www.corciano.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:79:ca:bc:9a:5b:0d:32:5d:36:2c:3a:1c:9a:01:d1:23:4e was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.corciano.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:79:ca:bc:9a:5b:0d:32:5d:36:2c:3a:1c:9a:01:d1:23:4e
Serial Number (int): 302780507530377177515614110970561237689166
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 0d:3c:99:74:6e:6c:24:aa:e9:5a:77:84:de:e7:cf:00:22:e1:91:c1
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 44:a0:cb:1c:7f:6d:d6:15:8e:26:af:fe:bb:fc:49:02:4d:71:5c:cf
Fingerprint (sha256): 5e:40:00:a1:af:03:40:4b:61:a1:a2:73:84:52:69:44:cd:5e:ff:b4:c7:f7:a3:b8:cd:b3:70:e2:32:c1:68:07

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.corciano.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.corciano.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.corciano.org

Other certificates including the domain name corciano.org

(limited to 100 certificates)
corciano.org
corciano.org
www.corciano.org
742.me
phragmitescontrol.org
corciano.org
corciano.org
www.corciano.org
corciano.org
www.corciano.org
www.corciano.org
942.me
mobilitas.com
corciano.org
www.corciano.org
corciano.org

Certificate

The complete raw certificate details for www.corciano.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----
MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0Upvw5THJHDnJ2l4652u
R6i6/vN+C30rPTwKHxZDAU8e3TnhlAbgAT/maPjAiHBfdfEt5lhAPPjF/RxfNlNw
4tNlSC58Opb+Idp8IZQVyCmiEbiLcbnwd/jhmZQwfaJ4QBx9GiodzJ5TgGPqZ+/B
MNWL559ihhn0rAaInTrqDFhVnyTt2PaBzMR50dkweTBX+VFwoSv6n2HKvEY1hC9J
HB6PD47DQ/7kzGZWzICrIFZCjpufF47FYXzNCoC6lx9aZbubEUqGx0jGpi0yfoVs
rStKBagdezjeZ8NG1El7cRb5YgxaBdC2IRccnkoLLChRy4yZQOMCiU1IOQ1b/zVj
ZviI3gNMOVmTU9/n7hQOJl9ykjG19VTO45GOI2dRfoxIP3lKf8HxOkV27i+M8+BC
+Arw9NEDnqyZNIXd4AlhUOn4hma+klaMuQHrvWdWiUXsLpG/5nP1VCEHrpsWto2Z
B3h8nJNbR4XR5KdJJqYnoR7sorCxtOdZ/SY6ZWmyVTlBgENTwnnxtQM1sRzk/MAq
OMMkz9ArFHQpHRV5v5T05mwYfF7dIf1xRlDVyTYIphkbKKexpDlBQeLoikbmOMR8
EtUM7lhJJDWcfDtjshLcw+c7VVXv1m6TMgGi2XZPuxz5/O4dvA7iwhtRyhLOnSeB
I5woH5zLnB0+iDbMVgtUXlkCAwEAAQ==
-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 302780507530377177515614110970561237689166
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-28 15:30:30 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-26 15:30:30 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.corciano.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 853831839685795641423385449040694760648975077512517916992077875438450658056591423118772542367392658415039159253607016614011886328605369748330227752484258012421083207879790039461154665624608962934408218145571314383672501962903634754869101315301297765796187226536977207430454285090420812480320889083080554424304001268788711854901798687160597887886494655266945968469706381631092805636529569154228330463931355403655070338051565779512172711571318781304619900229962591002268419696562765049221029760264371748266613325054655584987601331565902902607796098183435026539777109096969083307914346636424777481197606063993365239508412203498661700120681393712827880458649788411696950003927432534501273878549382525845911268718488029248210269475040616103075616663547888791422211009788336019103654266994505579879912890878923772213791829557961268181485342734914130769106261719694031733615564847548362755128035244730931620381752480415057572597302818331038517064557288611980602232481912832855624764958095271062348803489698105445262111266169039459056835044537994583195330696556389377554630884733114196389911355560442622971601939736029222357398623277131164115690414501832776977581891685512992280490486949635236860179026079800360579030706592789581287602282073
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							0d3c99746e6c24aae95a7784dee7cf0022e191c1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.corciano.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016aff4765110000040300473045022100ea49fa4444661439bbf10035e01e6ec004c47ae6c8e793ea87e045facefc409402206d6da596157da28ad367ad08f1dd2abd0e3962a517947df705f04782771dec8e00750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016aff47671f0000040300463044022002947557b4e0678c061c238d0d94ae559d1f045d708dbf09baa7e45fec0bc4bb02204014162682bed66587e9b291490ef9ec023596e31c368a971a0286ebd4648499
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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