giorgia.org
Issued by R3
About this certificate
This digital certificate with serial number 03:7a:cd:04:cb:c6:be:71:e9:85:61:dc:a5:63:10:23:f3:b8 was issued on by Let's Encrypt.
This certificate is currently not expired, we haven't checked the revocation status of this certificate but you can do this simply on revocationcheck.com. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=giorgia.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate will expire on
Certificate Details
Serial Number (hex): 03:7a:cd:04:cb:c6:be:71:e9:85:61:dc:a5:63:10:23:f3:b8Serial Number (int): 303123823201033839958028161267976810787768
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 65:c0:dc:e0:bc:06:1f:4e:30:1d:6e:55:3b:d1:46:0f:cc:43:67:05
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): 37:6a:4f:65:56:89:e8:1d:78:58:d9:24:0f:17:93:32:38:29:cf:bb
Fingerprint (sha256): 52:39:95:a3:bb:05:41:b4:af:b1:14:83:1f:ad:4e:f3:b4:6a:6c:c6:59:21:f4:1b:b0:d8:05:23:32:90:e2:2d
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate giorgia.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for giorgia.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
giorgia.org
Other certificates including the domain name giorgia.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for giorgia.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF4zCCBMugAwIBAgISA3rNBMvGvnHphWHcpWMQI/O4MA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yNDA1MzAyMDQwNTlaFw0yNDA4MjgyMDQwNThaMBYxFDASBgNVBAMT C2dpb3JnaWEub3JnMIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA9MfW Zi1CczRnofuZvxSotM03lj8/k0IfJquI2porn7iuDQ5nuNZGH3bIRPXVXQQ75zbY sdWn64XBY7o9TzUICHL4m2OMxjpf2K/5vro+b1aqp0YoMO516qx2qX5y+HjlJ+j2 5jlf+7bucIYG+lpeDomUNqwMTyFo7JYjN2593EOaVndD5lBeTNas3WxEjaepdBUb kyPBkvO9yyyoNHAfBjhU596iGuTSKaXgIFcLEvbb3+UpjSqzDULm+MKO9B6IwNAJ VBhx54ppRZwyOIH+8UOck+uqe33hF6X6+Pg0zIIDblr53d8Bb+tD4bpe2JM0mgv3 AKcGrao3LqeL6TwCgS6Dn26GQxZDKrCMD+yINrvuVUdA8pDb/XRX/chbXZpSTJ1B JbwbwSfENEYvGORmYPhyB3j5qXFKCp4AOQcE0yR5vEs5NAHc4B0AI6FLjbZ4uZWA gu6beE/mvNb+Zy154iKqfgY1sYqyzJ+4qgwTDiDRaVIXaKSDK7a1MiPI1KrTaOlu eX7jbWnL0+GckxXd3BdN6ky8yX7AF9lRQkAEOYGnozO9VPY/6OsG4h4SpF29n0sd +JxIeWKnip4Jlkp5dq0BL+GdD7Mk+iKjqkPgWFSUuc7X1c/9xBLnj75UiNkpcAKS IIeyAk3Lp9L6cX6YyVHHpsXo/Uk/z7uwz/HKJNECAwEAAaOCAg0wggIJMA4GA1Ud DwEB/wQEAwIFoDAdBgNVHSUEFjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0T AQH/BAIwADAdBgNVHQ4EFgQUZcDc4LwGH04wHW5VO9FGD8xDZwUwHwYDVR0jBBgw FoAUFC6zF7dYVsuuUAlA5h+vnYsUwsYwVQYIKwYBBQUHAQEESTBHMCEGCCsGAQUF BzABhhVodHRwOi8vcjMuby5sZW5jci5vcmcwIgYIKwYBBQUHMAKGFmh0dHA6Ly9y My5pLmxlbmNyLm9yZy8wFgYDVR0RBA8wDYILZ2lvcmdpYS5vcmcwEwYDVR0gBAww CjAIBgZngQwBAgEwggEEBgorBgEEAdZ5AgQCBIH1BIHyAPAAdgBIsONr2qZHNA/l agL6nTDrHFIBy1bdLIHZu7+rOdiEcwAAAY/LcvVMAAAEAwBHMEUCIQDGZIAdci3D zw/rkyudkM7sYQUpW/33SinDZT9wVhGgVAIgMmrs76BxjJS2ZdlXH2JSKCxjkzRt mbv6Qj8yxFylwnkAdgDf4VbrqgWvtZwPhnGNqMAyTq5W2W6n9aVqAdHBO75SXAAA AY/LcvYQAAAEAwBHMEUCIQDVriRwzylAn7m4dIbWs8T11XFMgz53QTRRsbtDCfKT EQIgMwJmjL5ntQxIHtUItk+KM64KYOW3m8pMyx4ZuH9sdGMwDQYJKoZIhvcNAQEL BQADggEBAGi7sryv9rQDH8MszACvtxdBy0UHlxKCzMdc6oiIAtR2jhiuhfsDRW9J SlkHLAYF6QssLE7IfxiFH8eE5duH8UN242UDsDaavzlj+jrHIeWgdmm8y4p3xhdb YKOwC+DV4KuQHODPbxSfVkfrfGbWI5Fj39wdTUpWHNprWprbVHqDhM/6PXxORSDE mfWNqG18d3aJ/m2fLN58MW1+amawUVLTZUnE6KhEb3qlEK6eQIEywEFtxuRXvHrn 