circoscritto.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:fe:35:f6:ae:59:b0:cb:68:95:c5:0f:d5:8c:92:87:94:89 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=circoscritto.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:fe:35:f6:ae:59:b0:cb:68:95:c5:0f:d5:8c:92:87:94:89
Serial Number (int): 347840308918248202535148366274399799055497
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 15:d7:56:3a:97:7f:16:42:27:3a:3d:6b:bb:5d:62:79:39:3f:b3:71
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): d5:1c:6c:9d:5e:76:a6:61:cf:f6:04:c0:28:c6:e3:0e:d1:a7:fa:75
Fingerprint (sha256): 67:ef:a1:eb:a7:e2:24:60:1c:5a:a5:fe:f3:a0:fc:e2:85:83:16:a2:d4:12:d6:ec:74:52:94:32:34:36:eb:59

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate circoscritto.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for circoscritto.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

circoscritto.com

Other certificates including the domain name circoscritto.com

(limited to 100 certificates)
circoscritto.com
circoscritto.com
www.circoscritto.com
circoscritto.com
circoscritto.com
circoscritto.com
www.coralee.boston
circoscritto.com
rachele.org
circoscritto.com

Certificate

The complete raw certificate details for circoscritto.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 347840308918248202535148366274399799055497
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-18 08:52:59 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-11-16 08:52:59 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'circoscritto.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 698949372701012876042170223326737102020331971548315365641900998973791692189840510311008838106666139415105461482941303409774969775122685668570778795571746021465575083305345928503460624390395731584105989328486090002197184963055681548659549292424121260272965869894146845192853737815487154581320020454381819812565510089441633226700382944509567745948740764345388242078980027511963492152537106844286410538077907036213478696549494130664958584838422520245873996722182293016013335340170749679844098761583914950552373119468715677665557372798743072174480443837284657015634957089803181566759788902828054553105981300682746863195798194314699742167326898477828334157056943696150612618687691467867468601632796868327751549601271837670503814019324557416755186882190448748432422545196567077058384424293359801907712301511706775051031179969271121742724681873268909508256890764149170592562449454613997741144272834189062401180841638046495933334378431145371849163654036348051072175521917816808396559378947122596721904877487569683300876801846994339606544638962100888603627290983207282943252990347996724130477168928530147297706252397891788208422878732141184627389287673728753860082590075607841131590398709704588467612929449279256780046514702330933504580269803
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							15d7563a977f1642273a3d6bbb5d6279393fb371
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'circoscritto.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f100770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016ca424ed110000040300483046022100a04508fcce537858d6c5be8f8ce9c74c336f30a474dd6ed536925cc1faa22f53022100d714f8162a5bf87538d543eb9e6607f92e87971049e981dd0c59ef8e270c9447007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016ca424eee40000040300473045022100a4a14249328956508821b6874dc6480dd064fc8fff0f0fb256999477e40da16b022001cab99089b4df191f3f6f3ba54470b77d82d6775c23f7c7312b65a0405c4fbd
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		002fb8baa6cc0528cd9bff41be7d282f8e7ca7acb000d7793c4c648ddba45b34f20e334e7224487484f08132ec36a723d38fefe42b48ce2e51b5806514da0269b4435ecf603ec3789e86b3ca8d78db56da9a4050c68c5e9ff805ef2c71cf439ea59e1007ddb3bf246e5fb862598e0a1976086d012bdfb416585620d521b6e375d045dd31a2f80133abf8a483cead9a993b322bb3b55e5e93c2b2d14d2ce2f1d7a076de19f98612c24ee006f09d9a0cc2361738951732764b126c2aada7b7ec92eb7341a5a4c7208a43214861ac5e7b727159f8b5c8d52e14f415d2748c569c062c61961668a33ec48a85d3452c462e9e932c0dfd4c48a981e802a7c06a9b28bc60