www.castelgiuliano.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:67:bc:6f:06:5d:3f:53:8f:8a:a4:ce:fd:ab:70:5c:3f:87 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.castelgiuliano.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:67:bc:6f:06:5d:3f:53:8f:8a:a4:ce:fd:ab:70:5c:3f:87Serial Number (int): 296636412925378538536626277819640989892487
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: a7:2a:0a:89:b3:4f:30:21:6b:14:51:dd:32:ff:de:dd:3e:47:ef:fb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 0b:da:97:56:88:91:a3:e7:d7:15:b6:f5:cf:4a:04:67:be:c4:95:03
Fingerprint (sha256): 7a:ca:2a:f5:cf:7f:81:30:c2:a0:62:bc:49:1c:f8:ad:7c:23:45:3c:e0:d3:57:ba:f9:b2:2e:c4:0b:ca:46:f9
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.castelgiuliano.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.castelgiuliano.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.castelgiuliano.com
Other certificates including the domain name castelgiuliano.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.castelgiuliano.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGZDCCBUygAwIBAgISA2e8bwZdP1OPiqTO/atwXD+HMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA2MjUyMDAxNThaFw0x OTA5MjMyMDAxNThaMCExHzAdBgNVBAMTFnd3dy5jYXN0ZWxnaXVsaWFuby5jb20w ggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQCppem+BeMdGP4mJU2njN+8 R3uNQjUOI/pdXUb7VM5ELW8ch9iL3HUwBhnZzISIwnOH5VddLdary+hrZ/7fbdo0 jDH8TS+SsJ2UL+dmKSdC1rU4e0J9FGq5Edo0OzBGOu1XBAU2ymeT5cxmH7r2xbYB aED2MVXl2HJ69qt3GP6hczChu4GQxy7lYi1w4U7bYU8C316D5I4BviIvgO0HaJPI nHGeGz/lAUrNHUejlTx1L33DdCEqSedRrnmRwyYkxIu1LEtWuwRRagCHosTvV110 tLKCA7sG4cis4m0mp4o77DYWlPQE8kUjiNzksIWBcumEtt1Ouh2Ljl4jJYco6Da6 zMF8rzi0FEr8O3mmPf8h1OJ2tH80xwaeDDHvCsmh5uKVpAZ5qOOlI5k9tpUESTbA gNy38zkHFa0ooV57q6IGMA/40VEdZVU2SZUDBX6ESlD5NCGFYpS5TFd3f3/ZEyDc aDiZhl6Hh/kyBxGptkEULwrzClcyTHLpr94n/OLZXN6+SemlNg/67OMbfQv9IRWE mJKLShJ7IVzJHiAzxhm/4+ZqmUp240QWEgq+LGPdjWO9u5gkGcO6g0A6KWk6jHUq qA6PQc24+6lmQI6zdVJO+lrOCzbIjfC0YUB0pmDW+BDRCEpD5lSuruMtjo3buh5Z 6uyMFL6bmSb1RpDGqdjgWQIDAQABo4ICazCCAmcwDgYDVR0PAQH/BAQDAgWgMB0G A1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1Ud DgQWBBSnKgqJs08wIWsUUd0y/97dPkfv+zAfBgNVHSMEGDAWgBSoSmpjBH3duubR ObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9v Y3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9j ZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCEGA1UdEQQaMBiCFnd3dy5jYXN0 ZWxnaXVsaWFuby5jb20wTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMB AQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEE BgorBgEEAdZ5AgQCBIH1BIHyAPAAdQDiaUuuJujpQAnohhu2O4PUPuf+dIj7pI8o kwGd3fHb/gAAAWuQcf+oAAAEAwBGMEQCICAwkwe+v32EGRS0QIz5L+qZ1JLpKJO0 ryIIWwZUihQUAiAFlI+TklClQY3wHjC4aF3aDf5IB2SlBJDgssa3qk9+NQB3AGPy 283oO8wszwtyhCdXazOkjWF3j711pjixx2hUS9iNAAABa5Bx/8sAAAQDAEgwRgIh ALEL0Sc6MQsRwZgVCJoFMBGPbPZAkOJabVStGFqO7iOeAiEA8vtH8nNLopfa7btn pRjQjPbEewkIDCsjz/ALi81iBS4wDQYJKoZIhvcNAQELBQADggEBAAHVN6VL3/Dc IqCDESsGq/zG6LGZxiWyWRIjKwZyXz2RsULzdU7LsUTh1i6A0IjkNrIaQhPqjhbk iFeI3qul+iCami2Fhrbw0VLStMoiX6d/f9SoW+CoZj0P5DWs1p75gipq2cq5+96Q k5BeIoMQ/my6wRfnfmDhg60DNAwwk9zdGsI7nXsWZnq8NF3NuovCuMSt3wL/Lcb1 T/0L7buhD+7okaZTJRzzkwkcvzIcvbuaiGJ4i0/2W+UA/+kjFAwTGcnFDTiVi3sF ph0q24tN8pafmnym61jZEce9ChlGyKtcsJEJ6LIjtUf8gcaTZjWQ1llAAlRNvlji DEvUz5B5AVE= -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqaXpvgXjHRj+JiVNp4zf vEd7jUI1DiP6XV1G+1TORC1vHIfYi9x1MAYZ2cyEiMJzh+VXXS3Wq8voa2f+323a NIwx/E0vkrCdlC/nZiknQta1OHtCfRRquRHaNDswRjrtVwQFNspnk+XMZh+69sW2 