www.ricadi.net

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 03:a0:af:dd:e9:4f:ae:81:ef:06:ef:4f:e1:d5:f9:93:6d:68 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.ricadi.net

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 03:a0:af:dd:e9:4f:ae:81:ef:06:ef:4f:e1:d5:f9:93:6d:68
Serial Number (int): 316015803631613460530054957070734708665704
Serial Number lenght: 138 bits, 18 octets

SubjectKeyId: e5:01:12:03:39:a4:e4:7f:d8:15:f6:6f:f3:85:17:1d:d3:2e:fc:27
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 56:58:98:4c:e3:a5:98:d7:2b:a4:ce:5b:29:56:80:59:b0:84:4a:5d
Fingerprint (sha256): 90:9f:c5:bf:ac:39:57:e0:13:39:e9:84:0b:7e:fc:84:35:77:85:31:be:3f:9c:2f:86:90:3c:08:71:72:d5:11

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.ricadi.net

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.ricadi.net

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.ricadi.net

Other certificates including the domain name ricadi.net

(limited to 100 certificates)
ricadi.net
www.ricadi.net
ricadi.net
ricadi.net
ricadi.net
selectivefoods.com
ricadi.net
www.ricadi.net
www.ricadi.net
ricadi.net
748.me
www.ricadi.net
ricadi.net
puntidiriferimento.com
www.myexpenditures.com
www.ricadi.net

Certificate

The complete raw certificate details for www.ricadi.net in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 316015803631613460530054957070734708665704
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-02 06:08:32 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-01 06:08:32 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.ricadi.net'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 747942166434770098695730693644783605992669054690748389097324926991903567950212549747511343848272351229952036700078190806864536619829699668358266234062077406001325847269371562504539125188820413933494791085280243249489989536313358646269141349667036513633470891937267752441076560850315750012071511933047359681528007539494071598958491365216240979796156398903578455465356670212407238816961325763108795203553351810802192559576755768713934560953046343525731003939574721086926233212446293140368231203654272686677029002627723759623013872384242268187272471093672929986539421624072896409889959355397021418217917735175892095054400324676370784939885969267043080355758335767169452966036086495847140552302834969569796385618049413591049076669004799144113200959377872858855901787099797239822895270581166296281498692400600622917578402842115451018697667582768585351254076199046510631971925534546250540379052105734781662609149727161505465748919492553923751023289034617168162720514109417759181256011155327984649616263308659172383220723222350297560237232383449809981795389291630926065167444434553829569687346327679734268368782652681326130563809158435159867894974809043124460762568018326233666838349408237591687760180152989455567052160484880274795650895747
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							e501120339a4e47fd815f66ff385171dd32efc27
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (18 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.ricadi.net'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (246 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (243 bytes)
							00f1007700b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016ec57078b30000040300483046022100b5293629474fdbd4efd9aa34451e23b98026e9fdcf99f1c406b04aea8913c1be022100aaf55f5fdfd705772a369b913d98cd962f44b26c441e1d43ebde4362ce594b250076006f5376ac31f03119d89900a45115ff77151c11d902c10029068db2089a37d9130000016ec5707a490000040300473045022100e4699cb0fd0676bff5eb92b61153e5ec5a475f98adfcd043f0d06391e0c2b0b402201ec7f11abebf3e2681528a4919bb5c4ea67c22389f1ebe6bacdc42cc3424a1f9
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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