pigac.com

Issued by R3

About this certificate

This digital certificate with serial number 04:d9:a4:23:75:82:20:e1:4d:96:bf:7b:76:55:aa:08:85:2f was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
  • Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
  • Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)

Certificate Subject

CN=pigac.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:d9:a4:23:75:82:20:e1:4d:96:bf:7b:76:55:aa:08:85:2f
Serial Number (int): 422508594853935168729297639114847256347951
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: b2:52:b0:5f:08:32:e4:2e:74:75:29:c7:c6:de:b1:bb:71:90:6c:d2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6

Fingerprint (sha1): f0:ec:49:26:08:26:86:09:9a:1b:7b:c9:ce:76:4d:b0:44:b6:79:e6
Fingerprint (sha256): 60:a3:fe:aa:01:09:46:42:00:52:54:74:4b:0f:96:f6:48:9a:74:d0:da:b0:fa:ff:1b:3d:06:8b:37:03:16:53

Issuing Certificate URL: http://r3.i.lencr.org/

Revocation information

OCSP Server: http://r3.o.lencr.org

Check the revocation status for certificate pigac.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for pigac.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

pigac.com

Other certificates including the domain name pigac.com

(limited to 100 certificates)
pigac.com
www.mywik.com
pigac.com
pigac.com
recoverthrive.net

Certificate

The complete raw certificate details for pigac.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 422508594853935168729297639114847256347951
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-18 17:12:33 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-17 17:12:32 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pigac.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 773251601264463054628055628708642378159208681300316918577552207597185387624099734544446088663189343108528887438375903852519976696487061409499871183335300968479335962632206487639766842676077832582492327725736277184691920091215227755068327248650500804154930739115302246781215530630887883355786367367665174784427039782100611612140058590421427189159571703206319819691701684664445938967230130410534016172579694129507176557367714851238056416172203920252540380849449680783834167420945643618878130257236282217446701166994308919541824638232361053720473392681854665190093618817340477803819066803783227190210908253252829347595645802705299593430209341049001642478951924002446511875497827816689203197732942746862304458902091854208505927243274218774269425431588686339777463248834211589283595796373334472111624480387014679421837286118478062507867965191070278723842303455312054038902442503907012082079733064081021477953313457582755597125807364140366467234814998412838210737386380712280264503028460977219218841879749060350424635304039500376261374627673766060260113066203463641628332084775341066772221004577727537535948204077922846808795813438249916158027931353615228995785742937872257587968370035538681924372371234108943830349655827570243632659522403
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							b252b05f0832e42e747529c7c6deb1bb71906cd2
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pigac.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018aa97e7bc00000040300473045022100a56e80dd74484ca9d8d1b3d4f9b603ddeff10b2c9c77c76c84409fd5f9b3fdcf022044d0cfa4c592d0ddbf298ffe70555b0ee12873c7cd984aa878c20b1b1cf473d6007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018aa97e7be7000004030046304402200b3f61870733547e00c6a330cf5d7da6123bf9ca45773671636459182e8729f60220254e8c8702222d99560e78dfe62537b633d8685f6cc176397758c2c949b2e542
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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