www.acqualagna.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:a7:45:5e:50:e2:3e:cf:89:d9:66:99:3a:33:95:78:30:30 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.acqualagna.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:a7:45:5e:50:e2:3e:cf:89:d9:66:99:3a:33:95:78:30:30Serial Number (int): 318256219519209096796868204958331602219056
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 78:50:bb:0a:36:c7:3b:9c:be:b5:87:7b:be:2c:b3:f0:e0:3e:3a:c4
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 6c:f9:0f:15:91:14:ba:7a:2a:34:7d:e8:e2:10:ef:7c:07:19:9f:c4
Fingerprint (sha256): 71:61:b6:fb:f5:5c:cb:4a:36:aa:87:2c:3c:e4:be:1c:45:65:3a:89:35:f3:2d:7b:9b:69:35:21:22:06:ba:6a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.acqualagna.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.acqualagna.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.acqualagna.org
Other certificates including the domain name acqualagna.org
(limited to 100 certificates)
acqualagna.org
acqualagna.org
acqualagna.org
amamioshimasouthern.bible
www.acqualagna.org
acqualagna.org
acqualagna.org
acqualagna.org
acqualagna.org
www.acqualagna.org
www.acqualagna.org
www.acqualagna.org
outletswitch.com
www.acqualagna.org
bgt.bible
www.advancedappraisalonline.com
www.acqualagna.org
acqualagna.org
acqualagna.org
acqualagna.org
acqualagna.org
acqualagna.org
amamioshimasouthern.bible
www.acqualagna.org
acqualagna.org
acqualagna.org
acqualagna.org
acqualagna.org
www.acqualagna.org
www.acqualagna.org
www.acqualagna.org
outletswitch.com
www.acqualagna.org
bgt.bible
www.advancedappraisalonline.com
www.acqualagna.org
acqualagna.org
acqualagna.org
acqualagna.org
Certificate
The complete raw certificate details for www.acqualagna.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWzCCBUOgAwIBAgISA6dFXlDiPs+J2WaZOjOVeDAwMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjcwMjM0NDZaFw0x OTA4MjUwMjM0NDZaMB0xGzAZBgNVBAMTEnd3dy5hY3F1YWxhZ25hLm9yZzCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAO7sfBZqZiB8urOsNRUA7f85fois QM1bIbpoaDwGvsgELdxcI8OEf5En/RafTCVJxUQgGmFVMlbrDeJiSWeLVqYBF5e4 6Lh2cTaSy2qODkJwFgNxsGJiYP7QX9ukKJZJFg5x0Iqw+yOKjH2SPfkezIJanSiL ZfL7qUp8UEEdEkFvFuqTqUVDM4l7bGSOZv57rwLxCR15W+dNh2tG2dKQMR1jS4CQ gFsba9t6IG5epJV+VeP1J/Olxxzs9UF8Pd6Q6Kd+Gx/RS3EZDnraecuppRlJU7nZ nHT1X1iMGi1Cstmtmtj2ibeoSiNIW7sNFY4Zu1/mhpNQA8kWNK/q9okQdQ1lMjKX EMNIalvNtya1DnKRNsdJMpKkKewUaRvuFImsgSPI5QofAlHKRF+JOMhGKXN4Zz2n CwppexlI3Cxqmjm6TlOsgF5S1SW3xM8a95d6Rc7hK4dVXhC7OMxH5EcudgCC1MlF NmyUZHiPcmUI+tByb2PE8X0B5881wyI6xuf2qMxoAzqS/RyNWF5KlPiL1cHwRL2U tV0VuslsrNmJxWFipOvg19q2BL1YLDEEsN2AE4a+7vsuhdGgc71+agqUJpAmdhZC 1vAFVFxyCubCYaKxlAMtf0gCx7sUEQ4FSMADBdZnvU9p79ayBhxdrQLQMBnP7rMp t3XYF33+eH80FoNHAgMBAAGjggJmMIICYjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FHhQuwo2xzucvrWHe74ss/DgPjrEMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISd3d3LmFjcXVhbGFn bmEub3JnMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHW eQIEAgSB9ASB8QDvAHYAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYA AAFq91rXowAABAMARzBFAiEAm4fZuAGXDi7o5+JwIFx95J6/3hgW8bskEZpM9kdw 35UCIDZvvcp2DkkevjAG7iSCTWB4VlBKsxhTY2cu4KRwWQvVAHUAKTxRllTIOWW6 qlD8WAfUt2+/WHopctykwwz05UVH9HgAAAFq91rXvgAABAMARjBEAiBtwRBzmUlQ PQTqxAvoX3ribfru3NyIojKJRP6O6S5XIwIgB/EbQaH7tW8rGe0L2zIfq2PW+iaP o1hNp9W/dOqSTpAwDQYJKoZIhvcNAQELBQADggEBAIK86dth6Gcx96t2aaEM/fVf