igani.com
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:d5:5c:1c:40:13:04:01:cf:53:fb:a8:01:a6:4c:6a:df:54 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=igani.com
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:d5:5c:1c:40:13:04:01:cf:53:fb:a8:01:a6:4c:6a:df:54Serial Number (int): 333939437608945673742573348993660934086484
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: b0:d5:c8:c3:d8:9a:e3:35:02:10:12:77:a3:16:b8:df:02:f5:b7:0f
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 43:52:ed:b0:ba:44:32:c3:74:d7:37:27:e4:74:8d:95:da:f4:c0:7d
Fingerprint (sha256): 8a:27:5b:de:66:3c:23:aa:13:c4:18:73:6c:28:a9:70:b1:a1:a8:99:b1:cc:e5:24:6c:5d:71:09:b3:a6:7a:4a
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate igani.com
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for igani.com
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
igani.com
Other certificates including the domain name igani.com
(limited to 100 certificates)
Certificate
The complete raw certificate details for igani.com in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGSjCCBTKgAwIBAgISA9VcHEATBAHPU/uoAaZMat9UMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA5MTcxOTIwMjRaFw0x OTEyMTYxOTIwMjRaMBQxEjAQBgNVBAMTCWlnYW5pLmNvbTCCAiIwDQYJKoZIhvcN AQEBBQADggIPADCCAgoCggIBANoaghKn2U4E2OQLQVxoWD3YB51xNySibt7dbENy zE33oEWLjR8ubOcc41gCjV7QeNnjzSG//Gm/sARHzn1Y0vLKuV7Yt2TVgIMI6Pwq 3klgO4xFHL4IkaVM4sgW4xwUr7Zd3UoNrIjcq5WXsaz7XiSYcsUfexs9LIZ2xxQm Xqv/kyCQ9HQdGW0z/U0inopQgA3KkNUDi/Tv+fOAandKmT//gr1i4OFHW7HBrJ+x zrToAVC7ZM0bygH6Neyn6zKxnjYETyskUTmyhTCkvF12OQ/HbQiwfL+LtjBy6qRN oHwMMRhyJZ8/xn1p6EHh78JypZYPP/yaET/fM39xkzSPoaHPxsQROdhU6e92pw36 q0j8lS0apakHQIxgzTPSALcRJIutpsdX2CVybPHMkTKVQovkhUv2aVcxWRVxIHje 9p/JLrML7YuFLMfJuIGGlGkc+XEYAAv87KokU3zc3iil610apAp9iL4duvnD48e1 rSncGcgLBGRn77IYPSb8T3kkcHXeH94izXIB+8keE6mMs3w652DnKJKvurwIWuul uZBpx4MnnZwYSQQj1G6OG2UBdip0IBEj8RBV/T3rwKv4Y+p0t+WHl06zUiazxFVU nrfHtk95WxdDRTa0yYuZb7UuGiFL9cd6vblk0KpVqSe3PSgotApce4LmYnwdXNme fuKpAgMBAAGjggJeMIICWjAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0lBBYwFAYIKwYB BQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYEFLDVyMPYmuM1 AhASd6MWuN8C9bcPMB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZFZe/zqOyhMG8G CCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3AuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQuaW50LXgzLmxl dHNlbmNyeXB0Lm9yZy8wFAYDVR0RBA0wC4IJaWdhbmkuY29tMEwGA1UdIARFMEMw CAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYIKwYBBQUHAgEWGmh0dHA6Ly9j cHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHWeQIEAgSB9QSB8gDwAHcAdH7a gzGtMxCRIZzOJU9CcMK//V5CIAjGNzV55hB7zFYAAAFtQOIiVQAABAMASDBGAiEA nxYLFA1gw5Gg2w7IzxKk9wcqKnuOvLfM2W3hIDqwT7ACIQCq+z37V5C2IBmB/rF/ 1rZkGX6kX7Ten8fhbCpDH8cawgB1AGPy283oO8wszwtyhCdXazOkjWF3j711pjix x2hUS9iNAAABbUDiJGEAAAQDAEYwRAIgLpP8OuLq7WLHoy6bQpBmlrK8UYeWrj4Y 8jPxDHZHR84CIBXaadMB0tKG4QJM3ApWPD7TdBGOLZ2NTGDgKYJ1JgMgMA0GCSqG SIb3DQEBCwUAA4IBAQABURno/vXBh2fN778GBtcaVqtAB8jlnYLk0FiF1CO9jgII vEgcJZ/rMib9knXzaijt3Nj1VqO7DIgb4GynMWh1g04RgIwhhv1S8aK6RVhXhoM5 yUNuUgb3bhPSxABFmtqOrICSTPaUDEzRwsINVPpkzUigh4jQEDCW3cragamunmyO UT/193M/kmWsYQe9jCUB9TtBIY4/dzC2l9SmKfxV2A5imzDK8SShr7pXIpxTGvYn OF9wN9UaR27c6aBYZzAPNecdCo4WiUUd+/uGsqMpqB+h8P6vppMrVFGJ5PuZBRqf