www.sanarica.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a8:cf:59:32:d9:83:b0:e3:fc:5a:bf:50:0f:05:9d:6c:39 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.sanarica.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a8:cf:59:32:d9:83:b0:e3:fc:5a:bf:50:0f:05:9d:6c:39Serial Number (int): 318779908778900036819110700816879358667833
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b4:fd:a1:9e:c3:6a:e4:ad:46:51:44:8a:fb:d4:91:50:38:76:28:48
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): a4:67:6c:54:91:ac:00:64:d9:a3:1a:e7:08:c0:d8:ff:fa:0b:44:e3
Fingerprint (sha256): 5b:32:81:32:f1:19:81:4f:c4:7f:b8:20:7a:a3:f2:b8:82:a0:80:ad:49:51:41:a0:16:92:fa:69:49:24:b4:e7
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.sanarica.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.sanarica.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.sanarica.org
Other certificates including the domain name sanarica.org
(limited to 100 certificates)
sanarica.org
www.sanarica.org
sanarica.org
coinsnipers.com
dogfood.organic
www.sanarica.org
sanarica.org
www.tipkissersofgab.com
www.sanarica.org
www.sanarica.org
curacarpignano.org
makeup.organic
sanarica.org
sanarica.org
soglianocavour.org
sanarica.org
teketege.bible
sanarica.org
www.sanarica.org
www.sanarica.org
montesanosalentino.org
sanarica.org
www.sanarica.org
sanarica.org
coinsnipers.com
dogfood.organic
www.sanarica.org
sanarica.org
www.tipkissersofgab.com
www.sanarica.org
www.sanarica.org
curacarpignano.org
makeup.organic
sanarica.org
sanarica.org
soglianocavour.org
sanarica.org
teketege.bible
sanarica.org
www.sanarica.org
www.sanarica.org
montesanosalentino.org
sanarica.org
Certificate
The complete raw certificate details for www.sanarica.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWTCCBUGgAwIBAgISA6jPWTLZg7Dj/Fq/UA8FnWw5MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDIxNzQ0NDdaFw0y MDA1MDIxNzQ0NDdaMBsxGTAXBgNVBAMTEHd3dy5zYW5hcmljYS5vcmcwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDi3VQT3OnOxVODzIOAYo/Xhwn5knKD f4pH8w/e7da7hg7rBQhjjYWpikK5h4owz3BM6maKZfNqDbMQd/hcE7kKNTjDcT+H zl9vjhdmhfWg9AX1D5tLkx+n6AuN795J1uR7hJpQVGl3SNampaXrallZOGnBGvZh 80bqRgIFJ0aCBoNUca2XKRGdaa/BnCgbxFQFVK5OZlnTKvXDdyL2uLSQh/rWzQ5j 7ROxatL9Zj0/gyYkMzenaCcpri8/MmLDlmzSnI72FChpcvN89TtDj1/Xbzp4QhP/ ibl8nwhcdpAPUegItZ/uzg9hoYyoneitdyAMrhDWPuKeXnBe3gBqgvgOf7Y/sqCH gO0yuPZ49a2yAoeSPKyZjmQySaLlXSRFgmWd11qt54Lr53UQlomsyBLSHL9guriE wSF8fiY+yWkQ0+/LD49RPPPSzbwmuta7oJRMso7wQ3VqpyMOSDCIi6WKQMC0Q1LO Pg+mPMQFHtPotnhkYuwxBQ0C5vEXweFwq8mKFEkyugGOBKiJb7QmDP6SoBFdrc+8 7xjw1QflY7DMZszg9PpNoDXM63oNv8qi+kcDmXqLeXLZ5aq9e5QEZFd9KqQ60luJ XK3V7m6CfWx4aGLg3u6byjIuMzjEYAIPj7/07f2pmFNAG8w65ZJSC4hbGyPacCvw yQ7zgRvVvgQYRwIDAQABo4ICZjCCAmIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS0 /aGew2rkrUZRRIr71JFQOHYoSDAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5zYW5hcmljYS5v cmcwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQC BIH2BIHzAPEAdwBep3P531bA57U2SH3QSeAyepGaDIShEhKEGHWWgXFFWAAAAXAH OC4+AAAEAwBIMEYCIQDH/hfgKV8J7m2NU1gkawgucNDWrv68FuziyZZzzg9k2wIh AOmOkkJxa9JZiIgjV9RquaTj7+EjEm4zPxWXXlfnPgb3AHYAB7dcG+V9aP/xsMYd IxXHuuZXfFeUt2ruvGE6GmnTohwAAAFwBzgubAAABAMARzBFAiAlX3VjtSbiBB2a Rwc8JEEIpt4cTUKdFhwPugagL96rFQIhAPjHRmx7FWCu9PMbdft4ZkBeMKPN/zLo vlzbg4H3k2J8MA0GCSqGSIb3DQEBCwUAA4IBAQAp8Fdx12xxjT4gI1ma/CWiZ/pe 