giacimenti.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:5e:aa:18:84:b4:ac:69:c1:bb:e4:ec:a9:8e:dc:4c:90:28 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=giacimenti.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:5e:aa:18:84:b4:ac:69:c1:bb:e4:ec:a9:8e:dc:4c:90:28Serial Number (int): 293549496351849492248056819235694255575080
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 5d:1a:c2:1b:ef:f8:4c:d0:4e:38:75:21:43:de:c7:d2:ba:76:d3:5d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): ce:73:c3:e9:a3:05:7c:a8:cb:c4:cb:a4:9a:93:ff:63:dd:fd:c0:41
Fingerprint (sha256): 60:bd:f3:1a:d7:c2:ff:9d:f4:61:fe:65:60:b3:d4:f5:b0:b0:61:4f:ab:0b:3f:22:f3:d9:9a:78:d8:48:e5:13
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate giacimenti.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for giacimenti.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
giacimenti.com
Other certificates including the domain name giacimenti.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for giacimenti.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVjCCBT6gAwIBAgISA16qGIS0rGnBu+TsqY7cTJAoMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjYxMzQ5MzZaFw0x OTEwMjQxMzQ5MzZaMBkxFzAVBgNVBAMTDmdpYWNpbWVudGkuY29tMIICIjANBgkq hkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoB6EIyMwVGFY0315vJJQVTHsVzv9iDzx eQkvAB1RH8zROL7AqL+3S1nWgHEPYk5cD/20iWxf8bY1BUWgTf3dUq892Wg+m5o5 0VGRHjoE/3mzwro71U0hiNurDcggocNe0IkECJ9Juo24sM5vmQd9BbIWt6QeOH2a ml9p0IoSWqOjlGhzKmRHVzMAywugZvuC5hHEqJHkZVIxFHt/ojhBVuI2QIf9N1Lj qCytT58j7vNVADnqKG+xm196Bt489iPLlzyTZdt+EfIbiPmeSUl+9B7+CkIGDcwS XJ5PXU2jbamZcrvQoVFH2fRx9P/9YmWRbHIyVgjXtCE8lwRcxiraJcpR59aPg1zb QofYNigtBmEbgDxCaSsUlmvxOnUjr5cM/d4dQvoZTe4wcdbmDUvLIvX2zHHytgJn mUAhD4G2w1DSVAnHkWpI7pN3xdgB6zntTJd2ayWzbGgozNQ6+uAa8QTS+nEHDVYS 2Qyg6cyuxAHyx3GlanlWM2+mkVQ2lHJlFaOLEATkCHX40svLPsA8yhazBgZ1Vx6J WTM+4iDcYHHORPHPQRd+MAQI9dd6/i8ib4v9PBHIRw8M8kIA7h82xZLeZp5upinB GCCYCf0iEt700Q+FI1HvAezN5eCalmO/ikc5Aq2x4kTv5alVnr7Y+wuGFy7Byv9Z levbVZULUQ0CAwEAAaOCAmUwggJhMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUEFjAU BggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQUXRrC G+/4TNBOOHUhQ97H0rp2010wHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl7/Oo 7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5pbnQt eDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5pbnQt eDMubGV0c2VuY3J5cHQub3JnLzAZBgNVHREEEjAQgg5naWFjaW1lbnRpLmNvbTBM BgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsGAQUFBwIB FhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQYGCisGAQQB1nkCBAIEgfcE gfQA8gB3ACk8UZZUyDlluqpQ/FgH1Ldvv1h6KXLcpMMM9OVFR/R4AAABbC7COOEA AAQDAEgwRgIhAOUiYZQiDLt5QftMFymRrpJkI/Fn2/9dVWx2OUUCa9vRAiEA90Pg Q+g7omsfXGp2a5j9nb7339AD+zyMYHpSrMt/9HwAdwDiaUuuJujpQAnohhu2O4PU Puf+dIj7pI8okwGd3fHb/gAAAWwuwjqyAAAEAwBIMEYCIQDcJ1VQ+m2LU2jwW3OU c02AZvVJM6f1SDaAR/zHeTqDjAIhAM0bkKCDVgfTYfCLAdHt9QSu5duejPnPfPiy Xq5i6F9eMA0GCSqGSIb3DQEBCwUAA4IBAQCVUWh1GMxw6hekrX4VkkQEdRg1b6rn EIWurg4vRloWu5ampB5jwlosFNJlhCpm1HTpzktDVoWnhtVroMZy7DixQ3FNom59 bzpShGmRFDVozAgkKhzDtn82YEAtfHvTLAroMEGE+VQhruGsBdMYhaTQJAeMl99r YNkXdM98mR9GsbL17SeBvHQ/rb4gzeD01rgauwEnTWylu+1nnC/jja88c44tuAFQ 5gf7sScSJTmnmcaVXQAIAZPNMRX+wsvvvlHAD81ygjJn5Fiamfn3/GexvAc3a8Kd