www.crispano.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 03:b5:63:95:77:bf:2d:d7:67:30:83:f1:78:07:cd:2e:e3:85 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.crispano.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 03:b5:63:95:77:bf:2d:d7:67:30:83:f1:78:07:cd:2e:e3:85Serial Number (int): 323060335860538739294041775962498588926853
Serial Number lenght: 138 bits, 18 octets
SubjectKeyId: 75:a9:64:6f:b3:de:43:a4:af:ea:29:13:3d:4f:1d:8f:cf:92:e2:eb
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 72:10:49:81:e2:c1:eb:46:3d:e3:46:cd:b2:79:31:34:21:a8:b1:55
Fingerprint (sha256): 8d:b9:f3:b6:ba:37:62:30:76:98:77:cd:53:4c:26:04:79:ee:58:1a:e7:6d:6e:8f:8b:8f:14:93:c3:1d:c6:ed
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.crispano.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.crispano.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.crispano.org
Other certificates including the domain name crispano.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.crispano.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGWTCCBUGgAwIBAgISA7VjlXe/LddnMIPxeAfNLuOFMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTA1MjgwMTMxNTlaFw0x OTA4MjYwMTMxNTlaMBsxGTAXBgNVBAMTEHd3dy5jcmlzcGFuby5vcmcwggIiMA0G CSqGSIb3DQEBAQUAA4ICDwAwggIKAoICAQDFdyaInPnFjMjwMdScC9Y8ktrfbwck MhkHZwBdV5Gx4a1yYjSHS29lQWimXKNvQ8VksdLuGhMGDNnC/q+At3bPrzF7zf6G sDDmyLz3wWaqLAsT7xJQLk1rkOiSMJdy/HNfNMyNV68GCnuTMQTY9X/Xl4jZ8Y51 +LOWi6oPgkkE6kmx6SP4RKd0zLUUEupal3+FGDTvujDYoLjVQEvnUu53fG4H8PSt UcyE2/mRnWOqiotyUWEdoxGC3W3UkudKHCk3jAksO9AiAD3+mU6013dv+dmltUik 1pkx9ynbcUCT5HeQlAm1KIY3BJdKja6hZXeMPnjqGuiPut8dGjZKN3RkSPY7B1Om TQnNFM86tc9QyDmu3uzNSng2YEkEwh/dDJDTQl2pQxIIFQ03KqBvli/zcPL2dO02 /MWlxkX6LBuLUvW5CAHOts/JscR2Gq5n2/l+zj26qfOHMZ4RwU+8mjFxYFqM9KEd QpdCxUYDRFzg57br6/Z65hn5YNIi3dmqipiC0K3axk3kjxOAh74q7AjxGsb+d3W2 uNIwMvMUhfAsypA+nkJVZ+OOqaAcH3zI17xTIxZGb3GIauw35vm27FzNipkftZLY I3qMmc/ke1895k/os+V8K3lmLx2fqEh/GcnkoAmMDlfDh5S2dyxDsIuGSHTBNyrT tjNzXAD9S4XSWQIDAQABo4ICZjCCAmIwDgYDVR0PAQH/BAQDAgWgMB0GA1UdJQQW MBQGCCsGAQUFBwMBBggrBgEFBQcDAjAMBgNVHRMBAf8EAjAAMB0GA1UdDgQWBBR1 qWRvs95DpK/qKRM9Tx2Pz5Li6zAfBgNVHSMEGDAWgBSoSmpjBH3duubRObemRWXv 86jsoTBvBggrBgEFBQcBAQRjMGEwLgYIKwYBBQUHMAGGImh0dHA6Ly9vY3NwLmlu dC14My5sZXRzZW5jcnlwdC5vcmcwLwYIKwYBBQUHMAKGI2h0dHA6Ly9jZXJ0Lmlu dC14My5sZXRzZW5jcnlwdC5vcmcvMBsGA1UdEQQUMBKCEHd3dy5jcmlzcGFuby5v cmcwTAYDVR0gBEUwQzAIBgZngQwBAgEwNwYLKwYBBAGC3xMBAQEwKDAmBggrBgEF BQcCARYaaHR0cDovL2Nwcy5sZXRzZW5jcnlwdC5vcmcwggEFBgorBgEEAdZ5AgQC BIH2BIHzAPEAdwBvU3asMfAxGdiZAKRRFf93FRwR2QLBACkGjbIImjfZEwAAAWr8 R7nQAAAEAwBIMEYCIQCmrGljRZ2tOXmTjqxDdv/EZJd9BPrNyu68+2qOshNmkgIh AMLWzT0iig7y61X2oIWNFjOs15FxFhGCCAXksQ6IpORxAHYAY/Lbzeg7zCzPC3KE J1drM6SNYXePvXWmOLHHaFRL2I0AAAFq/Ee4RgAABAMARzBFAiEAzp8085Ch7OZs Y2l8zufT9GvvEhVqCYgbj0zofsuw+LsCIC/ACDxM5CzvpJNMQgru71K/EMgYOmSP MJ5h/foCwCJ7MA0GCSqGSIb3DQEBCwUAA4IBAQBgfkt80MtH5WngFufKPB7+i6wk 3FkhtwsARyW1menVshZUNUQn2axW0u0bFOU+0fBQL6cjYsUjneyvLZvtIhA9TwJd 8UIMx2ZMFfZ+E+dITBEy64PuTVUgZYaxzoNEhWzt/TFcU1QT6Wb3oV2JjE6YdK3J hCU39H7Jp9UK1xxf+HshAyhOsTnr9s7k7SzYfC/vftFYQ65J3NWapYn6gi59Q9Oz dAOwQsu1BArmyChsLbvM7dK11gtBk8Ac//GtAXkSt91lMaM41bU6yZAsS5e4XF2S 4XsO3R6QGoBkxb4wQcOUHOEr1ZVXpcuopTt5mIUJQNqCGGPCPBmF9HRJBEek -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAxXcmiJz5xYzI8DHUnAvW PJLa328HJDIZB2cAXVeRseGtcmI0h0tvZUFoplyjb0PFZLHS7hoTBgzZwv6vgLd2 z68xe83+hrAw5si898FmqiwLE+8SUC5Na5DokjCXcvxzXzTMjVevBgp7kzEE2PV/ 15eI2fGOdfizlouqD4JJBOpJsekj+ESndMy1FBLqWpd/hRg077ow2KC41UBL51Lu d3xuB/D0rVHMhNv5kZ1jqoqLclFhHaMRgt1t1JLnShwpN4wJLDvQIgA9/plOtNd3 b/nZpbVIpNaZMfcp23FAk+R3kJQJtSiGNwSXSo2uoWV3jD546hroj7rfHRo2Sjd0 ZEj2OwdTpk0JzRTPOrXPUMg5rt7szUp4NmBJBMIf3QyQ00JdqUMSCBUNNyqgb5Yv 83Dy9nTtNvzFpcZF+iwbi1L1uQgBzrbPybHEdhquZ9v5fs49uqnzhzGeEcFPvJox cWBajPShHUKXQsVGA0Rc4Oe26+v2euYZ+WDSIt3ZqoqYgtCt2sZN5I8TgIe+KuwI 8RrG/nd1trjSMDLzFIXwLMqQPp5CVWfjjqmgHB98yNe8UyMWRm9xiGrsN+b5tuxc zYqZH7WS2CN6jJnP5HtfPeZP6LPlfCt5Zi8dn6hIfxnJ5KAJjA5Xw4eUtncsQ7CL hkh0wTcq07Yzc1wA/UuF0lkCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 323060335860538739294041775962498588926853 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-05-28 01:31:59 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-08-26 01:31:59 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.crispano.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 805588677183129440196756531311171823273327892305789530539605160500574498100007428263350273862786558258183394077804484672520127967919044947662040248367034365350312152211402575299142432924233166797766038169312390247919219065401652849770021672504025685220596664613888391263848155701096358230110267010661675786618968240207460105099633788804786341699319327280242256998724822371970551643384512948978086547071017242934956537380664046755458964062555937966865701533279909911003247677938285121972332812372867440277040951839849507666522795362227934058919274472407999888388957360192887961958683010678431524147637652764000139600036492088144900516192035863044379335036874196303021506094507212919750649969006753079695129364973892365430844938453036471116789951894830814865886310741492446020924975694050631057861754256468877664126469477718344830378121486387920524538077456848794438448335248262351817227685011039531039618845154407736669062243441854739794928188372762412681005791970771317669580403007489227981093075205945265633834137949755900996840946340863439798022135368650876437805648491114283368257675435447034659019509059606880885752164268243879512800040079867709160284771943696550470646697820699310417952939321934208052175445512057621600553783897 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 75a9646fb3de43a4afea29133d4f1d8fcf92e2eb . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.crispano.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes) 00f10077006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016afc47b9d00000040300483046022100a6ac6963459dad3979938eac4376ffc464977d04facdcaeebcfb6a8eb2136692022100c2d6cd3d228a0ef2eb55f6a0858d1633acd791711611820805e4b10e88a4e47100760063f2dbcde83bcc2ccf0b728427576b33a48d61778fbd75a638b1c768544bd88d0000016afc47b8460000040300473045022100ce9f34f390a1ece66c63697ccee7d3f46bef12156a09881b8f4ce87ecbb0f8bb02202fc0083c4ce42cefa4934c420aeeef52bf10c8183a648f309e61fdfa02c0227b . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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