28i2hwMSBNauL0EnSUpk/hw2Ikkm+Ln5rMxNsVgBXHGplyIDSnAx/lFrOoGAHTsZ rm0Nya5z026YoxqkEpq0kx0ZN0X0y9Bc6oBIp4Zrgoo+v/Hx2sjcknE0WHga6nl9 5c13K5AP6KXy2xY81/cgYW1O63M2PlG+7Lirsoy2F1dPdSLHZgMc5o0UXW7Pg3Pj sFyNmSzUnMDfI7peHMMWm51TRZSsKoNi3/WaLmhXPlfFGnW/M50zWK7o9p0QpLXf nONHDDhDzUzMPnCZIwEIOG/81+itxVSz6gOUp6NsDDMaLwJdcnb8Hu8h0Qtm -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4t1UE9zpzsVTg8yDgGKP 14cJ+ZJyg3+KR/MP3u3Wu4YO6wUIY42FqYpCuYeKMM9wTOpmimXzag2zEHf4XBO5 CjU4w3E/h85fb44XZoX1oPQF9Q+bS5Mfp+gLje/eSdbke4SaUFRpd0jWpqWl62pZ WThpwRr2YfNG6kYCBSdGggaDVHGtlykRnWmvwZwoG8RUBVSuTmZZ0yr1w3ci9ri0 kIf61s0OY+0TsWrS/WY9P4MmJDM3p2gnKa4vPzJiw5Zs0pyO9hQoaXLzfPU7Q49f 1286eEIT/4m5fJ8IXHaQD1HoCLWf7s4PYaGMqJ3orXcgDK4Q1j7inl5wXt4AaoL4 Dn+2P7Kgh4DtMrj2ePWtsgKHkjysmY5kMkmi5V0kRYJlnddareeC6+d1EJaJrMgS 0hy/YLq4hMEhfH4mPslpENPvyw+PUTzz0s28JrrWu6CUTLKO8EN1aqcjDkgwiIul ikDAtENSzj4PpjzEBR7T6LZ4ZGLsMQUNAubxF8HhcKvJihRJMroBjgSoiW+0Jgz+ kqARXa3PvO8Y8NUH5WOwzGbM4PT6TaA1zOt6Db/KovpHA5l6i3ly2eWqvXuUBGRX fSqkOtJbiVyt1e5ugn1seGhi4N7um8oyLjM4xGACD4+/9O39qZhTQBvMOuWSUguI Wxsj2nAr8MkO84Eb1b4EGEcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 318779908778900036819110700816879358667833 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-02 17:44:47 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-02 17:44:47 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.sanarica.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 925526673469107105081320519362465121066736827815735554204495346240792466345563504182962922931478101548392191276580839738441310025551516353798071198102859980107229585467178990111244302359720594049835970354291293010295671340466874529338619279520057800005445082163289452093704340306360219154378384403735482885535558346199984617663139647098592478469262954496031152100316097386032924891796823239316144281593369672864560491866115735063425899223451041760578342066742315651342154797235842234578887702676384547262132544986901439208420013780777301672126820182655347039434993883565189356160947127668961783599807628001535764692062589545207335021590249085593314931301632606583563278705405376473503613624359966624750700843760392699827848479035685210697611197831732559280346988510926241071817519197711942971132292449196598875938177259453802113773626872590730513033051251422865741163495362534503943129445386612456999888460791415126701878933086009610278617545701137249188318888148296451662567691610884560093405744197928789928200151186363598168818341748556143114175755104060279460463338135653100897838036070737907420979147421540318555176788738565078941879899876565425729424397090759216064073682700907573217223088957696836473052521237944265032681658439 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b4fda19ec36ae4ad4651448afbd4915038762848 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.sanarica.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000017007382e3e0000040300483046022100c7fe17e0295f09ee6d8d5358246b082e70d0d6aefebc16ece2c99673ce0f64db022100e98e9242716bd25988882357d46ab9a4e3efe123126e333f15975e57e73e06f700760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000017007382e6c00000403004730450220255f7563b526e2041d9a47073c244108a6de1c4d429d161c0fba06a02fdeab15022100f8c7466c7b1560aef4f31b75fb7866405e30a3cdff32e8be5cdb8381f793627c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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