www.mistiche.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:64:1e:9d:cb:ff:9c:88:ca:73:47:d2:8f:33:b1:11:8d:75 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.mistiche.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:64:1e:9d:cb:ff:9c:88:ca:73:47:d2:8f:33:b1:11:8d:75
Serial Number (int): 295405790655435699744248632782960360263029
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 29:26:3c:9d:ba:49:c7:7f:f7:58:48:da:41:de:58:cc:1d:35:f5:fb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 00:58:27:b8:d5:f6:ce:a3:62:c5:80:9f:3a:e8:80:95:e9:4e:02:f4
Fingerprint (sha256): 4f:ef:4c:9c:0c:4d:43:7f:78:4e:72:63:06:ff:5a:28:42:fd:64:e8:1d:25:0e:fb:4b:54:c5:2a:80:b6:ca:62

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.mistiche.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.mistiche.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.mistiche.com

Other certificates including the domain name mistiche.com

(limited to 100 certificates)
mistiche.com
mistiche.com
www.mistiche.com
www.mistiche.com
mistiche.com
www.mistiche.com
www.mistiche.com
www.mistiche.com
domaininvesting.me
uggianolachiesa.org
mistiche.com
mistiche.com
www.mistiche.com
internet.cleaning
deltavet.de
mistiche.com
mistiche.com

Certificate

The complete raw certificate details for www.mistiche.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 295405790655435699744248632782960360263029
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-27 02:12:57 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-25 02:12:57 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.mistiche.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 798414392825837907368759030316888677626788506052955810659589861749686758103621201277551592767707057198139140619477495510917455494965052413229310994423976041163170655871267066434967667874954292689242350716219475370075282641161631910794503735239533962313306280436329619077386704496177665468964123165626235475124913123581699781654954555179671765245104431561829671532142363023958334578618622691733501040033624538066316430980409721082432274020765599153755599572822032772611972660099729332562504506178246851687354043920338396702865344353386116330715780817685671929141366801099977936444427831801297946907506856999385565316977084130600675701339669993072819850604114336426059792865720431147302941703547721787921960202900602619806657825326468990142704545689697577801985796277516165086891942793116738317914877258421203187147544054340476930006833367104846346415494153166396475547281427198945222213728821562791675642562952985038392592638224560051301449082192125389813540055462981093132264650606897370148914377297598977160367128647792525164190484873697899380963344512156380599390343470822609760117802371759936830819852818123239367978650718722631481300782090421096805396121715629274155873832100792500417697544756106047622740808770538160189981361577
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							29263c9dba49c77ff75848da41de58cc1d35f5fb
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.mistiche.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (240 bytes)
							00ee00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c316aca5f0000040300463044022006a2f358d1b8ba96447202dd8481b20a64ff9946d3d47f5e38fd2eedc8424b7d0220090f73ec985b933ee27020d7f2b12934cd44739e28630e4270571b7c48d126a5007500747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016c316acc370000040300463044022051f715560f72ad49cb535f51b60023a6f2a253bcdcb0d1be92dd31e4872b3251022025f6f74465ded39856952f14da47dd0a4f8bd667519bcc5798f1c10f01ecccd4
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		006c5d0a09e8df134457aee60f93c8c9bff21dc0bb92223ccfc21e9bf7ca5d9888ccd86fecf8e76991a8ea7af0e587ef579957ea8b64bd04a87df0aaa0882f0233d7d0b0de0e26aa9004219e3ee2ae5d3acd41043129dabe2a1d324743b1fe9760e370a38ba5d1f00f715226017a331acc97419fc8851eccd097045dfa080bbed6cb0218dd109d64d687a7a833a2d5c0fa9e422aad30e54f5de9aab82a3ab4a1620238d5c4fc747ebdd532e200874bd572fc5b673efae2b6468fb79ccbf323bb6f553ddd814fdf2825991ad996ba996a1ea5ec157d4b96f6f3e5183fce1c4e9861b422ead41f7f4b2db6b19a9cae745a7c215f12556731bc4851cbfd2b2a91512c