www.valencadopiaui.pi.leg.br
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d6:20:87:32:4d:11:d5:b8:26:df:4b:38:7e:5f:03:74:78 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.valencadopiaui.pi.leg.br
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d6:20:87:32:4d:11:d5:b8:26:df:4b:38:7e:5f:03:74:78Serial Number (int): 334200521592529158942877553054202586166392
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 58:2e:99:09:73:b8:06:6a:95:70:2f:22:88:83:a4:a1:d3:05:2d:50
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 7a:01:2f:4d:93:9c:21:d8:60:41:dd:23:1a:39:ef:f2:1f:18:0e:f4
Fingerprint (sha256): 7e:fe:07:23:50:c4:b3:a2:16:8a:76:d5:37:64:fc:c5:22:7e:61:65:ea:9b:f1:df:cf:f4:ff:7c:e7:bc:1a:06
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.valencadopiaui.pi.leg.br
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.valencadopiaui.pi.leg.br
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.valencadopiaui.pi.leg.br
Other certificates including the domain name valencadopiaui.pi.leg.br
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.valencadopiaui.pi.leg.br in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGcTCCBVmgAwIBAgISA9YghzJNEdW4Jt9LOH5fA3R4MA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA3MTcxNDE1MjhaFw0x OTEwMTUxNDE1MjhaMCcxJTAjBgNVBAMTHHd3dy52YWxlbmNhZG9waWF1aS5waS5s ZWcuYnIwggIiMA0GCSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDO1iEvQVgnJncK 83Y4MeSSU9W2bTv2n5iPCUq1te8H/t0VSvVft0zoEE8guN6JqDPxXEuBHCNhjJRo DiG9gZO+HOdRBpARts92An5T+mfIf8LIimdLrYFljMjf5bqJWGN0j4xhg+Ep972F O0h+yj92SmZuxd5DlHZjvT7qjk7QQfEtjJ9Q5lkRmlDIrJ+YbYKk4RXX8Zwa5yg5 VBfkmF579Fxq8NFTjULIhJ5VYyzU3jRqsC1jSW8IzbAfIgO/iMnMq5vwPkzPDAeg z2ac0Rc4Hqxc80f68/9G/qsiD6FhGo5Ttzb3Rc7ee0jWfQ7kl4ay46ogqSXwIIBU fnAYbyxKxqhTM88iXVccspwhbYtuYRscoA5X17jPVVA4cFmOVIrhUmTVFubqyGIs iQvCyxflEP7qwsXMmHzEzKgeTtz7zfyixVx2SyeF5VVur+W74lVRuCovuAdcFZQO u6X+PTtkKxuAvYyr6JqAAhM812NbRM/nC3WEuwxuugN2lXTe6N67Q+LG+rAIOlLc Hqfbpu9tbj2EXoF+pdCZrxtdl4tC6x4bXewxoQx+Wpa5O+5CyK8dSllZKqkjO49T 92zDt9wFzG8sw/8kAMjM8UghGB2b4Yri9CYY5jPIBoFnk+BmZNwr+qKUztCJ7c+i p94sWls5C+1oTrX9K3fN/WbpdMbm3QIDAQABo4ICcjCCAm4wDgYDVR0PAQH/BAQD AgWgMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAA MB0GA1UdDgQWBBRYLpkJc7gGapVwLyKIg6Sh0wUtUDAfBgNVHSMEGDAWgBSoSmpj BH3duubRObemRWXv86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0 dHA6Ly9vY3NwLmludC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0 dHA6Ly9jZXJ0LmludC14My5sZXRzZW5jcnlwdC5vcmcvMCcGA1UdEQQgMB6CHHd3 dy52YWxlbmNhZG9waWF1aS5waS5sZWcuYnIwTAYDVR0gBEUwQzAIBgZngQwBAgEw NwYLKwYBBAGC3xMBAQEwKDAmBggrBgEFBQcCARYaaHR0cDovL2Nwcy5sZXRzZW5j cnlwdC5vcmcwggEFBgorBgEEAdZ5AgQCBIH2BIHzAPEAdgDiaUuuJujpQAnohhu2 O4PUPuf+dIj7pI8okwGd3fHb/gAAAWwAgKxcAAAEAwBHMEUCIAPUfvKTSSwZ5836 O7DHWIN764jz+rRsHsFsC77ykKotAiEAgCWrUd+LZi3M6Or+tPbZwfLpKj1DY8Sp 3IpInp46nvoAdwBj8tvN6DvMLM8LcoQnV2szpI1hd4+9daY4scdoVEvYjQAAAWwA gK5xAAAEAwBIMEYCIQDo+MY26aXXLR+50ThBoo3LRcgZvUevZ7RVITbeCu+z0gIh AK31N6rwnzgW5n7AQTYHcuHaA8qcW4R5AX/kPBq/bJG8MA0GCSqGSIb3DQEBCwUA A4IBAQBYYnzBMsi5NkZTR/htHj1T4X0uFB6cuuMmh6c7Up2NocxZKw2BRLBvEO3P hw8l37RgP784u8aAJAgaqKRKiqLd2yfwxm783c42o/LhqAQhL5Wc5K9izf93orST HX7xWa4vl3iMrLrpuiGgf4PA3LYWfEvoQh5kP/PmFSxbydMWi2OdZ8kSq7gsjpf9 pLfvHgf96XnyAH3ye5yvWAQyUI2vodbs/U4VZTjlJRRNt0eo/fYRg0w8+7ZZKb6K