www.picarones.com

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:da:b9:46:85:21:40:29:a6:f0:73:40:1e:46:e6:d7:d3:30 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.picarones.com

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:da:b9:46:85:21:40:29:a6:f0:73:40:1e:46:e6:d7:d3:30
Serial Number (int): 335764687124240495892886983583438424494896
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 1d:f0:df:70:ad:55:ae:45:ba:62:e9:ae:19:6a:4e:b4:e8:7e:14:24
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 53:3c:80:d0:21:10:75:f2:4f:4f:84:62:9a:6a:27:09:30:3a:e3:dd
Fingerprint (sha256): 6b:8f:53:99:ff:41:4a:c7:ee:8b:96:e4:12:5a:e9:ad:25:06:c3:eb:63:53:da:79:a7:53:1f:98:41:74:b7:4c

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.picarones.com

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.picarones.com

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.picarones.com

Other certificates including the domain name picarones.com

(limited to 100 certificates)
fundplanners.com
pianostands.com
peakperformanceortho.com
picarones.com
picarones.com
picarones.com
www.picarones.com
www.picarones.com
www.picarones.com
picarones.com
bowralnews.com.au
picarones.com
www.picarones.com
picarones.com

Certificate

The complete raw certificate details for www.picarones.com in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----
MIIGWTCCBUGgAwIBAgISA9q5RoUhQCmm8HNAHkbm19MwMA0GCSqGSIb3DQEBCwUA
MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD
ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAxMTkwNzU3NTdaFw0y
MDA0MTgwNzU3NTdaMBwxGjAYBgNVBAMTEXd3dy5waWNhcm9uZXMuY29tMIICIjAN
BgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAvNlGgd5nafWJ6WRaarY8RCFIEAnN
i1pUmaZhWEIUbTDQOvmmTsnQD8cGbiSOFnG9UNPvqM1WD1l3X13QH6fiU3X25+Kk
K55Bq1Db4sDTijigac+MR6ie1Yon010UQkXbzfX+fNZHv+gVkzbLHz/Zkj9Q2AYR
8ww3pG8lU4EvpRhBq8VKeMX+mXtCI7wR3XPh6e2Tzc9MnsKbDNFXjw6qsWsInQQw
fe5UhpcdcrY4mvkOzs2unN0iya/jVpNG5JdIDsl6nPFxO7bKbaLqj//G9YplQgzV
OABC5nIP5dj1AggQq9iKQit4UFU1vvJLm5BGB2f7gEWN4zBD3weMRGOfPzjsJEyi
3Wn1zpen8MkSkRx836UaPPquoJMxStL7H7kg14J6uLdo/TZMhmZ/gByq1PAGFcjX
VaISuIez9r58rc9a8fhvuTwoleXu673Dv4ebrClpnmPKWAZEFe0ajDcesEp/8WrT
DiIVz4oyuPmoN/G7FW2LaYFqVVV/OuF9YKe3C8lefQscTHmCHm0RYE/ehfBaszQC
sXV3j3YE4BvT5tNWbCrom5PPMFDcXtjga3XsUyYcYVNj48Cw5o1FlScZ3onxRFBh
Wom895XM1ggmx4HGeQVwx6mpKSVbiHvgnePBsSFutGM0UmKKuJfbs3S0SKx8yYw4
31a5d69h4snQpEcCAwEAAaOCAmUwggJhMA4GA1UdDwEB/wQEAwIFoDAdBgNVHSUE
FjAUBggrBgEFBQcDAQYIKwYBBQUHAwIwDAYDVR0TAQH/BAIwADAdBgNVHQ4EFgQU
HfDfcK1VrkW6YumuGWpOtOh+FCQwHwYDVR0jBBgwFoAUqEpqYwR93brm0Tm3pkVl
7/Oo7KEwbwYIKwYBBQUHAQEEYzBhMC4GCCsGAQUFBzABhiJodHRwOi8vb2NzcC5p
bnQteDMubGV0c2VuY3J5cHQub3JnMC8GCCsGAQUFBzAChiNodHRwOi8vY2VydC5p
bnQteDMubGV0c2VuY3J5cHQub3JnLzAcBgNVHREEFTATghF3d3cucGljYXJvbmVz
LmNvbTBMBgNVHSAERTBDMAgGBmeBDAECATA3BgsrBgEEAYLfEwEBATAoMCYGCCsG
AQUFBwIBFhpodHRwOi8vY3BzLmxldHNlbmNyeXB0Lm9yZzCCAQMGCisGAQQB1nkC
BAIEgfQEgfEA7wB2AF6nc/nfVsDntTZIfdBJ4DJ6kZoMhKESEoQYdZaBcUVYAAAB
b70F4yEAAAQDAEcwRQIhAO5bypGftUbFn5hlXOXy0y6Zwr3hhC1l9+c9WEkrCL1s
