mantovane.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:10:14:8a:d0:30:55:93:7b:61:0c:41:db:62:a9:6f:92:e2 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=mantovane.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:10:14:8a:d0:30:55:93:7b:61:0c:41:db:62:a9:6f:92:e2Serial Number (int): 266808680985468565359760234439388907410146
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 26:55:76:ce:a9:e3:8d:22:b5:5c:5c:bf:f1:c0:1d:d2:99:7a:af:d9
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f8:ad:69:3d:6e:0a:da:1f:09:2a:1d:d9:10:57:89:76:98:c1:1c:d5
Fingerprint (sha256): 5d:bc:59:c9:0c:cc:91:2a:0c:b7:1e:c9:b8:1c:3f:09:0e:a5:48:f8:1a:ca:f9:fd:99:4f:c0:96:4e:8b:26:6d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate mantovane.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for mantovane.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
mantovane.com
Other certificates including the domain name mantovane.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for mantovane.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUjCCBTqgAwIBAgISAxAUitAwVZN7YQxB22Kpb5LiMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA4MjgxNzUzNDBaFw0x OTExMjYxNzUzNDBaMBgxFjAUBgNVBAMTDW1hbnRvdmFuZS5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQDh9cLbHHjTaqta8u0M242/E8oiGHihTtUy lXj6di5mrphqNd8khO9Yp2D0HxxJJNuFQr2TcoLuKnq90xLixX/kiSX//BnUxE6m voG+Vg+esjtDsXWAwJHWxO8Z+R2x+OOVX/KH56X1bg0Xh1qYbhhPtEvVGgBEJQxI H1/PGHBJwi9MZnHr9CgUnyYV3kAS7igm9Ztg+Hhx6CFN0dBNAwXWm2Qwzp//DYfm hrwkUrlwhAuBKcCtFqXgOEcWuQdh785Vqso4ID6AX6lwFeetBYM+zlsTUQPd09ev or9zYEtpCBUOfE1fEbKmCy6byRMKSbhG99pZYATj2doAgz5xTimOYK22Q5cja4GR 1Od9XjIul/AIFahQnF7LZ79y4aOb6mkUFaL/hN0lVyU3OrWjcy66yHcdl0dKcAJY C5b/VDTyxFv1OjC8mgrKKVZqE/5nmYzNr3l9uDk0WpkdNtnXGhC29NyTUE34K1Li YO/DOqMQA9T99EgLa/0hQ6t0797JThmofj1ue8Q2zOtK2WjMFPc+mph7g40Ny9hw aSkXhOy+zQ1GdeN2rK5yV9OZCh3mSInsSqZewGJgmbDDbtCvZBazzMcSYNljWyRI K1ZR0HjjwUm8u70gBv3+TC5XMCn0k+53NP1oC1vB25s1q/UgCAsQeeCoBVAhJdTK EdpH/R4cmQIDAQABo4ICYjCCAl4wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBQmVXbO qeONIrVcXL/xwB3SmXqv2TAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDW1hbnRvdmFuZS5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEEBgorBgEEAdZ5AgQCBIH1BIHy APAAdgBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAWzZk4pWAAAE AwBHMEUCIQD+WWDK/toex+hEkQZSwx8x7/gKsT+HSecbjTGn43OuIwIgT78FROHd 3RJrOKTmeSNzCkQwkg0lARN5UBskDOvzvn0AdgBj8tvN6DvMLM8LcoQnV2szpI1h d4+9daY4scdoVEvYjQAAAWzZk4mCAAAEAwBHMEUCIQCqPJpNfI1rnkLFgNcUcxgG QXwVfQ1fTRDF+8iT81eEDgIgNOhJn8X0DXpCCpWlW8IDh6nCxATPwY0rqNGps2Wp bEQwDQYJKoZIhvcNAQELBQADggEBAIjd1Sc0KQ40HyNp2BKUI5mMQMMBZNoaO6/T 0Lv5eL8RadNk2s1lwdznHxQjiB14VpsS00kk28wra9wSlJQBdX49+OFTqPoU0nah UgdVodq9EsR5us7eDxHEcorUCrlyuji8PDI9+b4YmT6eIXE0dGtIgeHwEHDG5THE BMRAf417Da/C4/8DqIc6W9gW/bmScL3azuuZmuXKHazzxvWgcthYzpYWawEIAeX6 fv0CMXiPFbBLOWtCTkR1XPC+fKTMQ1ENncL+0PJlzoUNlKyqkEI07WsbElx1mqgM 1XJzlP6Hj9H/hI4ByrEOX5uiKpTterJvVqAZU76dGbse9ezUV/k= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA4fXC2xx402qrWvLtDNuN vxPKIhh4oU7VMpV4+nYuZq6YajXfJITvWKdg9B8cSSTbhUK9k3KC7ip6vdMS4sV/ 5Ikl//wZ1MROpr6BvlYPnrI7Q7F1gMCR1sTvGfkdsfjjlV/yh+el9W4NF4damG4Y T7RL1RoARCUMSB9fzxhwScIvTGZx6/QoFJ8mFd5AEu4oJvWbYPh4ceghTdHQTQMF 1ptkMM6f/w2H5oa8JFK5cIQLgSnArRal4DhHFrkHYe/OVarKOCA+gF+pcBXnrQWD