HS3MIJV3CCl4FEOXZxnQF147OL+/nC0hjNl9iR0R/jSROYJkuhHo9Ursh4dl+plQ tZZ3w9IDo7jRRq0V8j7jwQLFECNP -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAztYhL0FYJyZ3CvN2ODHk klPVtm079p+YjwlKtbXvB/7dFUr1X7dM6BBPILjeiagz8VxLgRwjYYyUaA4hvYGT vhznUQaQEbbPdgJ+U/pnyH/CyIpnS62BZYzI3+W6iVhjdI+MYYPhKfe9hTtIfso/ dkpmbsXeQ5R2Y70+6o5O0EHxLYyfUOZZEZpQyKyfmG2CpOEV1/GcGucoOVQX5Jhe e/RcavDRU41CyISeVWMs1N40arAtY0lvCM2wHyIDv4jJzKub8D5MzwwHoM9mnNEX OB6sXPNH+vP/Rv6rIg+hYRqOU7c290XO3ntI1n0O5JeGsuOqIKkl8CCAVH5wGG8s SsaoUzPPIl1XHLKcIW2LbmEbHKAOV9e4z1VQOHBZjlSK4VJk1Rbm6shiLIkLwssX 5RD+6sLFzJh8xMyoHk7c+838osVcdksnheVVbq/lu+JVUbgqL7gHXBWUDrul/j07 ZCsbgL2Mq+iagAITPNdjW0TP5wt1hLsMbroDdpV03ujeu0PixvqwCDpS3B6n26bv bW49hF6BfqXQma8bXZeLQuseG13sMaEMflqWuTvuQsivHUpZWSqpIzuPU/dsw7fc BcxvLMP/JADIzPFIIRgdm+GK4vQmGOYzyAaBZ5PgZmTcK/qilM7Qie3PoqfeLFpb OQvtaE61/St3zf1m6XTG5t0CAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 334200521592529158942877553054202586166392 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-07-17 14:15:28 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-10-15 14:15:28 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.valencadopiaui.pi.leg.br' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 843819071230248056293830767371756665347043922899889520151618144649785956104404204175446984521335670461251570460813158312997316472273182363708172606455436180160641056374194146909145452571713943842769901846508378795026562283559978192540651802202194625673350939793799755927496693259723159625353530442134478602564613335612528697703514087802860566349366835334026742882828593553155826727082626918821686240312271076366070761595028255787843962797225625173618011426457654787941400697168611716140848936579360058342064521562475218388617788454348317608586339425845308908056483518590011522632304305767866404843765478696028905499808086335723078523883688808634707037779032741994090485813620030185337912657879036224599712856592825707427500113713514678527451108015554439793408263395198782548686980469246872393328434023711785556302299309198108915277768679937558680564413554149086522257580152808424708798683353421605056500794414531787400530396737337313719446258614403769975861283306094995937521522126028131983564546829271416237088505745394868457021023402972904767460028087986925891230242938664562867567444855100531947714185069263907251183247341274916039138420407912436769621045500347795677777525231121456504600824247768526592649534068193117592879556317 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 582e990973b8066a95702f228883a4a1d3052d50 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (32 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.valencadopiaui.pi.leg.br' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f1007600e2694bae26e8e94009e8861bb63b83d43ee7fe7488fba48f2893019dddf1dbfe0000016c0080ac5c0000040300473045022003d47ef293492c19e7cdfa3bb0c758837beb88f3fab46c1ec16c0bbef290aa2d0221008025ab51df8b662dcce8eafeb4f6d9c1f2e92a3d4363c4a9dc8a489e9e3a9efa00770063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016c0080ae710000040300483046022100e8f8c636e9a5d72d1fb9d13841a28dcb45c819bd47af67b4552136de0aefb3d2022100adf537aaf09f3816e67ec041360772e1da03ca9c5b8479017fe43c1abf6c91bc . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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