www.genzanodiroma.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:c1:4d:6f:5b:c1:ae:b2:89:4f:75:33:53:18:49:2e:a5:98 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.genzanodiroma.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:c1:4d:6f:5b:c1:ae:b2:89:4f:75:33:53:18:49:2e:a5:98Serial Number (int): 327114283372692974802873135071422910997912
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 88:4a:f7:e7:8d:39:36:f5:57:c6:93:2b:47:68:b3:2a:39:94:88:e8
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 02:87:3b:7a:d0:ee:d4:2c:25:48:53:65:75:78:8a:2b:30:2c:b2:99
Fingerprint (sha256): 7a:52:49:bb:10:a2:02:e0:a5:fb:65:7d:5e:bc:ea:a2:bf:b3:ae:ec:83:67:3b:81:06:36:28:7d:af:de:53:bc
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.genzanodiroma.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.genzanodiroma.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.genzanodiroma.org
Other certificates including the domain name genzanodiroma.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.genzanodiroma.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGYTCCBUmgAwIBAgISA8FNb1vBrrKJT3UzUxhJLqWYMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjgxNzM2MThaFw0x OTA4MjYxNzM2MThaMCAxHjAcBgNVBAMTFXd3dy5nZW56YW5vZGlyb21hLm9yZzCC AiIwDQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKvvlzrZh3MlQT9cuQ2dr99B zDz/muA+/9p78Rv6TqmRfdtYr36RQ2detgxgC34ZQ4fGLIachFReBr67fC0zaK2C Z9WX1U0Y9LZhRgDAM6pgVnc1RVIYqxnFvsbfu6sNMeS5whrt6WOuIi/2DNAVaACN c3xSV0GS81+mh5NYzBdNzN7m4mdT8MZPwERMRcoNVo1b+/aisiRXwdgS4Ij5TeXD SmLToV4JvUhHkhTUvxg0Qe6Yv5TZTfGJUaY2NR1Pm7ESimuApp9Dc2PjBMfivAIq TOHmTsD6ptaItPzUGtcZ63SJ9m5tWChjNeHC1+Pw924RhtyXfDULwzPt7PyvV08g soG8ioWacOnIydwx649p/yOJNd14bzZs+y8I79QFMOYR1pEP27RZzEIlzzcAlqTD rezCRBpKkLnwzOAMa6A1iQB3Vc8+2NDvoABaB933lKWFH6OaMMW6+/c2jLgMa7uA /Yod2ndvbtHmRlDBPODeaEnxM5JpbzgquOKmlT/XtDiPyVbpmVWnCBLU7XDAMrsv /uaa2pFRxwh7q7WX5H0qnRH4HfAeOfiBgjUu7iCy9IdYLldezSLeDmZy2JZCBVwA SdvRJ/EEEM5/DajM26dD10o5a8EDkRc0oLUw4M14B1z6uFAzKACz0pvoAU93RKEq w3q5qQzbkGra7zGo92Y/AgMBAAGjggJpMIICZTAOBgNVHQ8BAf8EBAMCBaAwHQYD VR0lBBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0O BBYEFIhK9+eNOTb1V8aTK0dosyo5lIjoMB8GA1UdIwQYMBaAFKhKamMEfd265tE5 t6ZFZe/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29j c3AuaW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2Nl cnQuaW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wIAYDVR0RBBkwF4IVd3d3Lmdlbnph bm9kaXJvbWEub3JnMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEB MCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBAwYK KwYBBAHWeQIEAgSB9ASB8QDvAHQAdH7agzGtMxCRIZzOJU9CcMK//V5CIAjGNzV5 5hB7zFYAAAFq/7qUkAAABAMARTBDAh9q7pYrF1kPhHx27oUpFxJckQ8wI8AGP5op atXT9oXhAiBLfhazlbWIIWrRgpUYCHvYJns+xHQIos4842Mq4spHaQB3AGPy283o O8wszwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABav+6lK0AAAQDAEgwRgIhAMJR 4qrfoX8O8NOEYJRJdEoOxK5/JpkAtVSBDzijGEd0AiEAov/W3vxSl/TnUwvsqGRz BmfwgnEeWThL0mXZ4FcyLrswDQYJKoZIhvcNAQELBQADggEBAJBTV9x8X2NmlXjF xa6C/F8BYhivlpUuES4aBE1DvYXGfn0TDfOrrUMcjoncvHHsGSM75Uq4NE0dsDM5 0d7LtJ3CCMzEGkCAPP48YXTId9ogDRCqgvfZKsYJExZRkU568LxHukYRbKqVewi/ nJWoPLshYtaesX0cAT1pyUo+DMyHO9UDqMXQYrLJTDz5RWuuSLoBBIki11L7sJEB 4bx9wWLzXMI3rm4Dhp3oV8phmoPAJqCFDlaTru1jO/E4i16jv0Io/NuQlh2e5fHx fkXYQFAbe2IAe0PUDRzoVtVqMXvoKyObGVRXdk0BbHFCa6v2KRYfyyKrFGi2uZ2m