www.giacimenti.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:f5:af:ba:87:c9:a1:3d:f2:b3:8f:6d:e7:69:f5:c6:bd:c1 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.giacimenti.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:f5:af:ba:87:c9:a1:3d:f2:b3:8f:6d:e7:69:f5:c6:bd:c1Serial Number (int): 344939621111488770379619413588683415535041
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 35:24:00:66:b1:61:ea:a5:23:1c:02:53:31:ee:c4:c3:d0:30:2c:bc
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): f6:a2:59:8a:a9:41:eb:b3:04:60:b8:26:a6:fd:61:a2:b2:30:2d:3d
Fingerprint (sha256): 6e:77:49:32:48:7a:7d:9a:7d:03:4c:81:80:a4:74:21:9b:40:af:d4:d1:c4:04:64:02:be:89:d2:22:7e:20:b5
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.giacimenti.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.giacimenti.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.giacimenti.com
Other certificates including the domain name giacimenti.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.giacimenti.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXDCCBUSgAwIBAgISA/WvuofJoT3ys49t52n1xr3BMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MjYxMzUwMzRaFw0x OTEwMjQxMzUwMzRaMB0xGzAZBgNVBAMTEnd3dy5naWFjaW1lbnRpLmNvbTCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAJy9876rHTfZfToRAaFcl5TiEum3 sknnnw9+6bKd4XwrZq6Lpnnh9e+A18IfaP/Q+XH1jsvr/tFXJfi4wtFhcc8Jj2n3 L7UW9SULcj6lGnMPepOgSGIB1cJGIEMZpuSuwYSphY26Lj0QPwoVvhk/hLU8cvAa gKr5Rn4fd44pn6EZyqbllqC4GaQyz/Y7CoB8Rh4SM5F+Xz214gUD1ynmpFRjDClT Fjb6S7s2HpDTyxa1WQduhrOy3EnZJ2UqoLoDUpPXdHAW1sjo4YE6tmxntgLFlStJ Or9BI8Q6nG57DnmAvCzT0lVVlUvcigAbdhDWQ8BW4GJxvBbCaCMJGZOTRo6BHG3g RVX8gCD/sTVM/XMkQzvLlyVnLbnx9esr7mw3FEqlxULkKYlUmE5rtKV13JeEl4wR c1WfgPSOm38xMyZQsYnyw3PksQtwuO0Wa7TCQk0HaztOWE4rx3NEJLqfXN4O84kQ yMtNgesOS9xgv1ecs5Y3Hx60IXmedHZTTxluhSfzqKaFVil4NTLYe62crGMYvisJ BiqBaKST7bX5OvCfDhj/XSz1xn5JBKeZYhb5OUluzPChmLTGxZAyPEE4291FdLz0 zgCQ0eodOmMERNS/Ccj4qYHrvri462zb+79cMmhGtCJtz3Fc91m+5YxK5BVDGANf xp4i7R3ebYc6EH9vAgMBAAGjggJnMIICYzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FDUkAGaxYeqlIxwCUzHuxMPQMCy8MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISd3d3LmdpYWNpbWVu dGkuY29tMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHW eQIEAgSB9QSB8gDwAHUA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4A AAFsLsMgcQAABAMARjBEAiB4Q8cIfIsDAB08G5EGTJIfN1mgW4SJWbMSBvVwMvqs tgIgbUM5Tch2xgqoOlhTm/oSRQLoMfbPDntM+OqtLua+VmMAdwApPFGWVMg5Zbqq UPxYB9S3b79Yeily3KTDDPTlRUf0eAAAAWwuwx6bAAAEAwBIMEYCIQCgZkA7fHoX E2bbj39qbFc8uF8VmPl8s7HaHiTrcrmU4wIhALonlLqtW66PlwYniHtOcnktC4I1 Nkyzr3uGnTJkcuC8MA0GCSqGSIb3DQEBCwUAA4IBAQBURMCT5hXynN3THpJRkL1d /jnMrKEGRwIoYq1Ugvk/d1UAua8WNaDCVf6ogC13np467tIXbAM4JZiYWUNuAFeT toRzE9rEH/rg90XSobFFWCBDNQOvVwCVimRe+qBDiPO0FV6lSn1b3PvAslvWgI6R 0fC1Mbvi5Q/xFgQbJzMmavwrx8aWZM3dP6Adb/CveZ0CNe7+TCTtgmzUK+LZzL+h 66IlquDQHeT7eeRBq5ZpmfG+Urdnsa65t0Nbj/hfzOjKfVlYgKsGeg8RH1IfJl4r xwB51w9XAw9yVLFRQZQUulZTtzLOLlsqzRHdAgLWLdfr38QmdpvVCSNefqEj67if -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAnL3zvqsdN9l9OhEBoVyX