www.giacimenti.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:4c:3e:ee:16:9a:5e:9a:e0:47:dc:41:c9:57:44:05:09:5a was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.giacimenti.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:4c:3e:ee:16:9a:5e:9a:e0:47:dc:41:c9:57:44:05:09:5aSerial Number (int): 287281966042106486368352361553846813919578
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b9:42:9a:9a:12:bb:dd:34:30:08:90:4e:60:17:89:d9:6c:b7:72:de
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): fb:9a:c7:f6:4d:b7:3c:55:82:d8:04:46:22:10:db:6c:72:2c:08:2a
Fingerprint (sha256): 6d:52:b8:74:8c:ef:fd:ac:93:c1:b0:02:10:23:80:e7:61:70:ff:4d:6d:10:50:a8:26:61:95:d7:56:90:a3:4d
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.giacimenti.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.giacimenti.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.giacimenti.com
Other certificates including the domain name giacimenti.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.giacimenti.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgISA0w+7haaXprgR9xByVdEBQlaMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0yMDAyMDYwMjIzNDlaFw0y MDA1MDYwMjIzNDlaMB0xGzAZBgNVBAMTEnd3dy5naWFjaW1lbnRpLmNvbTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKHgXsHxieaJ0Pv3SuiZoqXsCFyU yT3clQ29vlZ4zJdl9uxIsE4cVvEt90aXHjewodsS337zcs6yghXdy0AG2EVFn6Et D+Aq1VyZix/N77EGKm4G/ZaRoFMzlomANeI8aYXBtTiyvA7Y9n93eU5Vz9NmCv98 51UET10dJhgeFEJR4wQ+X70upvIhCoT//lPXL7m5y46mjfyhlxfSBFhgjnSAzG6d 3HQ54NDC26px0rblLe3xOVoGXxPxaUv8TbvQK38jV1iRHjY2G5cSHuVfSgGuK1ID MRwrd4KDSxtpxtexkCGPiu1bxwHu7iDXCmOLeNyijOEzIxC4K1PStN14rMs5xpmN jgp08GZC0Am3oKaKCRcIcT2WRAq8/a9ziGhKsvlVqUVUOUN2/YmstGDN6asxehnR T+rL6PzhQF9QXtf7LYB3l68JzLp2Ejkl9EKHnGE+vUCHA3oSSGeL23DGU1l3hD7P 2YJCB6LsRtV3Y9tL2c/vn1iewjG/pv3C6rTdaJLucBy9TYpr5OTM14W5tbLHVeNU +l9ohScu7I95sg6f8I61MD5vE3yritXsamJyKEOe0gAQRp+rP4hnrtQhM9squ2kI gjcVTcmBylH4wrgh4nPGifzXx3iIshHJwURZHPBRdwZOzmJZEidOQPWwjtf+psQ0 +Q/4EIap6wDZgPZbAgMBAAGjggJmMIICYjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FLlCmpoSu900MAiQTmAXidlst3LeMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISd3d3LmdpYWNpbWVu dGkuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHW eQIEAgSB9ASB8QDvAHUA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMA AAFwGIZyDgAABAMARjBEAiBsuqnDiH3HuS2qDvHeSKlWv+bodkmqwtN90kxeTMuC WwIgUqEBsKvh2VU3kl1jXUCpGXeUbEwFSW1PdZcRvqf0PRgAdgCyHgXMi6LNiiBO h2b5K7mKJSBna9r6cOeySVMt74uQXgAAAXAYhnIOAAAEAwBHMEUCIEZ8EylBjTYf oOj8zYiwWkBSiXW0q3Jp9wbFq10ZxjjEAiEA+rma8esnw8Qnps941CNTAreUfRLo AmJj8gAq7E0A67YwDQYJKoZIhvcNAQELBQADggEBAHfYSx5AyDIeEZ8iRDC3Fn3N ufAim7G4gk7snGW4GA+sWa6AOg/UshJjFzpbvCSrpvmDML6Qn5u/mN2X32SVu5OF 9nSyB9odJOisS1Ydbd8xET/l8Ll4ekFMxLkMijJ9UwnQ3JwObR2BKB4vHR1z+nv6 Z13AmTK+Oo6YhTX4c/9+8RbEIZvUAgOe0HCCeZvU8RWyf0VLyUcnw5OuAHphNmHx FUQf4zmtG6JbeavbQfJunw/5dyX1wmI0l4L/fsjQVlvXJ9xM06uPm5tU3k0aZt0v +ahFBFvDT1SNhmOWji7E22HPtNW8MaTls9W3UAz6XpIF7T5aI2gufPm9T7OK+yQ= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAoeBewfGJ5onQ+/dK6Jmi pewIXJTJPdyVDb2+VnjMl2X27EiwThxW8S33RpceN7Ch2xLffvNyzrKCFd3LQAbY RUWfoS0P4CrVXJmLH83vsQYqbgb9lpGgUzOWiYA14jxphcG1OLK8Dtj2f3d5TlXP 02YK/3znVQRPXR0mGB4UQlHjBD5fvS6m8iEKhP/+U9cvubnLjqaN/KGXF9IEWGCO