cannatico.com
Issued by R3
About this certificate
This digital certificate with serial number 04:75:fc:56:63:e0:55:5f:2d:69:58:26:b8:73:73:32:c2:ee was issued on by Let's Encrypt.
With 2 subject alternative names this certificate can be used to secure multiple fqdn's. This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=cannatico.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:75:fc:56:63:e0:55:5f:2d:69:58:26:b8:73:73:32:c2:eeSerial Number (int): 388597594674990500059806253217871398355694
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: fa:f0:1c:4d:28:68:17:f4:a3:c8:00:fc:65:2b:56:25:fc:61:4e:09
AuthorityKeyId: 14:2e:b3:17:b7:58:56:cb:ae:50:09:40:e6:1f:af:9d:8b:14:c2:c6
Fingerprint (sha1): d5:8d:62:f8:fd:cc:ec:41:8f:c7:ee:4b:9d:87:dd:69:5d:3f:3f:7c
Fingerprint (sha256): 77:da:ff:6d:39:c4:a7:29:46:78:d4:72:45:f5:cf:26:c0:e0:e6:4d:03:93:d0:c9:1d:95:40:00:e4:82:18:69
Issuing Certificate URL: http://r3.i.lencr.org/
Revocation information
OCSP Server: http://r3.o.lencr.orgCheck the revocation status for certificate cannatico.com
2
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for cannatico.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
cannatico.com
www.cannatico.com
www.cannatico.com
Other certificates including the domain name cannatico.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for cannatico.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIF+TCCBOGgAwIBAgISBHX8VmPgVV8taVgmuHNzMsLuMA0GCSqGSIb3DQEBCwUA MDIxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MQswCQYDVQQD EwJSMzAeFw0yMzA4MjcxNTA1NDRaFw0yMzExMjUxNTA1NDNaMBgxFjAUBgNVBAMT DWNhbm5hdGljby5jb20wggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCz UjuBgE0dNqcipTJVqZYECuu8pSXxjqpr3Ha2izIRB5XuZRiCVfwanTz1OulmEzWd sdi+N6+547805XzJ0uX86TWtW5+HCtzVZPOlK3R3JFnk3i0Fn5N5D5tfSUfxhG1R O5XLwXXOcnrSfUUloPPnbqEektu6xPgaQA/63l5tbMWHxFAPoPuDhxTPXQF0IJpM whqyum9/O0GlKsCspKaJzFRFC7I3syEaUto5DJvlSRgxpn+VEjuBNsaYPqxOjJ1r +kzLV9tRlg1CfVqk7Vt/WXaOItwSs5MrVQRrpuRkoXCT5WubZialMNzezbWe+VdM PrCjAfpXBZLeuXc2nMFF4k55uE3MJbU4PIVac1tj12VlQx1BVpJUPmH+CfRJX68B XNFVVBIL9J8EQ7XVQlfD9gv3zj+braa6Dgjeof6R5vFuk7Emh84AjZ7DuMLtLv+0 c7gLjwbmk6+UUFE45bV8F6tvzHEsgfyArYlcTuRQ9XsTQzaFDF2Kf8e67xs1Lngi UXvQyrtJHoJJzd+eW1w6ZCZMa1TzFfLB0DiOGJKdoonjwIqbJNEBw3+oGJ3d638u JlaUzEXFD+C1V0c+x7Yt0XXy5Y2S5Dfn0EjJXQ6k7QSvwWOjDMqbTB4f3gE3y9NM REWscL82qzBQi1sCe+9Sg5TCu84OebI90Ltltdy/pQIDAQABo4ICITCCAh0wDgYD VR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNV HRMBAf8EAjAAMB0GA1UdDgQWBBT68BxNKGgX9KPIAPxlK1Yl/GFOCTAfBgNVHSME GDAWgBQULrMXt1hWy65QCUDmH6+dixTCxjBVBggrBgEFBQcBAQRJMEcwIQYIKwYB BQUHMAGGFWh0dHA6Ly9yMy5vLmxlbmNyLm9yZzAiBggrBgEFBQcwAoYWaHR0cDov L3IzLmkubGVuY3Iub3JnLzArBgNVHREEJDAigg1jYW5uYXRpY28uY29tghF3d3cu Y2FubmF0aWNvLmNvbTATBgNVHSAEDDAKMAgGBmeBDAECATCCAQMGCisGAQQB1nkC BAIEgfQEgfEA7wB1ALc++yTfnE26dfI5xbpY9Gxd/ELPep81xJ4dCYEl7bSZAAAB ije+ecgAAAQDAEYwRAIgeWXHO/h1OlgltpyCfGEV+RGHTuYEr0RFt+JFsWybWFUC IHrOdZwzOR/4A09cuU45CZrppEiigBgiBI3F45OoSNECAHYA6D7Q2j71BjUy51co vIlryQPTy9ERa+zraeF3fW0GvW4AAAGKN7550QAABAMARzBFAiA0l2H7squFjcqG DaBFAOtbwhAQ1TVLTfuWcXehMnL+GwIhAL4kd1nmcqro4EuYsCp68OE5tkIJmkn2 8Gu7r1niNIJMMA0GCSqGSIb3DQEBCwUAA4IBAQBC7VeE/7Oit/xwrsF1pI2jE7xN oXun+3iaFXr4+gOWfnVT2EPqkqGcNH7n4tDQc2tDprCocfzDjbwTAaF67w6QqWxE YFr/Vwg7ht69K6HKWE6Zum5epYwzgZLr3T+MHcs5fr/H9d/WzGyOAeyIwvcYq14a QjTRoOlQVRsJXKVW6SPL+bJ5XgkoVq8SAu0hisGxCg9vKQcCoL+G7s3yw8fLLFa5 QjcTWAmZHppHVrTBVIlecx6M8P5j7iJilmB3OwRx7NA5JROT4qO2aogw0iebAVuL gkHTlAc8ew9RfZjrAYzExKtRO7OdzMRGXPd6oDGHSwdKk3KyRYSEReOMB0vg -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAs1I7gYBNHTanIqUyVamW BArrvKUl8Y6qa9x2tosyEQeV7mUYglX8Gp089TrpZhM1nbHYvjevueO/NOV8ydLl /Ok1rVufhwrc1WTzpSt0dyRZ5N4tBZ+TeQ+bX0lH8YRtUTuVy8F1znJ60n1FJaDz 526hHpLbusT4GkAP+t5ebWzFh8RQD6D7g4cUz10BdCCaTMIasrpvfztBpSrArKSm icxURQuyN7MhGlLaOQyb5UkYMaZ/lRI7gTbGmD6sToyda/pMy1fbUZYNQn1apO1b