www.marianocomense.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:68:33:ac:8c:ca:4b:67:31:c0:c2:35:1f:30:59:3b:9f:9f was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.marianocomense.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:68:33:ac:8c:ca:4b:67:31:c0:c2:35:1f:30:59:3b:9f:9fSerial Number (int): 296794910513467808309095862467889704181663
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 6f:e1:9f:e0:98:6a:61:10:d6:1a:5b:61:f2:b8:32:89:eb:c4:20:5d
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 98:3e:dc:b9:c5:e4:bf:13:64:4d:12:4d:b8:40:ec:83:99:42:60:dd
Fingerprint (sha256): 61:c1:29:93:16:9c:a4:04:50:45:0d:41:02:85:03:4e:30:da:ac:e3:d7:93:65:b2:2e:f4:22:20:27:6e:fd:0d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.marianocomense.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.marianocomense.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.marianocomense.org
Other certificates including the domain name marianocomense.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.marianocomense.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYzCCBUugAwIBAgISA2gzrIzKS2cxwMI1HzBZO5+fMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDIwNjQ0MjBaFw0y MDA1MDIwNjQ0MjBaMCExHzAdBgNVBAMTFnd3dy5tYXJpYW5vY29tZW5zZS5vcmcw ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCVDqZr2ACsIBBHw/P9PHBO gfchnkzcTyBUeA1mZNN7Ag9XKtKxikhIowH3ME2q7pDJ6VDD3GLUzmhloD9ZE2ny FupNLh8LCzszOcxdKPMGWOcZP601qs4pYZCEA16V+HENUA6Ivros0Hk/H3xE9hmK FybKNJwjKwmoJcf3krEt01qrxeTG1QqttaJ/m0SNRvZZhIzgtt9PellNJ4Q/XYmg DEbP0ju6I/w8gQGDhhranMX1JS34U5fsRzgew2nch1IaU4kUPnU+uksNIxQxja6C teKleOwcGSmcMc6zXAj3EUT6NH7CfHCEyr6t4motCbaKVvU+9jkGR5YqCvik2g2b tlXXvEk4t0f/aC9vdEC9nkjHOlr4nQEp2bYfETdhxM5FzOABJKJNopQ1wH66sYsO 37eFjwwf4PzCN7mWudz4BSq6nBwVXxlk0IzYry4he3tLwZAcH5xuKz/MGMWpX0nZ /+6s/h7sxj+9x1pkM3pex9AIUFqNp7/NiHE8PW4E/QPKx3rykQZ1SYMS4Nc9PDYr gHp7Ckl1Zr58UmsfVLDiC7aMp8jaEHSOI5i4XV66494tRAVwLJLX8UF1WzXypW7h byE7o6kV7+NOYgARN5XGXcH99Z/ABjYoVIxajg9z/To2U6A84AJ1pYuHIUhoL6Ji U/0v28QCCEMhoc8vbZaeqQIDAQABo4ICajCCAmYwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBRv4Z/gmGphENYaW2HyuDKJ68QgXTAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFnd3dy5tYXJp YW5vY29tZW5zZS5vcmcwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggED BgorBgEEAdZ5AgQCBIH0BIHxAO8AdQBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkG jbIImjfZEwAAAXAE24TaAAAEAwBGMEQCIDR5HTyWzswbWrBz1aMGGos31nFEBsve nQ84ILOvDICDAiAubc+9kzN1XOwEnsCtio7ZgOo3QeWgZZJScr8LJyi4UAB2AAe3 XBvlfWj/8bDGHSMVx7rmV3xXlLdq7rxhOhpp06IcAAABcATbhPwAAAQDAEcwRQIh ANk5Bfcxq1ZEpmTpBHj2EniLTRG1FAlrxcyXh66ljXtEAiB9/wFWfmJzecDNVo+e r8kZ90lPV3504GnAs+W0TpIwdjANBgkqhkiG9w0BAQsFAAOCAQEAXrVbzIcdyNq1 j5nkxqF+YsW5g6gRHbpSAka5Xeqae5O+h3pwb/JdcnqEq094qeRtonbvcgT5GO+J 8oNV3HugL9ZNkPvOqZxA1jZk1nA68MhwYki4z8pFl2JmhJ4X4BHwI9hbNk2nsLol dVnE3BGlBoc6vjD99kxSkM+uCHEqpfWd64cHUyF31TnGJH7l+NlsmLVz9LtJ0+60 ytt/o5+sYBiLOQpXjFUGiJQj50r+oTVeqQJtGYuToLKB4alMmC+nHMiI6EEeeXCq iOu1301XGVm9j8Gvj6q64GVSPTFz5jAIGq/JZ70KWfhghw6B13SePNHhI+UH0707 