www.castelfiorentino.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:9b:d0:34:a3:e6:5f:7e:4b:ff:4b:22:62:6d:71:8e:d1:78 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.castelfiorentino.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:9b:d0:34:a3:e6:5f:7e:4b:ff:4b:22:62:6d:71:8e:d1:78Serial Number (int): 314357377414870904622271634040535001256312
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: d5:be:84:6a:8d:bd:b8:70:ca:58:8d:65:4d:ba:f4:b3:90:0a:80:94
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): e8:2f:58:a1:e1:8a:0a:64:15:0f:09:78:2a:48:33:40:bd:05:54:dd
Fingerprint (sha256): 69:c5:96:32:c1:b0:66:71:a4:34:57:9e:bf:ca:08:ba:1b:44:73:5f:76:10:4f:04:6e:e0:5d:c6:13:c6:21:ae
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.castelfiorentino.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.castelfiorentino.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.castelfiorentino.org
Other certificates including the domain name castelfiorentino.org
(limited to 100 certificates)
castelfiorentino.org
www.castelfiorentino.org
www.castelfiorentino.org
www.encup.com
kbs.asia
www.castelfiorentino.org
castelfiorentino.org
castelfiorentino.org
castelfiorentino.org
castelfiorentino.org
www.hotelriverinn.com
www.castelfiorentino.org
life.bible
castelfiorentino.org
www.castelfiorentino.org
www.castelfiorentino.org
www.castelfiorentino.org
www.encup.com
kbs.asia
www.castelfiorentino.org
castelfiorentino.org
castelfiorentino.org
castelfiorentino.org
castelfiorentino.org
www.hotelriverinn.com
www.castelfiorentino.org
life.bible
castelfiorentino.org
www.castelfiorentino.org
Certificate
The complete raw certificate details for www.castelfiorentino.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZzCCBU+gAwIBAgISA5vQNKPmX35L/0siYm1xjtF4MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjgxOTQ0MzVaFw0x OTEwMjYxOTQ0MzVaMCMxITAfBgNVBAMTGHd3dy5jYXN0ZWxmaW9yZW50aW5vLm9y ZzCCAiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAM3ZPbCBAG/gv36D2H9F X99+jMbpvxePjW8D+Q2vEWDaVDSkxvHhsNxR6dXmLLmLQ26KVNMCEZPDaQs2aRiv qZghMaIHXBlKiadraLpZASLYVb7IlLQuEpeUefSMSUYy/f/70ywYA8PHqbj3O0Jr bPrBM8ZWczpsO+kff4Wgrbin0kHGWHSqwNJw98hRC7MYATZ6tNmcB865R+5qgRX8 zzvlOqeSZt2plgd5XDj3cSIozzGBbIDGiyUIvx+YAtZdqfuYYhqlE2cD7v69//44 Q3yM7UoXFF0zcXe23zA9KWM16tKnRe1wZmGNd+ApuAH0JwLhJEUMUig/npRQnKVk /cQVO/6yn+XlJTfmIrE/ty1084PTUE4vS/qaU1Z3gOiDqRQc/iS83r9HqtREuf+D Gz2c2FwTj7r5eeO0lNocFs0fEhht3dbUEIVyjs4eCv0t7rSxdxW6XP5CSu1pxV6O azhbxG0NdzdwiBbRCRxKTovPhaxHrsE0IkvPNTuniaftnZEhT+c0gU/0MFnMzi3U 3RAXGL7ck4mQOZu9+c+xqh4M/JC6/QgYESUOzUW6qdNwimIgtc5uMH+eB4v56RbO yhaRjGnNG6YnrIVEl+K2Kv9Uxj7bkAnjiR3MK1IK4ZLKAvtOweLhCxBML0CB+G03 YjmSSxdDiC95S4IjpLUWmwuhAgMBAAGjggJsMIICaDAOBgNVHQ8BAf8EBAMCBaAw HQYDVR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYD VR0OBBYEFNW+hGqNvbhwyliNZU269LOQCoCUMB8GA1UdIwQYMBaAFKhKamMEfd26 5tE5t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDov L29jc3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDov L2NlcnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wIwYDVR0RBBwwGoIYd3d3LmNh c3RlbGZpb3JlbnRpbm8ub3JnMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQB gt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3Jn MIIBAwYKKwYBBAHWeQIEAgSB9ASB8QDvAHYAY/Lbzeg7zCzPC3KEJ1drM6SNYXeP vXWmOLHHaFRL2I0AAAFsOlPwPQAABAMARzBFAiEA08Bn/NiVx0GrDR5n9/2jjhLA jhmIAZBHDK2YY5O4yM4CIBzwagkEu1gtLui5kpozdTHw0GqSRoErPkvCrPcelSnL AHUAb1N2rDHwMRnYmQCkURX/dxUcEdkCwQApBo2yCJo32RMAAAFsOlPw2QAABAMA RjBEAiBWAq9AJtIyU06RgNRahhw9S5BV/cTxuCMD55AK+qB5YgIgK6oy7MzJbV03 