www.fontenuova.org
Issued by Let's Encrypt Authority X3
About this certificate
This digital certificate with serial number 04:60:21:22:da:be:fb:ed:86:12:2d:3b:a9:81:ed:09:8c:83 was issued on by Let's Encrypt.
This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.
We have idenified some issues with this certificate:
- Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)
Certificate Subject
CN=www.fontenuova.org
Let's Encrypt
Organization:
Let's Encrypt
Country:
US
This certificate has expire since
Certificate Details
Serial Number (hex): 04:60:21:22:da:be:fb:ed:86:12:2d:3b:a9:81:ed:09:8c:83Serial Number (int): 381160296450101783846715948319073353960579
Serial Number lenght: 139 bits, 18 octets
SubjectKeyId: 78:46:3e:92:ce:6b:86:e6:44:a0:51:58:74:84:81:52:db:16:55:fd
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1
Fingerprint (sha1): 87:41:b2:25:21:bb:66:34:b3:90:f7:42:5a:36:6e:31:63:56:65:77
Fingerprint (sha256): 94:21:39:12:67:b8:c9:37:74:bd:e0:a7:2a:03:e2:b0:0e:97:9e:94:c4:b0:c1:77:0a:dd:91:0d:74:8c:f1:6b
Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/
Revocation information
OCSP Server: http://ocsp.int-x3.letsencrypt.orgCheck the revocation status for certificate www.fontenuova.org
1
DNS Names
0
Email Addresses
0
IP Addresses
Advanced Certificate Properties
Tehnical certificate details for www.fontenuova.org
Public Key Algorithm
RSA
Key Size
4096
Signature Algorithm
SHA256 with RSA
Key Usage
Digital Signature
Key Encipherment
Extended Key Usages
Server Authentication
Client Authentication
Extensions
9 extensions
No
unhandled critical extensions
CA Certificate
This is not a CA certificate
Subject Alternative Names
www.fontenuova.org
Other certificates including the domain name fontenuova.org
(limited to 100 certificates)
Certificate
The complete raw certificate details for www.fontenuova.org in PEM and ASN.1 format.
Certificate (PEM)
-----BEGIN CERTIFICATE----- MIIGXDCCBUSgAwIBAgISBGAhItq+++2GEi07qYHtCYyDMA0GCSqGSIb3DQEBCwUA MEoxCzAJBgNVBAYTAlVTMRYwFAYDVQQKEw1MZXQncyBFbmNyeXB0MSMwIQYDVQQD ExpMZXQncyBFbmNyeXB0IEF1dGhvcml0eSBYMzAeFw0xOTEyMDgwOTQzMTdaFw0y MDAzMDcwOTQzMTdaMB0xGzAZBgNVBAMTEnd3dy5mb250ZW51b3ZhLm9yZzCCAiIw DQYJKoZIhvcNAQEBBQADggIPADCCAgoCggIBAKhMGqMiN7YUoPrkYNwvwCieUP/f b2XsJ2sIwgbq3zond6OztgbgkBEps74zWDdV6hrgiVj92ma3RgKQAhjDgNQ3a2Wr rAXq3Dg/oh9KIi3IP1za5hliSmwHeWNHAakzcTn1YUAtH8hjp3EfDooT6HW+Hkpw ZIHvYh2kmIRdeguj/3PzG8sLQz8GoLmwUiWBmH0jqjsDqjAJ3zjUFkAKsouBsGUf kcKk61asZx3lwzkrJZW3rqChuoRReZwk8M2piSSwrqrW+s5tHWzWr486epNBPQyq deHIufIx3h/orETVW39t54vY34kD/IOt/ZHTPsnrgmKnMYa0sX0AvacAW2M/3Z/f JY/9c6+inP0lib32NXnM+q4MrNsAypi1SYhP0Zv/JL+05Yss4suzCvbqeDugl1tw 6vBnIsqFrbeD3mK1zSXQhu/AQCVRk0tTQpZGOUdzF6gz3dluxYSEqgeE3Phzh8pe wAPw3Wx70yWVe9oflfgRgiyXD0crm3NCPju8TIZE7hUu5Sqt7JfTJfnPZVI3T4fO hJPi9priqu3VEcJOQHFYMjNRBctVtNPmLq5E5Tc4VHI5vamBRL5tA0fZiFnorMpg