demenziali.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:12:a4:b1:80:64:00:b7:48:f8:11:8c:64:a3:0b:a7:5b:4d was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=demenziali.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:12:a4:b1:80:64:00:b7:48:f8:11:8c:64:a3:0b:a7:5b:4dSerial Number (int): 354793141363542032893334496494521502096205
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 3f:03:06:83:c1:8a:9f:89:92:7d:67:10:6a:fa:19:ba:99:24:c3:c4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 58:1f:4b:ec:1d:e4:47:78:28:cc:c8:34:75:fe:dd:ad:27:90:b6:e4
Fingerprint (sha256): 60:1d:11:9e:49:3f:94:03:c7:3a:15:0f:d1:c2:8a:32:94:ec:f7:91:18:72:57:29:cc:d3:8d:c4:40:1d:b5:3b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate demenziali.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for demenziali.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
demenziali.com
Other certificates including the domain name demenziali.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for demenziali.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVTCCBT2gAwIBAgISBBKksYBkALdI+BGMZKMLp1tNMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMjEwNjI5NDVaFw0y MDA1MjEwNjI5NDVaMBkxFzAVBgNVBAMTDmRlbWVuemlhbGkuY29tMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyvuK3pAVyC8zrOFAhZ/iRn2x6K+P4GsN NkiZJMw9FYH6QlHehs537gsSq3YhncaTyvT3V4Hbw5bCM7Z6EqKFNWUYxtrC4PSe h2fIIFy2KXitCvBfGAns5mA3Qp0sofm3xMFDqfIDFqbnyNYM1FXauyqKeG/EdyvW NwSm7/f8YkO1F/lT1RyoigEn931NYg8tBhdtrnuVtO0d8MvhrRiG82zzrKau2ZZe 2FIUu5tzfCCjMUF2jFf6eLfir9ShdDwES7XY4Kn5soofgUFi/inojYYQRXzE/+k8 LlQXgbKr6G8Sjo3kCY8tXJEhu+3CtdrNKR2HuFXjVVXus6McK0VyQRTmZVhp/PHW nnRV/GoWRsVsEBgQdf6hsaaV4RUD1GkuXv8nhx0TdxyPOnOvso8uxPfZrCxdzh6w l+7/V1V6/dTecQTecAoBfwBKfIeojCLBxiN5asO5jFu2BH1UFywzPUm8WeYRh7NA t3hN6VoU1XlywdDYPH8XFxwCklIbnP9/amP73VvWKQCqsgfeMIkpW5DMjoHQphmJ +A1+KUvSWw0qjXYvxajQRx9HSOsVLqWDtdvyGQ+HutGv593orPCuAui1nt7LUIlp sTLNrvAh+rTpD+ZsKEmBFpczEdR+j0h6E/JL9wMgtzJhlDrNuSdquCCHHTQ3g5xZ ui67OpzzI3MCAwEAAaOCAmQwggJgMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUPwMG g8GKn4mSfWcQavoZupkkw8QwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg5kZW1lbnppYWxpLmNvbTBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQUGCisGAQQB1nkCBAIEgfYE gfMA8QB3APCVpFnyANGCQBAtL5OIjq1L/h1H45nh0DSmsKiqjrJzAAABcGam/ysA AAQDAEgwRgIhAPSYBg5TSKhWfXhASNR6pKZAtxiP9MSDRHjT4QPpW5gsAiEAlZGg FDeYaFEhZ5tEdDLHdhC2Q0BRau/jp/Q6XSAwj4gAdgCyHgXMi6LNiiBOh2b5K7mK JSBna9r6cOeySVMt74uQXgAAAXBmpv8oAAAEAwBHMEUCIQCB4YZ9JKrjNnzgAPUK G4mqO9eEw50hj0s9zM2t8Oa2+gIgS5H5BiHyk+VFmZvr9cPZnq9nGCBtil8AVB2w 0f2ogHMwDQYJKoZIhvcNAQELBQADggEBAFf+LdhvuyhP7sJyzPLQOLSgrsLLcLiL a1d2VDlGs47XVWxfMHU32EVDndTB7BHLKLXn0uc+Km4nBYLmotvYWPAJsO6lhfZe 7pcO76+g+sPZTlxihcqwkkFRLkeY3UjjLyFH16pjI339i9iMX/AK3z2OZX9A02x+ TiRa4L+JNF+iqVHmZYgD/LMuZpyM5kis5Ly7KRH4fXGk6Ms/9A3/WIi7/kd94qwc clQg4kyS1vNN95WkHjXtBZdoCFevCCI+rfIxDjwmxUge71SR6uBJLXGZY2w/Lnt/ 68zjAnnsn01aNBZu3FalbB02CmCYdm9d4UeuIAMSCYetAAKJf3EN5qw= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAyvuK3pAVyC8zrOFAhZ/i