0Iye3aMUFiwjOs+dYV4Yy8o6MBNLk73Imw3v5+FNzXlYcab+y4zmV2viedti0DDx +F5FjXTSD3i2yXwnrF9iHMXQDL6sOA8= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA9MfWZi1CczRnofuZvxSo tM03lj8/k0IfJquI2porn7iuDQ5nuNZGH3bIRPXVXQQ75zbYsdWn64XBY7o9TzUI CHL4m2OMxjpf2K/5vro+b1aqp0YoMO516qx2qX5y+HjlJ+j25jlf+7bucIYG+lpe DomUNqwMTyFo7JYjN2593EOaVndD5lBeTNas3WxEjaepdBUbkyPBkvO9yyyoNHAf BjhU596iGuTSKaXgIFcLEvbb3+UpjSqzDULm+MKO9B6IwNAJVBhx54ppRZwyOIH+ 8UOck+uqe33hF6X6+Pg0zIIDblr53d8Bb+tD4bpe2JM0mgv3AKcGrao3LqeL6TwC gS6Dn26GQxZDKrCMD+yINrvuVUdA8pDb/XRX/chbXZpSTJ1BJbwbwSfENEYvGORm YPhyB3j5qXFKCp4AOQcE0yR5vEs5NAHc4B0AI6FLjbZ4uZWAgu6beE/mvNb+Zy15 4iKqfgY1sYqyzJ+4qgwTDiDRaVIXaKSDK7a1MiPI1KrTaOlueX7jbWnL0+GckxXd 3BdN6ky8yX7AF9lRQkAEOYGnozO9VPY/6OsG4h4SpF29n0sd+JxIeWKnip4Jlkp5 dq0BL+GdD7Mk+iKjqkPgWFSUuc7X1c/9xBLnj75UiNkpcAKSIIeyAk3Lp9L6cX6Y yVHHpsXo/Uk/z7uwz/HKJNECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 303123823201033839958028161267976810787768 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-05-30 20:40:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2024-08-28 20:40:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'giorgia.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 998617784852959332674277351941844089407918785991080700723458154219522253675100588417892801970305596990993331535498438583148342543009600266234601213399713967329338875651057562726916429153224075506046500173152935524245512099504618377595480343934375048283205064553536540816518929535815366137353237143723796467179942572144335628445844342684517395569870891916994733110676097898112312337099876525844390681203163247762201575539089694936226702165217399929538111482239755213360203910345789700185133123235956894060868023044770144838079303704468764881167708929867570539958461020782706252018032124906049117938801687495421989418643391228586780190119902817246602200169931251189386469277699383504158908614372670864410821542179292222303897764380359065580785085987856430871053060834585256058888174723707654348704612369875237201372826434534647182932597195167769079624944664356211568380315617737461562616499581141390106993001771370188619415500815938937942801821276002241205978440074363327175447069825351306892302059780087788266473886494222228171804920441537187176366312632163683833070213625361397093271372075753164738315967725242859818476320845875433721871172896354391978523096154931956863989025635198494768901813847517999317474241095159696045717988561 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 65c0dce0bc061f4e301d6e553bd1460fcc436705 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (15 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giorgia.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f000760048b0e36bdaa647340fe56a02fa9d30eb1c5201cb56dd2c81d9bbbfab39d884730000018fcb72f54c0000040300473045022100c664801d722dc3cf0feb932b9d90ceec6105295bfdf74a29c3653f705611a0540220326aecefa0718c94b665d9571f6252282c6393346d99bbfa423f32c45ca5c279007600dfe156ebaa05afb59c0f86718da8c0324eae56d96ea7f5a56a01d1c13bbe525c0000018fcb72f6100000040300473045022100d5ae2470cf29409fb9b87486d6b3c4f5d5714c833e77413451b1bb4309f2931102203302668cbe67b50c481ed508b64f8a33ae0a60e5b79bca4ccb1e19b87f6c7463 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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