x17o8JUNx0lbtjpYfnT1Q3K5sjIN5gxqnN+Sa0ZTlehL61ZIOSE0t7KV8Yft+gNI I0cUiLUJ10iq4GCXAgMBAAGjggJnMIICYzAOBgNVHQ8BAf8EBAMCBaAwHQYDVR0l BBYwFAYIKwYBBQUHAwEGCCsGAQUFBwMCMAwGA1UdEwEB/wQCMAAwHQYDVR0OBBYE FHhGPpLOa4bmRKBRWHSEgVLbFlX9MB8GA1UdIwQYMBaAFKhKamMEfd265tE5t6ZF Ze/zqOyhMG8GCCsGAQUFBwEBBGMwYTAuBggrBgEFBQcwAYYiaHR0cDovL29jc3Au aW50LXgzLmxldHNlbmNyeXB0Lm9yZzAvBggrBgEFBQcwAoYjaHR0cDovL2NlcnQu aW50LXgzLmxldHNlbmNyeXB0Lm9yZy8wHQYDVR0RBBYwFIISd3d3LmZvbnRlbnVv dmEub3JnMEwGA1UdIARFMEMwCAYGZ4EMAQIBMDcGCysGAQQBgt8TAQEBMCgwJgYI KwYBBQUHAgEWGmh0dHA6Ly9jcHMubGV0c2VuY3J5cHQub3JnMIIBBAYKKwYBBAHW eQIEAgSB9QSB8gDwAHYA8JWkWfIA0YJAEC0vk4iOrUv+HUfjmeHQNKawqKqOsnMA AAFu5Rs63gAABAMARzBFAiEAjt9z8m4Oqx8h+f7wGMWy9LcqV9DQLDZyWz73OgD/ iF8CIBZ+4MtzPZ9CaGySkCbBNB2kRLWAm5fpjFlr+ZWqJxyVAHYAsh4FzIuizYog Todm+Su5iiUgZ2va+nDnsklTLe+LkF4AAAFu5Rs8zQAABAMARzBFAiACejGKjzhv VA8iWJdG06HK+uoAy4/dYh5nwUiAoYpm7QIhAIrq8L7/tHngmAl8ntOW63uEgs2w EKVzkwMCBhHd8dViMA0GCSqGSIb3DQEBCwUAA4IBAQBw5OvcFCuoxvk/QBLkcIB4 SGtYh13tJYHBYvF6DR9DreMAODEeHBbVqnTcTMBbAi76+ZZ+RFLffybHQecTiD28 gRUjwn3WpOC8rQPXbENXsvk0G+No0tkP9EMPfyl2Vx+OpU59CssIKTqtXtNFP0l/ XVHPPHWln/Jf0K6RxuWsMuUT2CA+mUdMYUwVVDcd200otqoJYK7uU1WSvDNKs9yc fcQ759XjuQyjD+uTZz4fOy4soKBQ4n5RFkZpNn5CJez24T6/U20ywk/6+ZmGSMWY +8h7DSV9ANuinEA5daGYD2QnfKH5A8/OsFOisiTDjDu0VnC754WK05FKqjrgfqOD -----END CERTIFICATE-----
Public Key (PEM)
-----BEGIN PUBLIC KEY----- MIICIjANBgkqhkiG9w0BAQEFAAOCAg8AMIICCgKCAgEAqEwaoyI3thSg+uRg3C/A KJ5Q/99vZewnawjCBurfOid3o7O2BuCQESmzvjNYN1XqGuCJWP3aZrdGApACGMOA 1DdrZausBercOD+iH0oiLcg/XNrmGWJKbAd5Y0cBqTNxOfVhQC0fyGOncR8OihPo db4eSnBkge9iHaSYhF16C6P/c/MbywtDPwagubBSJYGYfSOqOwOqMAnfONQWQAqy i4GwZR+RwqTrVqxnHeXDOSsllbeuoKG6hFF5nCTwzamJJLCuqtb6zm0dbNavjzp6 k0E9DKp14ci58jHeH+isRNVbf23ni9jfiQP8g639kdM+yeuCYqcxhrSxfQC9pwBb Yz/dn98lj/1zr6Kc/SWJvfY1ecz6rgys2wDKmLVJiE/Rm/8kv7Tliyziy7MK9up4 O6CXW3Dq8GciyoWtt4PeYrXNJdCG78BAJVGTS1NClkY5R3MXqDPd2W7FhISqB4Tc +HOHyl7AA/DdbHvTJZV72h+V+BGCLJcPRyubc0I+O7xMhkTuFS7lKq3sl9Ml+c9l UjdPh86Ek+L2muKq7dURwk5AcVgyM1EFy1W00+YurkTlNzhUcjm9qYFEvm0DR9mI WeisymDHXujwlQ3HSVu2Olh+dPVDcrmyMg3mDGqc35JrRlOV6EvrVkg5ITS3spXx h+36A0gjRxSItQnXSKrgYJcCAwEAAQ== -----END PUBLIC KEY-----
ASN.1 decoded
[c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:2|t:0|true] OtherName . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2 . . . . . . . . [c:0|t:2|false] INTEGER 381160296450101783846715948319073353960579 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt' . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-08 09:43:17 +0000 UTC . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-07 09:43:17 +0000 UTC . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName) . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.fontenuova.org' . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption) . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 686593005939727236718571895163137387232913361344889397057614368914657566869986610686814503312772081162581910517009752372684419590228465048279031954390531367065419460437703856407147556082670725890394164998100567537964419498718442626936433680420890462794484607505191173354761654419630627562731339614932617748066639593853409344347971517554097400494831959331197481188975560016320594437323305431238173431866690672697244364956649537614361309226857954018953511080735584106308108124687827128943708031445174959281850937419991202073144447843703168177415694104322141809237480269218015569880440664303212392679673310028960725894029630182965385804513372638325664936339458718390330468460292490629109697452897961797530334271140161511481101765708258537043156852363660603767833328778025511582273878839226276880821892283228981239632606434696839022057894837003696644332433967868597238018807184291374526387355614024365717457463839114355190338009572401576304937756846049717448874948429728791613589679344836552224347552247423213871198798472387160156404350994253465771274294390040976669914407020245983216144240948630442549715485557646483339757100683180480437413396479047886060270024664845388019004933241042135269441863657211323825584036599235939102101627031 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537 . . . . . . . . [c:2|t:3|true] ORAddress . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits) 05a0 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth) . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints) . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes) 78463e92ce6b86e644a0515874848152db1655fd . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org' . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fontenuova.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies) . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy) . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps) . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org' . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes) . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes) 00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016ee51b3ade00000403004730450221008edf73f26e0eab1f21f9fef018c5b2f4b72a57d0d02c36725b3ef73a00ff885f0220167ee0cb733d9f42686c929026c1341da444b5809b97e98c596bf995aa271c95007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016ee51b3ccd00000403004730450220027a318a8f386f540f22589746d3a1cafaea00cb8fdd621e67c14880a18a66ed0221008aeaf0beffb479e098097c9ed396eb7b8482cdb010a5739303020611ddf1d562 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption) . . . . . . . . [c:0|t:5|false] NULL . . . . [c:0|t:3|false] BIT STRING (2048 bits) 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