oyiQUzWsz6EvJ+urWfoXo2DEjEAp2SJ8OmSWKVR8aKt3Q5Kd0oCtIChO -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoB6EIyMwVGFY0315vJJQ VTHsVzv9iDzxeQkvAB1RH8zROL7AqL+3S1nWgHEPYk5cD/20iWxf8bY1BUWgTf3d Uq892Wg+m5o50VGRHjoE/3mzwro71U0hiNurDcggocNe0IkECJ9Juo24sM5vmQd9 BbIWt6QeOH2aml9p0IoSWqOjlGhzKmRHVzMAywugZvuC5hHEqJHkZVIxFHt/ojhB VuI2QIf9N1LjqCytT58j7vNVADnqKG+xm196Bt489iPLlzyTZdt+EfIbiPmeSUl+ 9B7+CkIGDcwSXJ5PXU2jbamZcrvQoVFH2fRx9P/9YmWRbHIyVgjXtCE8lwRcxira JcpR59aPg1zbQofYNigtBmEbgDxCaSsUlmvxOnUjr5cM/d4dQvoZTe4wcdbmDUvL IvX2zHHytgJnmUAhD4G2w1DSVAnHkWpI7pN3xdgB6zntTJd2ayWzbGgozNQ6+uAa 8QTS+nEHDVYS2Qyg6cyuxAHyx3GlanlWM2+mkVQ2lHJlFaOLEATkCHX40svLPsA8 yhazBgZ1Vx6JWTM+4iDcYHHORPHPQRd+MAQI9dd6/i8ib4v9PBHIRw8M8kIA7h82 xZLeZp5upinBGCCYCf0iEt700Q+FI1HvAezN5eCalmO/ikc5Aq2x4kTv5alVnr7Y +wuGFy7Byv9ZlevbVZULUQ0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 293549496351849492248056819235694255575080 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-26 13:49:36 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-24 13:49:36 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'giacimenti.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 653229359773200293363658860353884180483098252614278101579002710224338720104439465872107052433364738689053051015554470127969222945048952219351663307544795571485300960903603983049630396052416071223399253935954610530218556486238165511870967680661150648706429981731216556798616345282974079263179914127464616872046534207451184033908310575947294089639375391654320390943549229910371819511469475934534642522031650251136475350166607098294432747418156979505757750253261302326507490519577272475424347427026640504184718504487329153460439088129334686356421899751455679866153083581353269490374621445975296298582750516643892302217281087722802997533050298715251332725746683948137454099559135727438997690287499957940458658526050852126360590987425118916587597668325660995671302735202243988897303949368927064560598507941544080445388031230222126661984936605987300595637189491648436035890947435641922269244425343832969428917335492753117464512658154075754093675812791287824629151697672509043012981271402443066690093383400284001416183714712649340978971021533117466504930008204723281473901255344283156753092756900901315561155863836935132109407423819705054737132284275593405337841850010546949671130681906267919837292363360960343042772089187034979161057480973 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 5d1ac21beff84cd04e38752143dec7d2ba76d35d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'giacimenti.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (247 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) 00f2007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c2ec238e10000040300483046022100e5226194220cbb7941fb4c172991ae926423f167dbff5d556c763945026bdbd1022100f743e043e83ba26b1f5c6a766b98fd9dbef7dfd003fb3c8c607a52accb7ff47c007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c2ec23ab20000040300483046022100dc275550fa6d8b5368f05b7394734d8066f54933a7f548368047fcc7793a838c022100cd1b90a0835607d361f08b01d1edf504aee5db9e8cf9cf7cf8b25eae62e85f5e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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