AiArKm+LA2bWGnBq/BgpF8qtdBQxGfTV1V642bcrI5TOTgB1ALIeBcyLos2KIE6H
ZvkruYolIGdr2vpw57JJUy3vi5BeAAABb70F4w4AAAQDAEYwRAIgYuQXtjFnXRtc
moM9xgc51W7fEyhQL2+n6Z+Kpwtt7lkCIFqrBa77BkidqYZ4OdhOB7DJ++1sb4sD
PgqRd95LBvrRMA0GCSqGSIb3DQEBCwUAA4IBAQBnLtu9yHuVh9UbUaFm/x9JcaXH
+v7dCt1h8cEUqfp9Hh96DaqtMholUD5tbGWszXWOrqKTXmFUml69ER9Y3HNXSTn2
Ho+RicIgUgH8YRyIQDpSk1/2ywwCPperBG2W3oyx/aYJiZCyyiRqoTH6UcopQ4Bu
DIqQtWPg8ZfteWsQG6lJTc4aPyobEzq8dQzVCWU/Mcs/y41rPKuQ0E8YR6R51RcU
zZIuKOcpoUNiSS1OF7rP8AeND3lA2xbgz7nc8alOC0xhdyGfr3K8b0vVVtvJ0iW2
zmHryFrtdeCo9ReLSq6eSg49wTY1vGv6zORTtf0Uu3Ryb7aQQEgnpB4JZKCi
-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 335764687124240495892886983583438424494896
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-01-19 07:57:57 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-04-18 07:57:57 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.picarones.com'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 770435609689430309943659339145311414921307359814005483527767048952910725124403612046468177560198943258757495324412643833911936731105665012391202385958422239207485839047104436628869223489991808931938154610619916933563548507080157783033097561260268688100670003788628698153794011220029302451895635543958420621677134498192709427616080810924650640270372367360333855822408216531160603919561248106195908180983294642519695671124427036417336089009258474686331460580624394988314414903890002563672355830710625237952216629115983927410611136957090116482998013843189889357865162503365801669072438162675745962844868451348072144760139047384171712472820711951141893346475083614665435175657332261725065717050734819829441111136667910149941984200236299498630278503920461278241827528115148673705290976526940341498742914063064582344197194340667204593041976811265616102776312588472376201463465838201210940406583263422732999544934676779232568376132893624839871531608235916574765034143363712489635323794302785987181826359893834410677899764965009485035947707600796762098317186443590720156007966914572061462617129809284317443533508183569391838515902197206546294923365009630954411723671900683667352846820569224151677492851090839108457361222735821263661622666311
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							1df0df70ad55ae45ba62e9ae196a4eb4e87e1424
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (21 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.picarones.com'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes)
							00ef0076005ea773f9df56c0e7b536487dd049e0327a919a0c84a1121284187596817145580000016fbd05e3210000040300473045022100ee5bca919fb546c59f98655ce5f2d32e99c2bde1842d65f7e73d58492b08bd6c02202b2a6f8b0366d61a706afc182917caad74143119f4d5d55eb8d9b72b2394ce4e007500b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016fbd05e30e0000040300463044022062e417b631675d1b5c9a833dc60739d56edf1328502f6fa7e99f8aa70b6dee5902205aab05aefb06489da9867839d84e07b0c9fbed6c6f8b033e0a9177de4b06fad1
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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