www.igani.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:7f:60:dd:fe:b8:fa:3e:ec:7c:ec:cc:f9:e6:26:a4:22:f9 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.igani.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:7f:60:dd:fe:b8:fa:3e:ec:7c:ec:cc:f9:e6:26:a4:22:f9Serial Number (int): 304681476945828481473212972053143501415161
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b6:38:a0:a4:bd:df:25:52:8b:ce:45:05:4d:8f:06:49:b0:de:74:00
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 86:5f:22:f8:93:b9:e0:6e:3f:91:db:e2:9f:26:19:97:29:ad:36:b8
Fingerprint (sha256): 7a:a2:6b:69:91:de:50:d5:d2:b2:e3:9d:b4:de:f7:bf:71:36:e2:fe:58:bd:66:bd:08:31:b6:7d:b3:83:e0:ed
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.igani.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.igani.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.igani.com
Other certificates including the domain name igani.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.igani.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGUzCCBTugAwIBAgISA39g3f64+j7sfOzM+eYmpCL5MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MTcxMTQ4NTlaFw0x OTA4MTUxMTQ4NTlaMBgxFjAUBgNVBAMTDXd3dy5pZ2FuaS5jb20wggIiMA0GCSqG SIb3DQEBAQUAA4ICDwAwggIKAoICAQC77ZLzclTJrheR8q2IEtzAEb//ad1Tyjsv O8m27qRXe5tcBtrCyjUen1bbNWWL6BakMOUGw8IIUeujOVgKUlf5E/DlAeYizNLt olCn+dRZ4ZlSaYYKMEa+37pQnmdhFqBnjhSfw5v03dHgskb6j8YztmljfG2G3ExN S0ObuXPqvSNvaAbPqsCyqcYhwbS6DwgvjP/rKTJXmtVzNGkaNilqlJRJ6koE6e6r T1nq1vq0vqooR/eR+61g6TKyKbCFyWK6a7EIimov4JHmCGHRisu52Nia2EJMqGHe nZKgOUPtmI8RakgQZ/zqqCssh1yufeoB4TETXgye9XSKpbwIJ8IX2TeT/i9p15mC P5mlkBgewOYQeopDgIKn6FbBA0h/Sr/a+o6OXFwQUNOCrxvziOuME0aGbKGHnN7d 3ALtW/k1p6BGrwwP37ODbIYq9/K7UPdnCdWA0tYBAW1I/Zw8KFuBdXFYn7yg3JXz vPO6zQD4C+w2eJ+11YZ0uSmWFkt1pO+xOVBWgwzj+a2nQ/0d3VcxCodvOXuE6NMC NaEEGsdqRka1itAVEmPisiRmfpYaIlNyu2WK4eTIgZUdxmZsz/xz6GJbqI36qDLV 80d/P/hu1adggZDu3jl6T+NIakOB0VYM98c2bJ8qcgcJWwRBww3HSCQpTdJ3C5f2 luQgDk0VNQIDAQABo4ICYzCCAl8wDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQWMBQG CCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBS2OKCk vd8lUovORQVNjwZJsN50ADAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv86js oTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmludC14 My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0LmludC14 My5sZXRzZW5jcnlwdC5vcmcvMBgGA1UdEQQRMA+CDXd3dy5pZ2FuaS5jb20wTAYD VR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYa aHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHz APEAdwDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8okwGd3fHb/gAAAWrF1qOAAAAE AwBIMEYCIQCd6Z6OvFXAqozRxVyoPxWwhZ+2FdaU++pQEIyMqUi1aAIhAMWdY0QX RMPn4gQM8QUmmu1YVRP16NgaR8CkIRnUXSbqAHYAY/Lbzeg7zCzPC3KEJ1drM6SN YXePvXWmOLHHaFRL2I0AAAFqxdajoAAABAMARzBFAiEAlKsna2S2N/PqIEXfLlhR 8M9TEHSUoEMypAe73ExL2e4CIDSpDV3yxQTvtU5f5OU60/wfB78lJ/YC2G7j3ajR Xk6DMA0GCSqGSIb3DQEBCwUAA4IBAQAup8OeRCqvn4vUb1z7lU2JmVNfGrK49ofU IJi2hbGwduMCRZXuBxggr/pcHkrk26NkL6LTBnLqIapN7C/DpPnTTRPXczLfNTER astBG4awFblJucvmxOaPEGKsZzgMr72ggEA4TJTJOH+C4FbEMT5zT6V7vpDLYQ2p 2PhnuACmbNb25/cGA7W308tLQ5R4ZCB0KeL/fIanetlPDLo3M12Mi0yDLex2Eh45 VLp18SFrGoRuDKnlkvt1svvALNlh2P0i2Lby7+b2nHWLZM627tKiZ86rpZmwQ0kx 5TikiTb0IrNHjCVChRpmhh9a/omjAOsyyxeUuCGGqrACd71aITc5 -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAu+2S83JUya4XkfKtiBLc wBG//2ndU8o7LzvJtu6kV3ubXAbawso1Hp9W2zVli+gWpDDlBsPCCFHrozlYClJX +RPw5QHmIszS7aJQp/nUWeGZUmmGCjBGvt+6UJ5nYRagZ44Un8Ob9N3R4LJG+o/G M7ZpY3xthtxMTUtDm7lz6r0jb2gGz6rAsqnGIcG0ug8IL4z/6ykyV5rVczRpGjYp apSUSepKBOnuq09Z6tb6tL6qKEf3kfutYOkysimwhcliumuxCIpqL+CR5ghh0YrL udjYmthCTKhh3p2SoDlD7ZiPEWpIEGf86qgrLIdcrn3qAeExE14MnvV0iqW8CCfC F9k3k/4vadeZgj+ZpZAYHsDmEHqKQ4CCp+hWwQNIf0q/2vqOjlxcEFDTgq8b84jr jBNGhmyhh5ze3dwC7Vv5NaegRq8MD9+zg2yGKvfyu1D3ZwnVgNLWAQFtSP2cPChb gXVxWJ+8oNyV87zzus0A+AvsNniftdWGdLkplhZLdaTvsTlQVoMM4/mtp0P9Hd1X MQqHbzl7hOjTAjWhBBrHakZGtYrQFRJj4rIkZn6WGiJTcrtliuHkyIGVHcZmbM/8 c+hiW6iN+qgy1fNHfz/4btWnYIGQ7t45ek/jSGpDgdFWDPfHNmyfKnIHCVsEQcMN x0gkKU3SdwuX9pbkIA5NFTUCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 304681476945828481473212972053143501415161 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-17 11:48:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-15 11:48:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.igani.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 766679446465013029314570646249241275663200408544604011737391704846515748072737417108642525436961242883659167812284284189948839102608704397627202838828767590366666818929074175559010287194037769646320989862837786956121870785385465908058951512806494236198640197527600434592504078394643823519451050826081608275107098891474594037926274096515738445871185217851379164488899118486405355087591411969981621147739507606407455032708553138166938805030846075041177658430880209671295128946799668080335894660885883470751755976720278180642720783135472212602669455095436392533252717252970829321738797213538983228605497263762508324156454135802783831234353193897610318806855561325481679171383237548527619810890422786800811200189376717243311912073440174416239119101013798036618676009621333354367863273046277958337846698621712413933968328270473209335090314021131406903881402880703377586737221881931434503855477390352244234156145219641265461422986524358963573126940819770229646468381049517126614082034157634444998188220967510302314722245546022520965028643851863980263330313827560410702220615670494747677746974615285737191750468164381598312176471861456507695802772077385462253727002180062156419701524957861525153320984673336835925568771514030086959873725749 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b638a0a4bddf25528bce45054d8f0649b0de7400 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (17 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.igani.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007700e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016ac5d6a38000000403004830460221009de99e8ebc55c0aa8cd1c55ca83f15b0859fb615d694fbea50108c8ca948b568022100c59d63441744c3e7e2040cf105269aed585513f5e8d81a47c0a42119d45d26ea00760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016ac5d6a3a0000004030047304502210094ab276b64b637f3ea2045df2e5851f0cf53107494a04332a407bbdc4c4bd9ee022034a90d5df2c504efb54e5fe4e53ad3fc1f07bf2527f602d86ee3dda8d15e4e83 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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