AWhA9jFV5dhyevardxj+oXMwobuBkMcu5WItcOFO22FPAt9eg+SOAb4iL4DtB2iT yJxxnhs/5QFKzR1Ho5U8dS99w3QhKknnUa55kcMmJMSLtSxLVrsEUWoAh6LE71dd dLSyggO7BuHIrOJtJqeKO+w2FpT0BPJFI4jc5LCFgXLphLbdTrodi45eIyWHKOg2 uszBfK84tBRK/Dt5pj3/IdTidrR/NMcGngwx7wrJoebilaQGeajjpSOZPbaVBEk2 wIDct/M5BxWtKKFee6uiBjAP+NFRHWVVNkmVAwV+hEpQ+TQhhWKUuUxXd39/2RMg 3Gg4mYZeh4f5MgcRqbZBFC8K8wpXMkxy6a/eJ/zi2VzevknppTYP+uzjG30L/SEV hJiSi0oSeyFcyR4gM8YZv+PmaplKduNEFhIKvixj3Y1jvbuYJBnDuoNAOilpOox1 KqgOj0HNuPupZkCOs3VSTvpazgs2yI3wtGFAdKZg1vgQ0QhKQ+ZUrq7jLY6N27oe WersjBS+m5km9UaQxqnY4FkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 296636412925378538536626277819640989892487 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-25 20:01:58 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-23 20:01:58 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.castelgiuliano.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 692103856142989487283588340692365568982794313745361107696651522261252925692751085686222005563361584761199219246415314213655011765697993591350009973425986279580716086097128474897476416480952452097828861661967830465860713264283200697198969720171113413209845820662874803428799824622345365693873301197024524234268190901276724430442597539413932058272333072957717535758213601528958004601818865384387390185242158162402883074935750383349303646762182520563441512783984031651263143933577642247088921047039048735944946556974434027927306700897241138411205245411106506488804110944567827737628933671740521193985644048632869339284789038995551961587400583735464394637981074354228940274047445361746011434563934666011179381835858824113542968261218190786864915010225979188876768484775751678601602120791127476107314664886326024076168188549023749272897450443029314227097250553495483730923378145450187495106275476827822630732454334546254182393591623294552559319554633421186428961830218180734429416450337237884329247744500955607407206857225547727017726979463089630471906917660011207940319116441611115659682243260581540278736378625925708128425085566648172797228950300433127492297825654854782502520227805673412154082675330177319236472515920218293601641750617 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) a72a0a89b34f30216b1451dd32ffdedd3e47effb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (26 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.castelgiuliano.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007500e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016b9071ffa80000040300463044022020309307bebf7d841914b4408cf92fea99d492e92893b4af22085b06548a1414022005948f939250a5418df01e30b8685dda0dfe480764a50490e0b2c6b7aa4f7e3500770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016b9071ffcb0000040300483046022100b10bd1273a310b11c19815089a0530118f6cf64090e25a6d54ad185a8eee239e022100f2fb47f2734ba297daedbb67a518d08cf6c47b09080c2b23cff00b8bcd62052e . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 0001d537a54bdff0dc22a083112b06abfcc6e8b199c625b25912232b06725f3d91b142f3754ecbb144e1d62e80d088e436b21a4213ea8e16e4885788deaba5fa209a9a2d8586b6f0d152d2b4ca225fa77f7fd4a85be0a8663d0fe435acd69ef9822a6ad9cab9fbde9093905e228310fe6cbac117e77e60e183ad03340c3093dcdd1ac23b9d7b16667abc345dcdba8bc2b8c4addf02ff2dc6f54ffd0bedbba10feee891a653251cf393091cbf321cbdbb9a8862788b4ff65be500ffe923140c1319c9c50d38958b7b05a61d2adb8b4df2969f9a7ca6eb58d911c7bd0a1946c8ab5cb09109e8b223b547fc81c693663590d6594002544dbe58e20c4bd4cf90790151