f1l2jiLcErOTK1UEa6bkZKFwk+Vrm2YmpTDc3s21nvlXTD6wowH6VwWS3rl3NpzB ReJOebhNzCW1ODyFWnNbY9dlZUMdQVaSVD5h/gn0SV+vAVzRVVQSC/SfBEO11UJX w/YL984/m62mug4I3qH+kebxbpOxJofOAI2ew7jC7S7/tHO4C48G5pOvlFBROOW1 fBerb8xxLIH8gK2JXE7kUPV7E0M2hQxdin/Huu8bNS54IlF70Mq7SR6CSc3fnltc OmQmTGtU8xXywdA4jhiSnaKJ48CKmyTRAcN/qBid3et/LiZWlMxFxQ/gtVdHPse2 LdF18uWNkuQ359BIyV0OpO0Er8FjowzKm0weH94BN8vTTERFrHC/NqswUItbAnvv UoOUwrvODnmyPdC7ZbXcv6UCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 388597594674990500059806253217871398355694 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'R3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-08-27 15:05:44 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2023-11-25 15:05:43 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'cannatico.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 731566753431658052693754366942901753458759432960792718195106953119027329121134606411128245038510893332284267426677213313502639761502703857119783199952189454948916049315421109699216075128960650000989133024615037709976824106539447791701507975115908897286583753884314054730269413037771388729714444842997444297443476812630769310094681151085056718517353735598506388257309636580043924676271832989650600021745968479775374021366791401634572025310074566135007221327803296914171123315993245008625186548239640451871794329999329181676323728179338618187056909777279575990072917062342552490753621052690652322102255883479107406570151694803984992928242465567101705019072258593947251945803905500568165924604997836763550785754551309797934158505776993406857926784583645825696817365240648635337886049438478145594480495526053307908094480657961395284013639050705672616836446074238583586531129883309097237232894890835862326534985784292140423129821286341908272567839284638516430460650233680517787126002703597380999400854067369565694935323989714120329983618702705028553085473778616494267801129841604224530494294434628135152921569582546256239247013501702076436503143496625999821217931777767128595051846724019044879265523090947043428890241273751172176167092133 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) faf01c4d286817f4a3c800fc652b5625fc614e09 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName 142eb317b75856cbae500940e61faf9d8b14c2c6 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (73 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.o.lencr.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://r3.i.lencr.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (36 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'cannatico.com' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.cannatico.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (12 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500b73efb24df9c4dba75f239c5ba58f46c5dfc42cf7a9f35c49e1d098125edb4990000018a37be79c8000004030046304402207965c73bf8753a5825b69c827c6115f911874ee604af4445b7e245b16c9b585502207ace759c33391ff8034f5cb94e39099ae9a448a2801822048dc5e393a848d102007600e83ed0da3ef5063532e75728bc896bc903d3cbd1116beceb69e1777d6d06bd6e0000018a37be79d100000403004730450220349761fbb2ab858dca860da04500eb5bc21010d5354b4dfb967177a13272fe1b022100be247759e672aae8e04b98b02a7af0e139b642099a49f6f06bbbaf59e234824c . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0042ed5784ffb3a2b7fc70aec175a48da313bc4da17ba7fb789a157af8fa03967e7553d843ea92a19c347ee7e2d0d0736b43a6b0a871fcc38dbc1301a17aef0e90a96c44605aff57083b86debd2ba1ca584e99ba6e5ea58c338192ebdd3f8c1dcb397ebfc7f5dfd6cc6c8e01ec88c2f718ab5e1a4234d1a0e950551b095ca556e923cbf9b2795e092856af1202ed218ac1b10a0f6f290702a0bf86eecdf2c3c7cb2c56b94237135809991e9a4756b4c154895e731e8cf0fe63ee22629660773b0471ecd039251393e2a3b66a8830d2279b015b8b8241d394073c7b0f517d98eb018cc4c4ab513bb39dccc4465cf77aa031874b074a9372b245848445e38c074be0