www.fontenuova.org

Issued by Let's Encrypt Authority X3

About this certificate

This digital certificate with serial number 04:60:21:22:da:be:fb:ed:86:12:2d:3b:a9:81:ed:09:8c:83 was issued on by Let's Encrypt.

This certificate has already expired and will cause a warning or error message in the browser it's still listed on this site to allow you to look back on previously issued certificates. If we have found any compliance issues with this certificate they will be shown below. I hope this certificate review is providing you the detailed information in a simple form you where looking for.


We have idenified some issues with this certificate:
  • Subscriber Certificate: commonName is deprecated. (BRs: 7.1.4.2.2)

Certificate Subject

CN=www.fontenuova.org

Let's Encrypt

Organization: Let's Encrypt
Country: US

This certificate has expire since

Certificate Details

Serial Number (hex): 04:60:21:22:da:be:fb:ed:86:12:2d:3b:a9:81:ed:09:8c:83
Serial Number (int): 381160296450101783846715948319073353960579
Serial Number lenght: 139 bits, 18 octets

SubjectKeyId: 78:46:3e:92:ce:6b:86:e6:44:a0:51:58:74:84:81:52:db:16:55:fd
AuthorityKeyId: a8:4a:6a:63:04:7d:dd:ba:e6:d1:39:b7:a6:45:65:ef:f3:a8:ec:a1

Fingerprint (sha1): 87:41:b2:25:21:bb:66:34:b3:90:f7:42:5a:36:6e:31:63:56:65:77
Fingerprint (sha256): 94:21:39:12:67:b8:c9:37:74:bd:e0:a7:2a:03:e2:b0:0e:97:9e:94:c4:b0:c1:77:0a:dd:91:0d:74:8c:f1:6b

Issuing Certificate URL: http://cert.int-x3.letsencrypt.org/

Revocation information

OCSP Server: http://ocsp.int-x3.letsencrypt.org

Check the revocation status for certificate www.fontenuova.org

1

DNS Names

0

Email Addresses

0

IP Addresses

Advanced Certificate Properties

Tehnical certificate details for www.fontenuova.org

Public Key Algorithm

RSA

Key Size

4096

Signature Algorithm

SHA256 with RSA

Key Usage

Digital Signature
Key Encipherment

Extended Key Usages

Server Authentication
Client Authentication

Extensions

9 extensions
No unhandled critical extensions

CA Certificate

This is not a CA certificate

Subject Alternative Names

www.fontenuova.org

Other certificates including the domain name fontenuova.org

(limited to 100 certificates)
fontenuova.org
www.fontenuova.org
www.fontenuova.org
fontenuova.org
uscmarshall.mba
www.fontenuova.org
celena.boston
fontenuova.org
www.fontenuova.org
fontenuova.org
coconutcoir.ca
www.fontenuova.org
fontenuova.org
fontenuova.org
fontenuova.org

Certificate

The complete raw certificate details for www.fontenuova.org in PEM and ASN.1 format.

Certificate (PEM)

-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----

Public Key (PEM)

-----BEGIN PUBLIC KEY-----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-----END PUBLIC KEY-----

ASN.1 decoded

 [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:2|t:0|true] OtherName 
 . . . . . . . . . . . . [c:0|t:2|false] INTEGER 2
 . . . . . . . . [c:0|t:2|false] INTEGER 381160296450101783846715948319073353960579
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.6 (countryName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'US'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.10 (organizationName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt'
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'Let's Encrypt Authority X3'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2019-12-08 09:43:17 +0000 UTC
 . . . . . . . . . . . . [c:0|t:23|false] UTCTime 2020-03-07 09:43:17 +0000 UTC
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:17|true] SET, SET OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.4.3 (commonName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:19|false] PrintableString 'www.fontenuova.org'
 . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.1 (rsaEncryption)
 . . . . . . . . . . . . . . . . [c:0|t:5|false] NULL 
 . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (4208 bits)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 686593005939727236718571895163137387232913361344889397057614368914657566869986610686814503312772081162581910517009752372684419590228465048279031954390531367065419460437703856407147556082670725890394164998100567537964419498718442626936433680420890462794484607505191173354761654419630627562731339614932617748066639593853409344347971517554097400494831959331197481188975560016320594437323305431238173431866690672697244364956649537614361309226857954018953511080735584106308108124687827128943708031445174959281850937419991202073144447843703168177415694104322141809237480269218015569880440664303212392679673310028960725894029630182965385804513372638325664936339458718390330468460292490629109697452897961797530334271140161511481101765708258537043156852363660603767833328778025511582273878839226276880821892283228981239632606434696839022057894837003696644332433967868597238018807184291374526387355614024365717457463839114355190338009572401576304937756846049717448874948429728791613589679344836552224347552247423213871198798472387160156404350994253465771274294390040976669914407020245983216144240948630442549715485557646483339757100683180480437413396479047886060270024664845388019004933241042135269441863657211323825584036599235939102101627031
 . . . . . . . . . . . . . . . . . . . . [c:0|t:2|false] INTEGER 65537

 . . . . . . . . [c:2|t:3|true] ORAddress 
 . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.15 (keyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (4 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:3|false] BIT STRING (3 bits)
							05a0
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.37 (extKeyUsage)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.1 (serverAuth)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.3.2 (clientAuth)
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.19 (basicConstraints)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:1|false] BOOLEAN true
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (2 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.14 (subjectKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (20 bytes)
							78463e92ce6b86e644a0515874848152db1655fd
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.35 (authorityKeyIdentifier)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (24 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:0|false] OtherName a84a6a63047dddbae6d139b7a64565eff3a8eca1
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.1.1 (authorityInfoAccess)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (99 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.1 (ocsp)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://ocsp.int-x3.letsencrypt.org'
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.48.2 (caIssuers)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:6|false] IA5String 'http://cert.int-x3.letsencrypt.org/'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.17 (subjectAltName)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (22 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:2|t:2|false] IA5String 'www.fontenuova.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.5.29.32 (certificatePolicies)
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (69 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 2.23.140.1.2.1 (Domain Validation Certificates Policy)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.44947.1.1.1
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.5.5.7.2.1 (cps)
 . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:22|false] IA5String 'http://cps.letsencrypt.org'
 . . . . . . . . . . . . . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . . . . . . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.3.6.1.4.1.11129.2.4.2
 . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (245 bytes)
 . . . . . . . . . . . . . . . . . . . . . . . . [c:0|t:4|false] OCTET STRING (242 bytes)
							00f0007600f095a459f200d18240102d2f93888ead4bfe1d47e399e1d034a6b0a8aa8eb2730000016ee51b3ade00000403004730450221008edf73f26e0eab1f21f9fef018c5b2f4b72a57d0d02c36725b3ef73a00ff885f0220167ee0cb733d9f42686c929026c1341da444b5809b97e98c596bf995aa271c95007600b21e05cc8ba2cd8a204e8766f92bb98a2520676bdafa70e7b249532def8b905e0000016ee51b3ccd00000403004730450220027a318a8f386f540f22589746d3a1cafaea00cb8fdd621e67c14880a18a66ed0221008aeaf0beffb479e098097c9ed396eb7b8482cdb010a5739303020611ddf1d562
 . . . . [c:0|t:16|true] SEQUENCE, SEQUENCE OF 
 . . . . . . . . [c:0|t:6|false] OBJECT IDENTIFIER 1.2.840.113549.1.1.11 (sha256WithRSAEncryption)
 . . . . . . . . [c:0|t:5|false] NULL 
 . . . . [c:0|t:3|false] BIT STRING (2048 bits)
		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