phvbaW6dDw== -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAlQ6ma9gArCAQR8Pz/Txw ToH3IZ5M3E8gVHgNZmTTewIPVyrSsYpISKMB9zBNqu6QyelQw9xi1M5oZaA/WRNp 8hbqTS4fCws7MznMXSjzBljnGT+tNarOKWGQhANelfhxDVAOiL66LNB5Px98RPYZ ihcmyjScIysJqCXH95KxLdNaq8XkxtUKrbWif5tEjUb2WYSM4LbfT3pZTSeEP12J oAxGz9I7uiP8PIEBg4Ya2pzF9SUt+FOX7Ec4HsNp3IdSGlOJFD51PrpLDSMUMY2u grXipXjsHBkpnDHOs1wI9xFE+jR+wnxwhMq+reJqLQm2ilb1PvY5BkeWKgr4pNoN m7ZV17xJOLdH/2gvb3RAvZ5Ixzpa+J0BKdm2HxE3YcTORczgASSiTaKUNcB+urGL Dt+3hY8MH+D8wje5lrnc+AUqupwcFV8ZZNCM2K8uIXt7S8GQHB+cbis/zBjFqV9J 2f/urP4e7MY/vcdaZDN6XsfQCFBajae/zYhxPD1uBP0Dysd68pEGdUmDEuDXPTw2 K4B6ewpJdWa+fFJrH1Sw4gu2jKfI2hB0jiOYuF1euuPeLUQFcCyS1/FBdVs18qVu 4W8hO6OpFe/jTmIAETeVxl3B/fWfwAY2KFSMWo4Pc/06NlOgPOACdaWLhyFIaC+i YlP9L9vEAghDIaHPL22WnqkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 296794910513467808309095862467889704181663 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-02 06:44:20 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-02 06:44:20 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.marianocomense.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 608100431464971195251485417526414047403892228077549551006697172929847804114806217851707991152652475463736647299456495857849693954709852907996579317387165212113741511941324407382829220942999436817441397856451329563038354808549634454482691995716659788025846820807754420877486658594879850115625082163469973491056257842502127496053241892270611773670554400579831517868632501147314590896237546540195391162836988326908131997090222375701430433201106956364805560286270184456447610940676634108523022491905134592311185927674347606744233778629597023194031584103237529780574486701862629435748249036159428649915085119854730382101600748333883378698486163690978098914822089118236026400470191130545965430318748669666832178580441378855942101612181850935510382154393751833674870650427575920372598561771938243514359959422048271535020897129499882349828074547500357049721740726801695927462320061875879605665167853856930781233826618280303634665293577747120574961222011652762505284620448225210348430384259031648957807150213565875926357274929682196056750813911517063549116136751186448883105982660216283367814682254009972642825845144814045456521529523133409499261636484739562356217121146635931313415136125998890751158553022021143345922829003202683820075032233 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 6fe19fe0986a6110d61a5b61f2b83289ebc4205d . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.marianocomense.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000017004db84da0000040300463044022034791d3c96cecc1b5ab073d5a3061a8b37d6714406cbde9d0f3820b3af0c808302202e6dcfbd9333755cec049ec0ad8a8ed980ea3741e5a065925272bf0b2728b85000760007b75c1be57d68fff1b0c61d2315c7bae6577c5794b76aeebc613a1a69d3a21c0000017004db84fc0000040300473045022100d93905f731ab5644a664e90478f612788b4d11b514096bc5cc9787aea58d7b4402207dff01567e627379c0cd568f9eafc919f7494f577e74e069c0b3e5b44e923076 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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