930570094268205222134229649969081414744655416846672935101573937511142740148706904648969323434391415075834790413141443338933000718783263078886840836613748715571002778287033420765923702081183137779178298916536339551876824770647539119834122190149997571246811197746457483535802213159091735872733927766656845702547462511 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 9c8632407ee8772d80a9391dd982b2864fa3285c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'alpignano.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb27300000170079b64fe000004030046304402201166a5473a205910fbbdfbfa5c80e39b7a49d2130a9a957d458557d21fa51c910220488bc3dc264a4a0ec0908aabbec3e5197cbb9b5521899e5e9d812db278ecd241007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e00000170079b64f2000004030047304502204aa7e53170937e35a6987a914b63e5f75e1f38d6757061cad1191e7b3cf07aa2022100dad5134849b39b9bcdf1cff8f6efb9be32a1d13585928701fb0a2a103b890ce6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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