genzanodiroma.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:13:78:b5:75:a1:a6:3b:f0:17:b7:df:5d:72:12:77:21:80 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=genzanodiroma.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:13:78:b5:75:a1:a6:3b:f0:17:b7:df:5d:72:12:77:21:80Serial Number (int): 267962672317853260218326215828572846104960
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: f7:e3:19:65:cc:f7:d3:16:52:65:5a:31:6b:e3:21:cc:5e:94:5e:8c
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): c9:63:07:de:d7:6b:b0:63:1f:90:98:8e:1a:d8:16:69:6b:18:2a:4e
Fingerprint (sha256): 4f:ee:eb:05:11:99:29:f9:78:d5:98:87:5d:9f:dc:8c:a4:29:c0:b1:94:a3:5d:6d:70:c9:56:9f:15:ec:09:08
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate genzanodiroma.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for genzanodiroma.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
genzanodiroma.org
Other certificates including the domain name genzanodiroma.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for genzanodiroma.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWjCCBUKgAwIBAgISAxN4tXWhpjvwF7ffXXISdyGAMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjcxNTI0MDNaFw0x OTA4MjUxNTI0MDNaMBwxGjAYBgNVBAMTEWdlbnphbm9kaXJvbWEub3JnMIICIjAN BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAm01LyeccU7jRj78eklAR8lAOF/jh Pk8uIxEX1E+jCb1PEwEYozVgm1yV7dHxmM5gAD2YYMaWsWnEnSypBJ1neqHQgHMl kGp6YnuiKD2cdISK7u7iaoKf3U43sOC+Y/Py04UhC7oklSHo7DIJ6scbvYMTu6nD Z7Ypm32riL2yJ1yMlssW4Zk3iADPvb9YIBAjTrPwxHwtZfguMPgaYRn520Ddr85a 8LNong3XGQUL3Pkf2OP7815HNLfMeOHEMA1FPazgfuHx0QXEnpFcfuL8ILLSBIyi N0R/oG7ip9+5ZSbpCpYJ8hLvvq08fDPAbcYn1yIjaiWKPg1V5M+fAtgg4rFIBfXU oE4472p58MZunShtSMKfFOc9S8lf7h0kZlUiVfAkMB+uV0XX84usy1QZulrqWckA kBmZmRepeA6a4W1mPee5t9s3jvTs/BOvD9X0Mvk9/T47XNV4VxYBTYqGZCfWaHWC 3WSu5PHO1Ys98y/zGR1SrrMsVsvutcywmD+pMrUnkZBEl8OqN4YaV8xNBHBqT4WC hw9yuh3XZ9LPSyT6q+spMci2Yqa5JNcNchsZFnnv2od9cyx1pCOg5YCa0pC1Dpwg n/0gqARaBT++FXx0Vjy146lwq78DOtyl45zwrLfwOyOfgb5wG2l0SD2LDPPYlIfy tacWfZgwv+ZNXcsCAwEAAaOCAmYwggJiMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU 9+MZZcz30xZSZVoxa+MhzF6UXowwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl 7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5p bnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p bnQteDMubGV0c2VuY3J5cHQub3JnLzAcBgNVHREEFTATghFnZW56YW5vZGlyb21h Lm9yZzBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQQGCisGAQQB1nkC BAIEgfUEgfIA8AB2AHR+2oMxrTMQkSGcziVPQnDCv/1eQiAIxjc1eeYQe8xWAAAB avobJV8AAAQDAEcwRQIhAIIpxHZn7VNULoRzt+pdlIZWhBGa4xobqRcF51Rt7+i9 AiBg3fZ2kk7vETCYxVz0vxMWo606edTlOePaXj6396zH9wB2ACk8UZZUyDlluqpQ /FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABavobI4gAAAQDAEcwRQIgbKMmdcl+i1G4 WhQT9/RGFppu2MLhibtyM/ecBrDaTAYCIQCtS79HUG9IJdf60SZ37UpQhRU1Daqp P0v7Cds1vXUMVTANBgkqhkiG9w0BAQsFAAOCAQEAZAPSMmBQFkDhlnaBEB8AAjoX VbNsAbcmQcp0E+dQCzqfUpR6OQCYbpJPW71dvJxTxfqSZWAYNs39XLWuVtJAHKCY sXQolMTIidczV2U6noZln5PGwKZe/2HoODuRGZhVCRgexCake1YlZWJK4fgOr7cN dFPGNBhomHOznrdG4/IeyTuvxstjLKWlaLtAG0yK7aD3FzhRs+anz4EhhzUi9eoM QIG22EgFo0wUoh7LHgyFJePjp4yFYXamz7LEaLOtPYojD7A3hb828HL1G5vUIFxv