j/ELEGDOQ1JjB0dsh1SNwv1XXGHliF6Zu5dC94Ez -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEA2hqCEqfZTgTY5AtBXGhY PdgHnXE3JKJu3t1sQ3LMTfegRYuNHy5s5xzjWAKNXtB42ePNIb/8ab+wBEfOfVjS 8sq5Xti3ZNWAgwjo/CreSWA7jEUcvgiRpUziyBbjHBSvtl3dSg2siNyrlZexrPte JJhyxR97Gz0shnbHFCZeq/+TIJD0dB0ZbTP9TSKeilCADcqQ1QOL9O/584Bqd0qZ P/+CvWLg4UdbscGsn7HOtOgBULtkzRvKAfo17KfrMrGeNgRPKyRRObKFMKS8XXY5 D8dtCLB8v4u2MHLqpE2gfAwxGHIlnz/GfWnoQeHvwnKllg8//JoRP98zf3GTNI+h oc/GxBE52FTp73anDfqrSPyVLRqlqQdAjGDNM9IAtxEki62mx1fYJXJs8cyRMpVC i+SFS/ZpVzFZFXEgeN72n8kuswvti4Usx8m4gYaUaRz5cRgAC/zsqiRTfNzeKKXr XRqkCn2Ivh26+cPjx7WtKdwZyAsEZGfvshg9JvxPeSRwdd4f3iLNcgH7yR4TqYyz fDrnYOcokq+6vAha66W5kGnHgyednBhJBCPUbo4bZQF2KnQgESPxEFX9PevAq/hj 6nS35YeXTrNSJrPEVVSet8e2T3lbF0NFNrTJi5lvtS4aIUv1x3q9uWTQqlWpJ7c9 KCi0Clx7guZifB1c2Z5+4qkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 333939437608945673742573348993660934086484 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-09-17 19:20:24 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-16 19:20:24 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'igani.com' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 889784842771140072683302716661065518476551071220926164380835111491163276047243806201992754097866237451022118648276044964595615867973043561085639240128721562996642968607179870521528992744119784219164569984878823854270908600017326166616700374623740788027502761646655207926930510334794309676429188843348861756537421452157456393320338067704885596527030682540438195634330266430892198514542614660781645457685408539725573080828158312757167895834449135054355105658849483604938244909424291887995072025664158782313944162602626251264439679322611606914015443754879874036153721742713185174895429465812650484118098068543416872772614608513273577737235431247880763198963748195616494842735891079651983414554226156688649644717836581695335603832626069698517076745757168450614063035222941147212899461484823829739972198301665344888307425399731698867596928464149528475601616292102585804315776349106235137034992911033159899580718466400435668334597083347053205617125313806210021250186093343453988453023628379530062745570964519472120062177171444355408493248428295207066423829730245274025395087323985998011059146683075703992017929914558540198400132352428694029691840574819523725844406317574388902892618998157394083569290934292960233944127166427648763184997033 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) b0d5c8c3d89ae33502101277a316b8df02f5b70f . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (13 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'igani.com' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007700747eda8331ad331091219cce254f4270c2bffd5e422008c6373579e6107bcc560000016d40e2225500000403004830460221009f160b140d60c391a0db0ec8cf12a4f7072a2a7b8ebcb7ccd96de1203ab04fb0022100aafb3dfb5790b6201981feb17fd6b664197ea45fb4de9fc7e16c2a431fc71ac200750063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016d40e22461000004030046304402202e93fc3ae2eaed62c7a32e9b42906696b2bc518796ae3e18f233f10c764747ce022015da69d301d2d286e1024cdc0a563c3ed374118e2d9d8d4c60e0298275260320 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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