dIDMbp3cdDng0MLbqnHStuUt7fE5WgZfE/FpS/xNu9ArfyNXWJEeNjYblxIe5V9K Aa4rUgMxHCt3goNLG2nG17GQIY+K7VvHAe7uINcKY4t43KKM4TMjELgrU9K03Xis yznGmY2OCnTwZkLQCbegpooJFwhxPZZECrz9r3OIaEqy+VWpRVQ5Q3b9iay0YM3p qzF6GdFP6svo/OFAX1Be1/stgHeXrwnMunYSOSX0QoecYT69QIcDehJIZ4vbcMZT WXeEPs/ZgkIHouxG1Xdj20vZz++fWJ7CMb+m/cLqtN1oku5wHL1Nimvk5MzXhbm1 ssdV41T6X2iFJy7sj3myDp/wjrUwPm8TfKuK1exqYnIoQ57SABBGn6s/iGeu1CEz 2yq7aQiCNxVNyYHKUfjCuCHic8aJ/NfHeIiyEcnBRFkc8FF3Bk7OYlkSJ05A9bCO 1/6mxDT5D/gQhqnrANmA9lsCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 287281966042106486368352361553846813919578 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-02-06 02:23:49 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-05-06 02:23:49 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.giacimenti.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 660398282211433110470846575087597918914914563057548980897493289739148547288464584600913740639026369011301040805665409942476397954600169637324043485068326454198732699822370256466357199063633757918655571304401080899769377496118136017546982258951008657492408818168677440609657806989171671567834683993483280448658100419394198667713530149948680292882323612203189506206975071084394268758896086583993385323011755595267875655642421151933151882384483376902874133422147373986521366153193036510710249145400345502090259420783143316874934953631988104617407330884456881431010638860187663384491812441218568418443146945389010749218036308164462116148173792730532244535294461128709192153980988106796801258806122045292411910317804484596821741862053509308383009781302338481593885617382719956176561380517437499053273455280736500222812049098232183206949573175280024086185545779591571884785761695331007080191929633773961237343244411501831898781738237238173710909518760839773120941951038311860035157373419978063351743374051851280220296354912925766847152032819806644877765144061262967713422592536012547184604571831164092542866413200362815986225867555503810836146533863708547435253633805080611360909666577117213179585440906080744245802984104232115901370005083 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b9429a9a12bbdd343008904e601789d96cb772de . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.giacimenti.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb273000001701886720e000004030046304402206cbaa9c3887dc7b92daa0ef1de48a956bfe6e87649aac2d37dd24c5e4ccb825b022052a101b0abe1d95537925d635d40a91977946c4c05496d4f759711bea7f43d18007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e000001701886720e00000403004730450220467c1329418d361fa0e8fccd88b05a40528975b4ab7269f706c5ab5d19c638c4022100fab99af1eb27c3c427a6cf78d4235302b7947d12e8026263f2002aec4d00ebb6 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0077d84b1e40c8321e119f224430b7167dcdb9f0229bb1b8824eec9c65b8180fac59ae803a0fd4b21263173a5bbc24aba6f98330be909f9bbf98dd97df6495bb9385f674b207da1d24e8ac4b561d6ddf31113fe5f0b9787a414cc4b90c8a327d5309d0dc9c0e6d1d81281e2f1d1d73fa7bfa675dc09932be3a8e988535f873ff7ef116c4219bd402039ed07082799bd4f115b27f454bc94727c393ae007a613661f115441fe339ad1ba25b79abdb41f26e9f0ff97725f5c262349782ff7ec8d0565bd727dc4cd3ab8f9b9b54de4d1a66dd2ff9a845045bc34f548d8663968e2ec4db61cfb4d5bc31a4e5b3d5b7500cfa5e9205ed3e5a23682e7cf9bd4fb38afb24