Rn2x6K+P4GsNNkiZJMw9FYH6QlHehs537gsSq3YhncaTyvT3V4Hbw5bCM7Z6EqKF NWUYxtrC4PSeh2fIIFy2KXitCvBfGAns5mA3Qp0sofm3xMFDqfIDFqbnyNYM1FXa uyqKeG/EdyvWNwSm7/f8YkO1F/lT1RyoigEn931NYg8tBhdtrnuVtO0d8MvhrRiG 82zzrKau2ZZe2FIUu5tzfCCjMUF2jFf6eLfir9ShdDwES7XY4Kn5soofgUFi/ino jYYQRXzE/+k8LlQXgbKr6G8Sjo3kCY8tXJEhu+3CtdrNKR2HuFXjVVXus6McK0Vy QRTmZVhp/PHWnnRV/GoWRsVsEBgQdf6hsaaV4RUD1GkuXv8nhx0TdxyPOnOvso8u xPfZrCxdzh6wl+7/V1V6/dTecQTecAoBfwBKfIeojCLBxiN5asO5jFu2BH1UFywz PUm8WeYRh7NAt3hN6VoU1XlywdDYPH8XFxwCklIbnP9/amP73VvWKQCqsgfeMIkp W5DMjoHQphmJ+A1+KUvSWw0qjXYvxajQRx9HSOsVLqWDtdvyGQ+HutGv593orPCu Aui1nt7LUIlpsTLNrvAh+rTpD+ZsKEmBFpczEdR+j0h6E/JL9wMgtzJhlDrNuSdq uCCHHTQ3g5xZui67OpzzI3MCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 354793141363542032893334496494521502096205 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-21 06:29:45 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-21 06:29:45 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'demenziali.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 828096709938640274363110602821179856210605853900641924526815990013220297600324939627242970805165838439043748430737688153065287856358363564848956363089428964443863351741243960138311790252499568209145348934464063736813041415306410313784598643534772315930367719054247436810813963699722267840776830171716579432041674174583378122534608499271820722380582026016888112041688740953443140313533085235493730240720817403406512204874148020346932152960238735616099349951784048659739370873085429265187982323113700231715579647628460227945988549569650809833651781934124290897293028151540207166951949515050270270043960648279855429099066707201231109419629496142326173257241774042862834775096205692046867195353393574176039591535413886625346886906720582926443827739548397529936770334362959190334364298958518434035065063132563521718370874876462260320209805094536403757826215043824001142014317076727358036841215101858413465516916178791655528272615525902575033683189058081365602777844174051555733192000866840349446470225122990327945485559438497510875036102948816759904668719443011555999970558813620306055675808153303549521914031640067522348501702484583256386511683155593359755848000102971010979889951378846582199439091370989623133190098506477006681831318387 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 3f030683c18a9f89927d67106afa19ba9924c3c4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'demenziali.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000017066a6ff2b0000040300483046022100f498060e5348a8567d784048d47aa4a640b7188ff4c4834478d3e103e95b982c0221009591a0143798685121679b447432c77610b64340516aefe3a7f43a5d20308f88007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000017066a6ff28000004030047304502210081e1867d24aae3367ce000f50a1b89aa3bd784c39d218f4b3dcccdadf0e6b6fa02204b91f90621f293e545999bebf5c3d99eaf6718206d8a5f00541db0d1fda88073 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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