JwyL8SMk8Au83tsi0zq4cXAe6IfFOkAwDQYJKoZIhvcNAQELBQADggEBAIVhRG4r fCA9QTx9q53tIGYv9+ezQc5siY/INAydg/hRIRFyIbkwArup3534xzrUOiR22LlO 3wy5x3MVIevu8yj4nrIQ1BAq7pV8m1O52PdR9zAzY0Fi3h4KsjVZcDvuWc5Ihzpf cPJYSIlErL2nD52uL926kt7zlbE8fn90HCKwSGOMWor7J/Q+KZalrcYU9PO5s/KA S8x29EpIlLUi3axHXHo6OicTb2TxODJGvFH1usW7PKl4S0PFQ7EfoLFGMXGHfvPV lkkXg9Zzvs7M4E0/WPFCJHRPc2amjOv+mVyMKhzMHQ15LW/6rxT+kfrRx+F7pkxI GkaGrI4XHFPJtbY= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAzdk9sIEAb+C/foPYf0Vf 336Mxum/F4+NbwP5Da8RYNpUNKTG8eGw3FHp1eYsuYtDbopU0wIRk8NpCzZpGK+p mCExogdcGUqJp2toulkBIthVvsiUtC4Sl5R59IxJRjL9//vTLBgDw8epuPc7Qmts +sEzxlZzOmw76R9/haCtuKfSQcZYdKrA0nD3yFELsxgBNnq02ZwHzrlH7mqBFfzP O+U6p5Jm3amWB3lcOPdxIijPMYFsgMaLJQi/H5gC1l2p+5hiGqUTZwPu/r3//jhD fIztShcUXTNxd7bfMD0pYzXq0qdF7XBmYY134Cm4AfQnAuEkRQxSKD+elFCcpWT9 xBU7/rKf5eUlN+YisT+3LXTzg9NQTi9L+ppTVneA6IOpFBz+JLzev0eq1ES5/4Mb PZzYXBOPuvl547SU2hwWzR8SGG3d1tQQhXKOzh4K/S3utLF3Fbpc/kJK7WnFXo5r OFvEbQ13N3CIFtEJHEpOi8+FrEeuwTQiS881O6eJp+2dkSFP5zSBT/QwWczOLdTd EBcYvtyTiZA5m735z7GqHgz8kLr9CBgRJQ7NRbqp03CKYiC1zm4wf54Hi/npFs7K FpGMac0bpieshUSX4rYq/1TGPtuQCeOJHcwrUgrhksoC+07B4uELEEwvQIH4bTdi OZJLF0OIL3lLgiOktRabC6ECAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 314357377414870904622271634040535001256312 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-28 19:44:35 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-26 19:44:35 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.castelfiorentino.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 839789009931987841101159975650769177904135061549827673929012888058460049040275627072959046777075052247447665494126755355675523685006691233431421418314941057213986444468898729310928708330986496865893976113388199076445314204299868157621296927641725319788164246018220145142594692197195846504049115432786880084768039703944193053384608921323422362100478709129557432197286042075269024857458650095453066061100762997070527342097378195600871365164920368324876229976118334381412245709270848285392248730707162024908878149054061581127413404090925311231121122079355143395509617103294946266917056877065634665463254546074255197940949637602790101625103153079033455893607958111400294767073402534000146957856572428600731652271766282646682765521232451504161880606704254971401425936399919416869467803833348996661207467867389183099970713484829881347782966127908965420317820280236992827327378755050444265609127021356831052149945380348911832717356031774515716989751960857862204132480388563552137598279959530972237522972088520583868168537526260563198588817948762303650217420421953793405679458594817100005961610748942919393093234663435043712513712027536858165476433728542182459041654038516415839789177153035355706699079196811993181426860272973492808345914273 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) d5be846a8dbdb870ca588d654dbaf4b3900a8094 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (28 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.castelfiorentino.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c3a53f03d0000040300473045022100d3c067fcd895c741ab0d1e67f7fda38e12c08e19880190470cad986393b8c8ce02201cf06a0904bb582d2ee8b9929a337531f0d06a9246812b3e4bc2acf71e9529cb0075006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016c3a53f0d9000004030046304402205602af4026d232534e9180d45a861c3d4b9055fdc4f1b82303e7900afaa0796202202baa32ecccc96d5d37270c8bf12324f00bbcdedb22d33ab871701ee887c53a40 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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