JPTxm6M= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAq++XOtmHcyVBP1y5DZ2v 30HMPP+a4D7/2nvxG/pOqZF921ivfpFDZ162DGALfhlDh8YshpyEVF4Gvrt8LTNo rYJn1ZfVTRj0tmFGAMAzqmBWdzVFUhirGcW+xt+7qw0x5LnCGu3pY64iL/YM0BVo AI1zfFJXQZLzX6aHk1jMF03M3ubiZ1Pwxk/ARExFyg1WjVv79qKyJFfB2BLgiPlN 5cNKYtOhXgm9SEeSFNS/GDRB7pi/lNlN8YlRpjY1HU+bsRKKa4Cmn0NzY+MEx+K8 AipM4eZOwPqm1oi0/NQa1xnrdIn2bm1YKGM14cLX4/D3bhGG3Jd8NQvDM+3s/K9X TyCygbyKhZpw6cjJ3DHrj2n/I4k13XhvNmz7Lwjv1AUw5hHWkQ/btFnMQiXPNwCW pMOt7MJEGkqQufDM4AxroDWJAHdVzz7Y0O+gAFoH3feUpYUfo5owxbr79zaMuAxr u4D9ih3ad29u0eZGUME84N5oSfEzkmlvOCq44qaVP9e0OI/JVumZVacIEtTtcMAy uy/+5prakVHHCHurtZfkfSqdEfgd8B45+IGCNS7uILL0h1guV17NIt4OZnLYlkIF XABJ29En8QQQzn8NqMzbp0PXSjlrwQORFzSgtTDgzXgHXPq4UDMoALPSm+gBT3dE oSrDermpDNuQatrvMaj3Zj8CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 327114283372692974802873135071422910997912 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-28 17:36:18 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-26 17:36:18 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.genzanodiroma.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 701437279960476951092196905478691132674481031587898835485760505979692419839674548969139215058194680473913163527748141690559553175426808396668309912867771262484910950640778216459816959562673598389024622353281165996374123235979199237128160954264881642257752277019658303730196171293017246120260943921512909815930765759866139954897166461421511506174448395513980709787840066157758315510057781987562560354045229698993244582027091723408285750284658330299596994838853378414624531701154760117796761246937974508586544554547777636086141668725667411759197533809627236304682664809372883851262120540280262534613282182072419194321241494128079389624905141567807214044666985765628975761180486134779181434918599175594080259663914108908921149708956708093683211180177814683997441057940701891292034303167230389738083305798349249289232339247707573682102441798901362467215268354999693486953946105549199129786069469284300681762782855933409870004336601819117679702909259510056722734022223181558520387935640137749952783201485987183311431897299493420452676259251102510229141736503915220178935015336891005935181572165433912162632127836813329025571906121829097947737734016681416668321130743200993875129447114615612006863470872491441517251635987424790306325227071 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 884af7e78d3936f557c6932b4768b32a399488e8 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (25 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.genzanodiroma.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (244 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (241 bytes) 00ef007400747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016affba94900000040300453043021f6aee962b17590f847c76ee852917125c910f3023c0063f9a296ad5d3f685e102204b7e16b395b588216ad1829518087bd8267b3ec47408a2ce3ce3632ae2ca476900770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016affba94ad0000040300483046022100c251e2aadfa17f0ef0d384609449744a0ec4ae7f269900b554810f38a3184774022100a2ffd6defc5297f4e7530beca864730667f082711e59384bd265d9e057322ebb . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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