pigac.com
Issued by R3
About this certificate
This digital certificate with serial number 04:d9:a4:23:75:82:20:e1:4d:96:bf:7b:76:55:aa:08:85:2f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- DV certificate contains a subject common name, this is not recommended. If certificate policy 2.23.140.1.2.1 (CA/B BR domain validated) is included, only country and/or common name is allowed in SubjectDN. (BRs: 7.1.2.7.2)
- Subscriber certificates use of Subject Key Identifier is NOT RECOMMENDED (BRs v2: 7.1.2.7.6)
- Subscriber Certificate: commonName is NOT RECOMMENDED. (BRs: 7.1.2.7.1)
Certificate Subject
CN=pigac.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:d9:a4:23:75:82:20:e1:4d:96:bf:7b:76:55:aa:08:85:2fSerial Number (int): 422508594853935168729297639114847256347951
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: b2:52:b0:5f:08:32:e4:2e:74:75:29:c7:c6:de:b1:bb:71:90:6c:d2
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): f0:ec:49:26:08:26:86:09:9a:1b:7b:c9:ce:76:4d:b0:44:b6:79:e6
Fingerprint (sha256): 60:a3:fe:aa:01:09:46:42:00:52:54:74:4b:0f:96:f6:48:9a:74:d0:da:b0:fa:ff:1b:3d:06:8b:37:03:16:53
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate pigac.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for pigac.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
pigac.com
Other certificates including the domain name pigac.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for pigac.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF3jCCBMagAwIBAgISBNmkI3WCIOFNlr97dlWqCIUvMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA5MTgxNzEyMzNaFw0yMzEyMTcxNzEyMzJaMBQxEjAQBgNVBAMT CXBpZ2FjLmNvbTCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAL2J+wIu YIB3a2/AGZ01K+XOcQZSF0OOMfTs4JLXp53R0BPK61h3rTJSlP1xsAl6Cy5+9Qhi VDcciK9ErsRFxIH16UjKYSQygMFKv8aK/uitzT5mrtIr53s3WnaDUE6DEaZ0C+Fn zWHHy3z2L0VqMiKGTvdojsCntn7OH+viDg4Zky9jexk2dozD8vI5Z4NjZJOOGzaw 4f75wDItcZMFETVBlB8iqiREQ5iBLONFKMqN6j89OhzY2LUuF4ga9uO+hfjPe4Ng Gh9vTDHrXDtQpcjvQxQ4WAENLg/qer65PJJeMmTR/rguitx2fbVsPP8veOG/g2vW KICn3CLsHebe4pRr/HcHem73hRVEpW7KcZvyhY3WFU57k60bGPvDh0I0rfKSYr0d SuD4HttXqzytySN9BylhIKyHQ490bqpdD/ODlW/DACCQrAM/3vDqf2s3rxYTe3Nm e8aFYxPQ+qk5AHNUdmoF5ZLMqPMmXtY/+1UQSukZImfIaGB2rEGBNcJepYfDfaCb B1y9Vigei8/EfT+MnvWXjiPwCp8P6/NSEaSbfpdR5OEpTpCWCpoC8xyfku4LB7rD 98DS5wrkXHtmhsV665u/9NDjrt2+r0amZ1xsL4O/0VwpL84ifSfRJCGH05zdWBY4 S7f2zEg4GKfQ+eUlISzqPotQmfHhPNjQhWNjAgMBAAGjggIKMIICBjAOBgNVHQ8B Af8EBAMCBaAwHQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB /wQCMAAwHQYDVR0OBBYEFLJSsF8IMuQudHUpx8besbtxkGzSMB8GA1UdIwQYMBaA FBQusxe3WFbLrlAJQOYfr52LFMLGMFUGCCsGAQUFBwEBBEkwRzAhBggrBgEFBQcw AYYVaHR0cDovL3IzLm8ubGVuY3Iub3JnMCIGCCsGAQUFBzAChhZodHRwOi8vcjMu aS5sZW5jci5vcmcvMBQGA1UdEQQNMAuCCXBpZ2FjLmNvbTATBgNVHSAEDDAKMAgG BmeBDAECATCCAQMGCisGAQQB1nkCBAIEgfQEgfEA7wB2ALc++yTfnE26dfI5xbpY 9Gxd/ELPep81xJ4dCYEl7bSZAAABiql+e8AAAAQDAEcwRQIhAKVugN10SEyp2NGz 1Pm2A93v8QssnHfHbIRAn9X5s/3PAiBE0M+kxZLQ3b8pj/5wVVsO4Shzx82YSqh4 wgsbHPRz1gB1AOg+0No+9QY1MudXKLyJa8kD08vREWvs62nhd31tBr1uAAABiql+ e+cAAAQDAEYwRAIgCz9hhwczVH4AxqMwz119phI7+cpFdzZxY2RZGC6HKfYCICVO jIcCIi2ZVg543+YlN7Yz2GhfbMF2OXdYwslJsuVCMA0GCSqGSIb3DQEBCwUAA4IB AQAY5S4NDPOG2r5GmmjnuG0T0USe7bc/gyTX1xgNeTQdta+INd9ABOFcsuTEBnPW dlWu70O/UV1kInZqrZW9arVowB1ajdZ+v0AVFhRdRfyxaKdGl+NNos1+me+naMpw