www.marianocomense.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:68:33:ac:8c:ca:4b:67:31:c0:c2:35:1f:30:59:3b:9f:9f was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.marianocomense.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:68:33:ac:8c:ca:4b:67:31:c0:c2:35:1f:30:59:3b:9f:9f
Serial Number (int): 296794910513467808309095862467889704181663
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 6f:e1:9f:e0:98:6a:61:10:d6:1a:5b:61:f2:b8:32:89:eb:c4:20:5d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 98:3e:dc:b9:c5:e4:bf:13:64:4d:12:4d:b8:40:ec:83:99:42:60:dd
Fingerprint (sha256): 61:c1:29:93:16:9c:a4:04:50:45:0d:41:02:85:03:4e:30:da:ac:e3:d7:93:65:b2:2e:f4:22:20:27:6e:fd:0d

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.marianocomense.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.marianocomense.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.marianocomense.org

Other certificates including the domain name marianocomense.org

(limited to 100 certificates)
www.marianocomense.org
marianocomense.org
deutsche.mortgage
www.marianocomense.org
687.me
marianocomense.org
marianocomense.org
marianocomense.org
www.templin.boston
gor.bible
www.marianocomense.org
www.marianocomense.org
www.marianocomense.org
marianocomense.org
marianocomense.org

Certificate

The complete raw certificate details for www.marianocomense.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 296794910513467808309095862467889704181663
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-02 06:44:20 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-02 06:44:20 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.marianocomense.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 608100431464971195251485417526414047403892228077549551006697172929847804114806217851707991152652475463736647299456495857849693954709852907996579317387165212113741511941324407382829220942999436817441397856451329563038354808549634454482691995716659788025846820807754420877486658594879850115625082163469973491056257842502127496053241892270611773670554400579831517868632501147314590896237546540195391162836988326908131997090222375701430433201106956364805560286270184456447610940676634108523022491905134592311185927674347606744233778629597023194031584103237529780574486701862629435748249036159428649915085119854730382101600748333883378698486163690978098914822089118236026400470191130545965430318748669666832178580441378855942101612181850935510382154393751833674870650427575920372598561771938243514359959422048271535020897129499882349828074547500357049721740726801695927462320061875879605665167853856930781233826618280303634665293577747120574961222011652762505284620448225210348430384259031648957807150213565875926357274929682196056750813911517063549116136751186448883105982660216283367814682254009972642825845144814045456521529523133409499261636484739562356217121146635931313415136125998890751158553022021143345922829003202683820075032233
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6fe19fe0986a6110d61a5b61f2b83289ebc4205d
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.marianocomense.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000017004db84da0000040300463044022034791d3c96cecc1b5ab073d5a3061a8b37d6714406cbde9d0f3820b3af0c808302202e6dcfbd9333755cec049ec0ad8a8ed980ea3741e5a065925272bf0b2728b85000760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000017004db84fc0000040300473045022100d93905f731ab5644a664e90478f612788b4d11b514096bc5cc9787aea58d7b4402207dff01567e627379c0cd568f9eafc919f7494f577e74e069c0b3e5b44e923076
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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