Nnj62PicW8VekZpTgKFvo6ssE3TNdmv8msxpkCGYyA2oUAuSrqXmtbtqh3rZBImC 8LHr3oBTF/jVOLRQabXVhFQGNJkVw2tCEdEYitAv8WDnpgRj+fkxzbYIl2LAec4n W1pocnR6fCTPeH+74iggA9H0Fu6DSTv+chHYQoQVqLBXzOkqrseryfsZQlsnOScW Jo0k0qc4+1jjldPiMY2aIuR4vX7rlcj+BDEZy8qWoZ3pKBMWGFHbZfIps1A2kaaz 2wlAMiDX6ya4vgcepheWOW030FK5oFHRt/Gyc66Ahx3YNAOpVJyxeYL/ASbUIjU= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA7ux8FmpmIHy6s6w1FQDt /zl+iKxAzVshumhoPAa+yAQt3Fwjw4R/kSf9Fp9MJUnFRCAaYVUyVusN4mJJZ4tW pgEXl7jouHZxNpLLao4OQnAWA3GwYmJg/tBf26QolkkWDnHQirD7I4qMfZI9+R7M glqdKItl8vupSnxQQR0SQW8W6pOpRUMziXtsZI5m/nuvAvEJHXlb502Ha0bZ0pAx HWNLgJCAWxtr23ogbl6klX5V4/Un86XHHOz1QXw93pDop34bH9FLcRkOetp5y6ml GUlTudmcdPVfWIwaLUKy2a2a2PaJt6hKI0hbuw0Vjhm7X+aGk1ADyRY0r+r2iRB1 DWUyMpcQw0hqW823JrUOcpE2x0kykqQp7BRpG+4UiayBI8jlCh8CUcpEX4k4yEYp c3hnPacLCml7GUjcLGqaObpOU6yAXlLVJbfEzxr3l3pFzuErh1VeELs4zEfkRy52 AILUyUU2bJRkeI9yZQj60HJvY8TxfQHnzzXDIjrG5/aozGgDOpL9HI1YXkqU+IvV wfBEvZS1XRW6yWys2YnFYWKk6+DX2rYEvVgsMQSw3YAThr7u+y6F0aBzvX5qCpQm kCZ2FkLW8AVUXHIK5sJhorGUAy1/SALHuxQRDgVIwAMF1me9T2nv1rIGHF2tAtAw Gc/usym3ddgXff54fzQWg0cCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 318256219519209096796868204958331602219056 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-27 02:34:46 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-25 02:34:46 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.acqualagna.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 974723934567814417604935870640204408604466595564113016329966143748030985653612271042061007058689501575487851443252239140576287953847721166436788220691520250816837458234676830348385427502404145979260082929423294175402327236695012989557149881358712841409809059736893569193070111249744031180462714612821213356850876119805886817170007121899054249111396077494978419383114548882938409570678864087321429519964059024921005621076947416220665508893255902856867000321508510404007613984838647872824716391201430782085050792887443097055678989991423605402556779711246364092392018815822112141726264876624624976429645728621829481602408764379826530613337172426365605094319112691665143645827975767927950359079361173642656533494125561982975024826249992827296151856899980067023806819162344680072918603088072877145925849760397926850503192713510476866539548865416375273311051099191720344095347304005730137248299803207086883923506377858741239335916612924137450022763554902503828818085393720729338918287862903515304258667725679613705691000162242583483211089410985296650330094703998635683433866300638677879613507879457140284123640125339347357648014945277640523100143347064451555158416045163871773677294012627894669520121060446055610856012764267441215331795783 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7850bb0a36c73b9cbeb5877bbe2cb3f0e03e3ac4 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.acqualagna.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016af75ad7a300000403004730450221009b87d9b801970e2ee8e7e270205c7de49ebfde1816f1bb24119a4cf64770df950220366fbdca760e491ebe3006ee24824d607856504ab3185363672ee0a470590bd5007500293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016af75ad7be000004030046304402206dc110739949503d04eac40be85f7ae26dfaeedcdc88a2328944fe8ee92e5723022007f11b41a1fbb56f2b19ed0bdb321fab63d6fa268fa3584da7d5bf74ea924e90 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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