rilegatrice.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:98:a7:ba:bc:98:26:fc:21:c5:27:d0:33:c9:1c:d9:b9:cf was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=rilegatrice.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:98:a7:ba:bc:98:26:fc:21:c5:27:d0:33:c9:1c:d9:b9:cfSerial Number (int): 313282728234922906242855425671196871080399
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 7a:7e:b2:01:cf:a7:48:bc:4c:99:5d:28:3b:52:bc:e0:d4:d1:18:bf
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 54:ea:45:6b:ab:16:9e:15:3c:4c:2d:9b:5f:06:c6:95:d3:3c:65:de
Fingerprint (sha256): 79:70:59:e3:cb:46:4e:cc:24:16:4b:f5:86:f0:ba:c1:2b:24:7e:80:33:79:fc:c8:98:b9:89:ce:13:04:b1:63
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate rilegatrice.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for rilegatrice.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
rilegatrice.com
Other certificates including the domain name rilegatrice.com
(limited to 100 certificates)
www.rilegatrice.com
rilegatrice.com
kikai.bible
rilegatrice.com
rilegatrice.com
rilegatrice.com
rilegatrice.com
volkermord.world
www.rilegatrice.com
www.rilegatrice.com
rilegatrice.com
rilegatrice.com
generatorcable.com
69490.com
oregonsportsmedicine.org
rilegatrice.com
woodside.bible
rilegatrice.com
newworldsound.com
www.rilegatrice.com
rilegatrice.com
www.rilegatrice.com
rilegatrice.com
kikai.bible
rilegatrice.com
rilegatrice.com
rilegatrice.com
rilegatrice.com
volkermord.world
www.rilegatrice.com
www.rilegatrice.com
rilegatrice.com
rilegatrice.com
generatorcable.com
69490.com
oregonsportsmedicine.org
rilegatrice.com
woodside.bible
rilegatrice.com
newworldsound.com
www.rilegatrice.com
rilegatrice.com
www.rilegatrice.com
Certificate
The complete raw certificate details for rilegatrice.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGVTCCBT2gAwIBAgISA5inuryYJvwhxSfQM8kc2bnPMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MjgwODQxMzhaFw0x OTEyMjcwODQxMzhaMBoxGDAWBgNVBAMTD3JpbGVnYXRyaWNlLmNvbTCCAiIwDQYJ KoZIhvcNAQEBBQADggIPADCCAgoCggIBANC+8aaZAgPzVE/B1R634vla9jlo8fM9 uex2Gl5myqdbwtmLfQupdrj0Tu6dinOQqCqGmIinLmIXoBBLivBRb41qnmtTnbNI vz0S4N/WwYu1vW12c6gfsNb0jp4/7ENktsPMqZ3zbR9or3r5yg1JdDDIoVONlz8B eeLG+D227luxVFHQaaxVqmArhOBTZ1aRTzp9cAT/8PQVoDX5dse3BZgBGA41+6GZ iSO5Et5aYr6Mol4BWR07ldBOm4RwRME7p//rI3B6tWUwvA6sobYHM3UNxZbUIQb8 Vo/sz//0WxbVb5AwCqoorKuedv7bjyRn5IjEvBRcvWwbkXX+2cHdhoUNhVjlDm5r YSIF9ub74y98yJw4qEnNIbZIjqS7xXtJ+txMak2V2GzQo15kbx5FW2FIS9NZplmH 5PhkmrpRgJ+35PA1V6kf+0qa1Um7usD2Ubab87h1L4BWUXjTIwI5HwogHWDkq1Xk nhggfoBgooXkIHBtyLYAzXNgKpB+z7Ut6GQnciFUboNmrlXYSZ8yR/UeMlDOtSsq RWuVUmYBROGVZPIDkREF33R/8KIwLjmE/Y4wiluSCmf8eFi+nX6S4WDMunwHG2MH RGSg05OAgU+fImiX2Wgpj879hhLcTlLCrXVhtPB1R95RTvjrm5F29pkfjDvKAk1B xXl6ClxKWj8HAgMBAAGjggJjMIICXzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYw FAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFHp+ sgHPp0i8TJldKDtSvODU0Ri/MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/z qOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50 LXgzLmxldHNlbmNyeXB0Lm9yZy8wGgYDVR0RBBMwEYIPcmlsZWdhdHJpY2UuY29t MEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUH AgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYKKwYBBAHWeQIEAgSB 9ASB8QDvAHUA4mlLribo6UAJ6IYbtjuD1D7n/nSI+6SPKJMBnd3x2/4AAAFtdz9H TgAABAMARjBEAiBTWCHNMxmfB8X0wzWCoiCKjIPdlMAijsPOTCNkLDL3EgIgSMDW Th3rXQt84Djhqj+hULg2RVUoBV/wj3w2cD2C/wsAdgApPFGWVMg5ZbqqUPxYB9S3 b79Yeily3KTDDPTlRUf0eAAAAW13P0dzAAAEAwBHMEUCIE3Qi+duGf/fFQthGa9k 1RYMmbKHbdMFnr04OdFnTcQBAiEAhkGPB5l9c/vlA/u+ETpjAkcmc7sIhUzNfLJZ hwjkVtswDQYJKoZIhvcNAQELBQADggEBABLyZY2RzEz0FGQvWOQmkX2YE2dA4j8y 7UZihK/RPMMm/OOK989CVTiB5IzOuNL84HjVjAMVwFKwcuUwu9B5CoQgdB8gyVth IxfDv/Jn6KCyeXyyAOmsziWptXR1b6fbCgUCVvudhhxmWx50NVhYeiGzrJldP+pk /r+k2A3rT93F7zCaBllPIq7VO1Xg3G68LWe0DWmfIXsRuQlCxhslgmPKJ6pSXTd4 ANYpqmdJtxPf+cdZaSti57zmvItM7SQhLa195geo57YE/BC3HSR3P8wbGrKTvqu3 9h9d6wZB5AzOTEq479FLtSy8x8ZdQzw39rqMU4mOlpv3fI/uSf/kYIk= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA0L7xppkCA/NUT8HVHrfi +Vr2OWjx8z257HYaXmbKp1vC2Yt9C6l2uPRO7p2Kc5CoKoaYiKcuYhegEEuK8FFv jWqea1Ods0i/PRLg39bBi7W9bXZzqB+w1vSOnj/sQ2S2w8ypnfNtH2ivevnKDUl0 MMihU42XPwF54sb4PbbuW7FUUdBprFWqYCuE4FNnVpFPOn1wBP/w9BWgNfl2x7cF mAEYDjX7oZmJI7kS3lpivoyiXgFZHTuV0E6bhHBEwTun/+sjcHq1ZTC8Dqyhtgcz dQ3FltQhBvxWj+zP//RbFtVvkDAKqiisq552/tuPJGfkiMS8FFy9bBuRdf7Zwd2G hQ2FWOUObmthIgX25vvjL3zInDioSc0htkiOpLvFe0n63ExqTZXYbNCjXmRvHkVb YUhL01mmWYfk+GSaulGAn7fk8DVXqR/7SprVSbu6wPZRtpvzuHUvgFZReNMjAjkf CiAdYOSrVeSeGCB+gGCiheQgcG3ItgDNc2AqkH7PtS3oZCdyIVRug2auVdhJnzJH 9R4yUM61KypFa5VSZgFE4ZVk8gOREQXfdH/wojAuOYT9jjCKW5IKZ/x4WL6dfpLh YMy6fAcbYwdEZKDTk4CBT58iaJfZaCmPzv2GEtxOUsKtdWG08HVH3lFO+OubkXb2 mR+MO8oCTUHFeXoKXEpaPwcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 313282728234922906242855425671196871080399 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-28 08:41:38 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-27 08:41:38 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'rilegatrice.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 851608869843985633413252810146084623814634661240864029920576308855169919189622622436097644979068918889973162988895292384111549907932573803793974390171914128688082725250979249478535525060121331394783582083332013280465017159890029272191106380247565022699903970649006049470354592455131461571088628794359385640525544913906094971663581596221727221694455283537381104702041544228575386366468374382711525039495172684488987285272779311391741943858889196752488006319826655432431684712911663410784264066871143540130803310432002009912115756797553682318296254678229072445054570331995396609099109973825567232653251335188521838085159970549296879475374679847129797372142292320194369901413621199434491884048859783189444324148746084025193675853345490881341523252705375386984699056651822896723858756810836945229743620453406472432754081953927885851368445601486081514548631749780536246197835334645164788204802904268480049546868594867020596353249791609426408864276179881818758984433750713444955263098185457100612824457893155499487414870556289751489596310472906500976793146726805462709869355237344966262645332172017114343982895080450525797725073895597799009682115760800185465774963085337959886584424312600116471429847550060391776899230017317592339276513031 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 7a7eb201cfa748bc4c995d283b52bce0d4d118bf . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (19 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'rilegatrice.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016d773f474e00000403004630440220535821cd33199f07c5f4c33582a2208a8c83dd94c0228ec3ce4c23642c32f712022048c0d64e1deb5d0b7ce038e1aa3fa150b836455528055ff08f7c36703d82ff0b007600293c519654c83965baaa50fc5807d4b76fbf587a2972dca4c30cf4e54547f4780000016d773f4773000004030047304502204dd08be76e19ffdf150b6119af64d5160c99b2876dd3059ebd3839d1674dc40102210086418f07997d73fbe503fbbe113a6302472673bb08854ccd7cb2598708e456db . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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