lOIS6beySeefD37psp3hfCtmroumeeH174DXwh9o/9D5cfWOy+v+0Vcl+LjC0WFx zwmPafcvtRb1JQtyPqUacw96k6BIYgHVwkYgQxmm5K7BhKmFjbouPRA/ChW+GT+E tTxy8BqAqvlGfh93jimfoRnKpuWWoLgZpDLP9jsKgHxGHhIzkX5fPbXiBQPXKeak VGMMKVMWNvpLuzYekNPLFrVZB26Gs7LcSdknZSqgugNSk9d0cBbWyOjhgTq2bGe2 AsWVK0k6v0EjxDqcbnsOeYC8LNPSVVWVS9yKABt2ENZDwFbgYnG8FsJoIwkZk5NG joEcbeBFVfyAIP+xNUz9cyRDO8uXJWctufH16yvubDcUSqXFQuQpiVSYTmu0pXXc l4SXjBFzVZ+A9I6bfzEzJlCxifLDc+SxC3C47RZrtMJCTQdrO05YTivHc0Qkup9c 3g7ziRDIy02B6w5L3GC/V5yzljcfHrQheZ50dlNPGW6FJ/OopoVWKXg1Mth7rZys Yxi+KwkGKoFopJPttfk68J8OGP9dLPXGfkkEp5liFvk5SW7M8KGYtMbFkDI8QTjb 3UV0vPTOAJDR6h06YwRE1L8JyPipgeu+uLjrbNv7v1wyaEa0Im3PcVz3Wb7ljErk FUMYA1/GniLtHd5thzoQf28CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 344939621111488770379619413588683415535041 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-26 13:50:34 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-24 13:50:34 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.giacimenti.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 639451572551331070679577690195343039209196051614146463776988862218793187754865726014356628725921937088185068813783604035033937788793947435040052130463606355378857596548735785302744026310461118933943806110379303134793699530615120457479552245013282264141306738980141600699628168703938899580108899807166374408211273567697412289178291434658442306676016477496780851641832395294890039021866368622727815303381092709113192509397041512350067684470798342680653645978857079668883226288965053702568042977852880287227560844164911049654166073407683975923738624575365371115786526404363782616983183013610256241834018714416266267069453717514792133936709651316156816192872545871592414102772478579006974500997351367957800986519510246261900133696811512811680792024097132699090904272223238570711156849427962283918698200620638877631420156459633898642041367578149883256041025615878062432209218615929786603290972689836438598141058268145253436062725368925571261868833987190161562631505352660232708368726195094716218598524563899913026463274248851430738412248396143858804852416370874464871272080471933518986361674208054653842452910149781508796435042042291480022709989447387408097354387405003672709465518612003243355922645315806085132389110530438727819045404527 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 35240066b161eaa5231c025331eec4c3d0302cbc . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.giacimenti.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c2ec32071000004030046304402207843c7087c8b03001d3c1b91064c921f3759a05b848959b31206f57032faacb602206d43394dc876c60aa83a58539bfa124502e831f6cf0e7b4cf8eaad2ee6be5663007700293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016c2ec31e9b0000040300483046022100a066403b7c7a171366db8f7f6a6c573cb85f1598f97cb3b1da1e24eb72b994e3022100ba2794baad5bae8f970627887b4e72792d0b8235364cb3af7b869d326472e0bc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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