Ps5bE1ED3dPXr6K/c2BLaQgVDnxNXxGypgsum8kTCkm4RvfaWWAE49naAIM+cU4p jmCttkOXI2uBkdTnfV4yLpfwCBWoUJxey2e/cuGjm+ppFBWi/4TdJVclNzq1o3Mu ush3HZdHSnACWAuW/1Q08sRb9TowvJoKyilWahP+Z5mMza95fbg5NFqZHTbZ1xoQ tvTck1BN+CtS4mDvwzqjEAPU/fRIC2v9IUOrdO/eyU4ZqH49bnvENszrStlozBT3 PpqYe4ONDcvYcGkpF4Tsvs0NRnXjdqyuclfTmQod5kiJ7EqmXsBiYJmww27Qr2QW s8zHEmDZY1skSCtWUdB448FJvLu9IAb9/kwuVzAp9JPudzT9aAtbwdubNav1IAgL EHngqAVQISXUyhHaR/0eHJkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 266808680985468565359760234439388907410146 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-28 17:53:40 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-26 17:53:40 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'mantovane.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 921836392029928690583306671722188810000926644791191806785244579835437156881318267780766008811026841488002234263406614038451441623770333681148608934159843597309291437425711172648159212719889689388910265817634697189930384753012365745977113632548912816663205243497819247247101529993485787466131260437208528293458169837253530647262471450077620472485076810450594852774115515250958162870291556121980306570597637956435296803829887091774897968431829319054642298981242608474294768990757310114245347178051800174442087442965003935529343777493622593693125343383453891104040937273533757979991694905119793917977315353013480029492529077705595246954351402416629047015070662468177838735241370995990834146223015233584101383202404321229680078332666670189219188017791482327020358518603419993109337972995033549905834758839433161755586307510877213262654593027262934327106648194287900615196691062912583183269670451561825310765147995947004823279325915117720315410989044980329991320311184960259835776744393836154994629531897658802946785152275089070965193698455270676756886602615481405567358717481195115408508527493606844152331248226058718450184262398138858063830243972943033128648605404189496366050214249027728617494145890913850368312733461114271663216532633 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 265576cea9e38d22b55c5cbff1c01dd2997aafd9 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'mantovane.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f00076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016cd9938a560000040300473045022100fe5960cafeda1ec7e844910652c31f31eff80ab13f8749e71b8d31a7e373ae2302204fbf0544e1dddd126b38a4e67923730a4430920d25011379501b240cebf3be7d00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016cd99389820000040300473045022100aa3c9a4d7c8d6b9e42c580d714731806417c157d0d5f4d10c5fbc893f357840e022034e8499fc5f40d7a420a95a55bc20387a9c2c404cfc18d2ba8d1a9b365a96c44 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0088ddd52734290e341f2369d8129423998c40c30164da1a3bafd3d0bbf978bf1169d364dacd65c1dce71f1423881d78569b12d34924dbcc2b6bdc12949401757e3df8e153a8fa14d276a1520755a1dabd12c479bacede0f11c4728ad40ab972ba38bc3c323df9be18993e9e217134746b4881e1f01070c6e531c404c4407f8d7b0dafc2e3ff03a8873a5bd816fdb99270bddaceeb999ae5ca1dacf3c6f5a072d858ce96166b010801e5fa7efd0231788f15b04b396b424e44755cf0be7ca4cc43510d9dc2fed0f265ce850d94acaa904234ed6b1b125c759aa80cd5727394fe878fd1ff848e01cab10e5f9ba22a94ed7ab26f56a01953be9d19bb1ef5ecd457f9