pit.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:2c:fb:6a:2b:f8:6e:9a:6b:e2:2b:78:f0:03:74:23:b1:97 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=pit.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:2c:fb:6a:2b:f8:6e:9a:6b:e2:2b:78:f0:03:74:23:b1:97
Serial Number (int): 276643469442037478203768923947869243945367
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: 6f:21:4b:80:6e:01:25:4c:3a:47:d4:c1:ac:e9:95:20:28:e3:28:22
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 50:1c:0f:41:3d:da:d3:e8:15:a6:64:58:e8:e4:d8:07:d6:a4:b9:27
Fingerprint (sha256): 7d:c3:9c:6a:d7:3b:2c:06:91:8e:5c:7e:78:78:8f:3e:8a:20:0f:17:a6:93:99:13:9b:99:55:b0:fa:e8:bc:41

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate pit.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for pit.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

pit.org

Other certificates including the domain name pit.org

(limited to 100 certificates)
www.pit.org
pit.org
www.pit.org
www.pit.org
pit.org
pit.org
pit.org
pit.org
assicurafacile.com
www.pit.org
pit.org
www.pit.org
pit.org

Certificate

The complete raw certificate details for pit.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 276643469442037478203768923947869243945367
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-06-13 09:14:14 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-11 09:14:14 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'pit.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 942048415266758298474362908869690782847388108423187533011866807032135161393478932473047593618307648589085942078000002025392424353162856194369632715140957246826334711847131560273017622036098945390701623711643762438427471544752067610034127928449716608871480763885417005308207883335220510611297760721298647732511946735358235111240369247116698863654526825918582693023869851118138435042386317998605208483069589577546360353528688950462838085997065145193150373053727532255525059313398857615907012868631898062942129941137969056103454356094065804436790596544068168940416280858688497595814253151934432810737545717346189024764903734247203470574890132113004985067349186824874043598304102521808002663143418185771604552795644655465200807459419524134453093407564053069098139097815537496393655999176169058384599349407397913914446912718060238583809753688828874862331481049560480782948858127763877265767821786967542198097405633611868816577769463461486862584001777897612389146591780128222912930650447460168464800120533729721134521026417442682980949364046567246928546957335214594662123019039204418104960604230587798762810693891816922192335073663835346163903883355012987487980746882902535329117397227520204393897398623988747834265312264373734820321879241
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							6f214b806e01254c3a47d4c1ace9952028e32822
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (11 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'pit.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016b5054ac4b000004030047304502210094ccc9a5f64d74e0024492c1c0fb9c8e92f7440732e04caa5e21aa9ae94f065702207752f5dde38483aa8d36f0ad65e4e4da96ac80e978b3998791010ed19e0dc4a900760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016b5054ac6a0000040300473045022100ba0a12f3c2a812dfd9c868e820dd201a05109bbc7aff17314e1a9f9741a52bdf022070f82a84eeb36f6dbd43540503c0abcd623df51e807dbc10909c9dbfdd5546c5
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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