CbY9xhj4uu3zwtrXw/JHr97GFJeQwLel18HbtwHHBkxdlpHLlvKBQtKY3exHTQ== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAm01LyeccU7jRj78eklAR 8lAOF/jhPk8uIxEX1E+jCb1PEwEYozVgm1yV7dHxmM5gAD2YYMaWsWnEnSypBJ1n eqHQgHMlkGp6YnuiKD2cdISK7u7iaoKf3U43sOC+Y/Py04UhC7oklSHo7DIJ6scb vYMTu6nDZ7Ypm32riL2yJ1yMlssW4Zk3iADPvb9YIBAjTrPwxHwtZfguMPgaYRn5 20Ddr85a8LNong3XGQUL3Pkf2OP7815HNLfMeOHEMA1FPazgfuHx0QXEnpFcfuL8 ILLSBIyiN0R/oG7ip9+5ZSbpCpYJ8hLvvq08fDPAbcYn1yIjaiWKPg1V5M+fAtgg 4rFIBfXUoE4472p58MZunShtSMKfFOc9S8lf7h0kZlUiVfAkMB+uV0XX84usy1QZ ulrqWckAkBmZmRepeA6a4W1mPee5t9s3jvTs/BOvD9X0Mvk9/T47XNV4VxYBTYqG ZCfWaHWC3WSu5PHO1Ys98y/zGR1SrrMsVsvutcywmD+pMrUnkZBEl8OqN4YaV8xN BHBqT4WChw9yuh3XZ9LPSyT6q+spMci2Yqa5JNcNchsZFnnv2od9cyx1pCOg5YCa 0pC1Dpwgn/0gqARaBT++FXx0Vjy146lwq78DOtyl45zwrLfwOyOfgb5wG2l0SD2L DPPYlIfytacWfZgwv+ZNXcsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 267962672317853260218326215828572846104960 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-27 15:24:03 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-25 15:24:03 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'genzanodiroma.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 633576628863412179540053487611578222017106212460626997519611106755205201030184896124915135778989898203391181609133793752149315243469267765779283598620611051602053561757686355435938019324761797586094245654835809398339708322503631771123697881480975247820511836373386119360954240943874426781447364407691160292840947558004874920859387952665940304511460827648537108947950650757340666603522133947031885274382557813361349800366479221294914392613079472840757849664126648044348333587486124820067954800959523096509650030832473131856519082415381714090602309752993694047933030715101137014483417668787310187158947412953735590036215121886654426980359250872445549129068036041283349953769868873182946903275948256782720790472937978741901537013847348857037261196066478834999284439288535954082732338294859638488339451704396367383045861973294906164223197709595847118071912519636743162143657400658630770276979511580992860227520677306803686032837636031607645287868138044670290312790324672508025319630299750343323676157703907447002895833376173186254381589597366751752623466492920544855380655902473110717121557875901294092580998081776266065164600019319915915879449541223969156230486480668346175778656550108774039330169901274719135022731769901303884025781707 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) f7e31965ccf7d31652655a316be321cc5e945e8c . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'genzanodiroma.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016afa1b255f00000403004730450221008229c47667ed53542e8473b7ea5d94865684119ae31a1ba91705e7546defe8bd022060ddf676924eef113098c55cf4bf1316a3ad3a79d4e539e3da5e3eb7f7acc7f7007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016afa1b2388000004030047304502206ca32675c97e8b51b85a1413f7f446169a6ed8c2e189bb7233f79c06b0da4c06022100ad4bbf47506f4825d7fad12677ed4a508515350daaa93f4bfb09db35bd750c55 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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