qElhj3tpluvvRHp6TSZIUCGo1okXCtN/YPARPnsF2IjRy7v33n0iywve+xtgJD00 ARQ7Pj/Hcd3ZpzHRAHDidwRdiOOWzH3+vcuhSd+7tp9K4YnlRhwnDPBpmTSlD48y zhPnhBnAT/sdC0O2R/Y3003+TORBpTKq39tjm6ZaIRdluO5Al/2Z4MFPWfgNkXb4 Np96nEWjubeES1MhKjw/eaNV -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvYn7Ai5ggHdrb8AZnTUr 5c5xBlIXQ44x9OzgktenndHQE8rrWHetMlKU/XGwCXoLLn71CGJUNxyIr0SuxEXE gfXpSMphJDKAwUq/xor+6K3NPmau0ivnezdadoNQToMRpnQL4WfNYcfLfPYvRWoy IoZO92iOwKe2fs4f6+IODhmTL2N7GTZ2jMPy8jlng2Nkk44bNrDh/vnAMi1xkwUR NUGUHyKqJERDmIEs40Uoyo3qPz06HNjYtS4XiBr2476F+M97g2AaH29MMetcO1Cl yO9DFDhYAQ0uD+p6vrk8kl4yZNH+uC6K3HZ9tWw8/y944b+Da9YogKfcIuwd5t7i lGv8dwd6bveFFUSlbspxm/KFjdYVTnuTrRsY+8OHQjSt8pJivR1K4Pge21erPK3J I30HKWEgrIdDj3Ruql0P84OVb8MAIJCsAz/e8Op/azevFhN7c2Z7xoVjE9D6qTkA c1R2agXlksyo8yZe1j/7VRBK6RkiZ8hoYHasQYE1wl6lh8N9oJsHXL1WKB6Lz8R9 P4ye9ZeOI/AKnw/r81IRpJt+l1Hk4SlOkJYKmgLzHJ+S7gsHusP3wNLnCuRce2aG xXrrm7/00OOu3b6vRqZnXGwvg7/RXCkvziJ9J9EkIYfTnN1YFjhLt/bMSDgYp9D5 5SUhLOo+i1CZ8eE82NCFY2MCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 422508594853935168729297639114847256347951 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-09-18 17:12:33 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-12-17 17:12:32 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pigac.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 773251601264463054628055628708642378159208681300316918577552207597185387624099734544446088663189343108528887438375903852519976696487061409499871183335300968479335962632206487639766842676077832582492327725736277184691920091215227755068327248650500804154930739115302246781215530630887883355786367367665174784427039782100611612140058590421427189159571703206319819691701684664445938967230130410534016172579694129507176557367714851238056416172203920252540380849449680783834167420945643618878130257236282217446701166994308919541824638232361053720473392681854665190093618817340477803819066803783227190210908253252829347595645802705299593430209341049001642478951924002446511875497827816689203197732942746862304458902091854208505927243274218774269425431588686339777463248834211589283595796373334472111624480387014679421837286118478062507867965191070278723842303455312054038902442503907012082079733064081021477953313457582755597125807364140366467234814998412838210737386380712280264503028460977219218841879749060350424635304039500376261374627673766060260113066203463641628332084775341066772221004577727537535948204077922846808795813438249916158027931353615228995785742937872257587968370035538681924372371234108943830349655827570243632659522403 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b252b05f0832e42e747529c7c6deb1bb71906cd2 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pigac.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018aa97e7bc00000040300473045022100a56e80dd74484ca9d8d1b3d4f9b603ddeff10b2c9c77c76c84409fd5f9b3fdcf022044d0cfa4c592d0ddbf298ffe70555b0ee12873c7cd984aa878c20b1b1cf473d6007500e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018aa97e7be7000004030046304402200b3f61870733547e00c6a330cf5d7da6123bf9ca45773671636459182e8729f60220254e8c8702222d99560e78dfe62537b633d8685f6cc176397758c2c949b2e542 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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